Privacy Policy

§ 01 ·Introduction

TenYear ("we," "our," or "us") operates the TenYear SDC Credit Platform (the "Platform"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Platform.

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the Platform.

§ 02 ·Information We Collect

Personal Data

We collect personal information that you voluntarily provide to us when you register on the Platform, express interest in obtaining information about us or our products and services, or otherwise contact us. This includes:

• Name and email address (via Google OAuth)
• Company name and phone number (optional, if provided)
• Transaction history and inquiry records
• Documents uploaded for credit verification
• Communication preferences

Automatically Collected Data

When you visit our Platform, we automatically collect certain information about your device, including:

• Browser type and version
• Operating system
• IP address
• Pages visited and time spent on pages
• Referring website or source

§ 03 ·How We Use Your Information

We use personal information collected via our Platform to:

• Create and manage your account
• Process transactions and facilitate credit transfers
• Send you transaction confirmations and status updates
• Respond to your inquiries and provide customer support
• Verify the authenticity of SDC credits
• Comply with legal obligations and prevent fraud
• Improve our Platform and services
• Send marketing communications (with your consent)

§ 04 ·Disclosure of Your Information

We may share information in the following situations:

With Other Users

When you submit an inquiry or enter into a transaction, your contact information may be shared with the other party to facilitate the transaction.

With Service Providers (Subprocessors)

We share information with third-party subprocessors who perform services on our behalf. The full current list is in Section 10 below. The principal categories are: database and application hosting, transactional email, error and performance monitoring, payment processing for marketplace transactions, and document signing for marketplace purchase agreements. We require each subprocessor to protect personal information consistent with this Policy and to use it only to provide services to TenYear.

With Municipalities

We may share transaction information with relevant municipal authorities as required for credit transfer verification and compliance.

Legal Requirements

We may disclose your information where required by law or subpoena, or if we believe disclosure is necessary to protect our rights or the safety of others.

§ 05 ·Data Security

We use administrative, technical, and physical security measures to protect your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that no security measures are perfect or impenetrable.

§ 06 ·Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Transaction records are retained for a minimum of 7 years in accordance with financial record-keeping requirements.

§ 07 ·Your Privacy Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate personal data
• Deletion: Request deletion of your personal data
• Portability: Request a machine-readable copy of your data
• Opt-out: Opt out of marketing communications

To exercise these rights, please contact us at privacy@tenyear.app.

§ 08 ·California Privacy Rights

If you are a California resident, you have specific rights regarding your personal information under the California Consumer Privacy Act (CCPA). These include the right to request disclosure of the categories and specific pieces of personal information we have collected, and the right to request deletion of your personal information.

§ 09 ·Cookies and Tracking

We use cookies and similar tracking technologies to access or store information. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies.

§ 10 ·Third-Party Services

Our Platform may contain links to third-party websites and services. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

We use the following third-party subprocessors. Each is listed with its function and the scope of data it processes.

• Turso (libSQL): Production database hosting for the Platform. Stores all account, transaction, and ledger data. United States.
• Railway: Application hosting. Processes inbound requests; transient access to data in flight. United States.
• Resend: Transactional email delivery (sign-in links, transaction notifications). Receives recipient email addresses and message contents.
• Sentry: Error and performance monitoring. May incidentally receive request metadata in error events; we configure scrubbing rules to exclude credential and document content.
• Stripe: Payment processing and escrow for marketplace transactions only. Receives buyer and seller contact information, transaction amounts, and bank/card details required for payment. Does not receive city ledger data.
• DocuSign: Electronic signature for marketplace Purchase & Sale Agreements only. Receives signer name, email, and the agreement document. Does not receive city ledger data.
• Google OAuth: Optional authentication provider. Receives only the data needed to authenticate (name, email, account ID).
• Cloudflare: Content delivery and edge caching. Processes request metadata; does not retain personal data beyond standard caching windows.

Subprocessor scope

Stripe and DocuSign touch only marketplace transaction data; they do not receive City Ledger data. The City Ledger's subprocessors are limited to Turso (data), Railway (hosting), Resend (notifications), and Sentry (errors). Cities can request a current subprocessor list at privacy@tenyear.app.

§ 11 ·Children's Privacy

Our Platform is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you become aware that a child has provided us with personal information, please contact us.

§ 12 ·Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

§ 13 ·Contact Us

If you have questions or comments about this Privacy Policy, please contact us at: