Privacy Policy

1. Introduction

TenYear ("we," "our," or "us") operates the TenYear SDC Credit Marketplace (the "Platform"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Platform.

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the Platform.

2. Information We Collect

Personal Data

We collect personal information that you voluntarily provide to us when you register on the Platform, express interest in obtaining information about us or our products and services, or otherwise contact us. This includes:

• Name and email address (via Google OAuth)
• Company name and phone number (optional, if provided)
• Transaction history and inquiry records
• Documents uploaded for credit verification
• Communication preferences

Automatically Collected Data

When you visit our Platform, we automatically collect certain information about your device, including:

• Browser type and version
• Operating system
• IP address
• Pages visited and time spent on pages
• Referring website or source

3. How We Use Your Information

We use personal information collected via our Platform to:

• Create and manage your account
• Process transactions and facilitate credit transfers
• Send you transaction confirmations and status updates
• Respond to your inquiries and provide customer support
• Verify the authenticity of SDC credits
• Comply with legal obligations and prevent fraud
• Improve our Platform and services
• Send marketing communications (with your consent)

4. Disclosure of Your Information

We may share information in the following situations:

With Other Users

When you submit an inquiry or enter into a transaction, your contact information may be shared with the other party to facilitate the transaction.

With Service Providers

We may share your information with third-party vendors who perform services on our behalf, such as payment processing, data analysis, email delivery, hosting services, and customer service.

With Municipalities

We may share transaction information with relevant municipal authorities as required for credit transfer verification and compliance.

Legal Requirements

We may disclose your information where required by law or subpoena, or if we believe disclosure is necessary to protect our rights or the safety of others.

5. Data Security

We use administrative, technical, and physical security measures to protect your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that no security measures are perfect or impenetrable.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Transaction records are retained for a minimum of 7 years in accordance with financial record-keeping requirements.

7. Your Privacy Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate personal data
• Deletion: Request deletion of your personal data
• Portability: Request a machine-readable copy of your data
• Opt-out: Opt out of marketing communications

To exercise these rights, please contact us at privacy@tenyear.io.

8. California Privacy Rights

If you are a California resident, you have specific rights regarding your personal information under the California Consumer Privacy Act (CCPA). These include the right to request disclosure of the categories and specific pieces of personal information we have collected, and the right to request deletion of your personal information.

9. Cookies and Tracking

We use cookies and similar tracking technologies to access or store information. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies.

10. Third-Party Services

Our Platform may contain links to third-party websites and services. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

We use the following third-party services:

• Google OAuth: For authentication
• Resend: For transactional emails
• Cloudflare: For content delivery and storage

11. Children's Privacy

Our Platform is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you become aware that a child has provided us with personal information, please contact us.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

13. Contact Us

If you have questions or comments about this Privacy Policy, please contact us at: