Privacy Policy

What We Collect

Account data: Email address and name from your Google or GitHub account when you sign in via OAuth. We do not store passwords.

Card photos: Images you upload when creating provenance codes. These are displayed on public provenance pages.

Usage data: Code creation counts, scan events (timestamp, approximate location), and plan usage for billing.

How We Use It

• Display provenance pages when codes are scanned
• Build your seller trust profile (verified sales count)
• Process billing and enforce plan limits
• Provide scan analytics in your dashboard
• Send transactional emails (billing, plan changes)

Who Can See It

Provenance pages are public. Anyone who scans a code sees the card photo, seller name, and listing link. This is the core product — provenance requires transparency.

Your email address is never displayed publicly. Scan analytics are visible only to you.

Where It's Stored

Account data is stored in Supabase (PostgreSQL). Card photos are stored on Cloudflare R2. Both services are hosted in the United States.

Third-Party Services

• Supabase — Authentication and database
• Cloudflare R2 — Image storage
• Stripe — Payment processing (we never see your full card number)
• Vercel — Frontend hosting and analytics

Your Rights

You can export your data, delete your account, or request removal of specific provenance pages by emailing hello@taynik.net. We respond within 30 days.

Cookies

We use essential cookies for authentication sessions. No advertising or tracking cookies. No third-party analytics cookies.

Contact

Privacy questions? Email hello@taynik.net.