Guest

Profile Settings Help Center Report a Problem Sign out

  1. Effective Date

    Effective Date: 29 June 2025

    Last Updated: 29 June 2025

  2. Introduction

    Lootcat (“we”, “us”, or “our”) is committed to protecting your privacy in compliance with the Personal Data Protection Act 2012 (“PDPA”) of Singapore. This Privacy Policy explains how we collect, use, disclose, process, and protect your personal data when you interact with our marketplace platform (“Lootcat Platform”) through any device or channel.

    If you do not consent to the practices described in this policy, please do not use the Lootcat Platform.

  3. Definitions

    Personal Data: Data about an individual who can be identified from that data or from that data and other information we have access to.

    Processing: Collecting, using, disclosing, storing, or handling personal data.

  4. Information We Collect

    Directly Provided by You

    • Full name, email address, mobile number
    • Billing and shipping address
    • Account login credentials (hashed and encrypted)
    • Payment-related data (via Stripe, no card details stored)
    • Uploaded content (e.g., listings, images, profiles)
    • Communications (support tickets, chat logs, emails)

    Automatically Collected

    • IP address, geolocation
    • Device and browser metadata
    • Usage patterns and clickstream data
    • Cookies and similar technologies (see section on Cookies)

    From Third Parties

    • Payment gateways (e.g., Stripe)
    • Social login providers (if used)
    • Analytics providers (e.g., Google Analytics)

  5. Purpose of Data Collection

    Your data is collected for these purposes:

    • To create, manage, and maintain user accounts
    • To process transactions and deliver orders
    • To verify identity when required
    • To send service updates and order confirmations
    • To personalise experience (e.g., wishlists, recommendations)
    • To improve platform functionality, security, and performance
    • To detect and prevent fraud or illegal activities
    • To comply with legal or tax obligations
    • To send marketing messages (only with user consent)

  6. Use of Payment Data

    All payments are handled securely by Stripe. Lootcat does not store full credit card numbers or CVV codes. Stripe processes payment data under its own Privacy Policy.

  7. Consent and Withdrawal

    By using Lootcat, you consent to the collection and use of your data as described. You may withdraw consent anytime by contacting [email protected]. Note: some services may no longer be available after withdrawal.

  8. Disclosure of Personal Data

    Your data may be disclosed to:

    • Payment processors (e.g., Stripe)
    • Shipping/logistics providers
    • Technical service providers (e.g., hosting)
    • Legal/regulatory authorities, if required
    • Affiliates/partners for necessary services only

    We do not sell, rent, or trade your personal data.

  9. International Transfers

    If your data is transferred outside Singapore, we ensure the recipient offers comparable PDPA-level protection through contracts or legal mechanisms.

  10. Cookies and Tracking

    We use cookies to:

    • Authenticate sessions
    • Store preferences
    • Analyze traffic and user behaviour
    • Deliver relevant ads (where consented)

    You can disable cookies in your browser, but some features may not function correctly.

  11. Data Retention

    We retain data only as long as needed for legal or operational purposes. On request, we will anonymise or delete your data unless legal obligations require retention.

  12. Data Security

    We implement administrative, physical, and technical safeguards including:

    • SSL encryption
    • Encrypted storage
    • Role-based access controls
    • Security audits and testing

    No system is 100% secure. Users are responsible for keeping credentials safe.

  13. Access, Correction, and Portability

    Under the PDPA, you may request:

    • Access to your personal data
    • Correction of inaccurate or incomplete data
    • Data portability where feasible

    Requests may be sent to [email protected]. Administrative fees may apply.

  14. Children’s Privacy

    Lootcat is not intended for users under 13. If you believe a minor has submitted data, please contact us immediately.

  15. Changes to this Policy

    We may update this policy. Significant changes will be announced via email or platform notice. Continued use implies acceptance.

  16. Contact Us

    Data Protection Officer (DPO)

    📧 [email protected]

    📍 Singapore-based, operating under PDPA compliance