Kolosseum Marketplace

Privacy Policy

Last updated: April 13, 2026

1. Introduction

Kolosseum ("we," "us," "our") respects your privacy. This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using Kolosseum, you agree to this Policy.

2. Information We Collect

Information you provide:

  • Account info: name, email, password, profile photo, bio, location
  • Listing content: item photos, descriptions, prices, condition, category
  • Messages you send to other users through the Service
  • Payment info: handled and stored by Stripe; we never see your full card number
  • Identity/verification data if you use optional verification features

Information collected automatically:

  • Device info (browser type, OS, device identifiers)
  • Log data (IP address, pages visited, timestamps, referrer)
  • Approximate location (from IP or, with permission, GPS for safe-meetup features)
  • Analytics events (page views, feature usage) via Vercel Analytics

3. How We Use Information

  • Provide and operate the Service (display listings, deliver messages, process subscriptions)
  • Authenticate users and secure accounts
  • Process payments through Stripe
  • Detect and prevent fraud, counterfeit listings, and abuse
  • Improve and analyze the Service (aggregate usage, performance)
  • Communicate with you about updates, security, and support
  • Comply with legal obligations

4. Sharing of Information

We do not sell your personal information. We share data only with:

  • Other users — public profile info and your listings are visible to anyone using the Service. Messages are visible only to the recipient.
  • Service providers — Supabase (database & auth), Stripe (payments), Vercel (hosting & analytics), and similar infrastructure partners under data-processing agreements.
  • Legal authorities — when required by law, subpoena, or to protect the rights, safety, or property of Kolosseum or our users.
  • Business transfers — if Kolosseum is acquired, merged, or dissolved, user data may be transferred as part of the transaction.

5. Cookies & Tracking

We use cookies and similar technologies for authentication, session management, and analytics. You can disable cookies in your browser, but parts of the Service may not function properly without them.

6. Data Retention

We retain account and transaction data for as long as your account is active and for a reasonable period thereafter to comply with legal obligations, resolve disputes, and enforce our Terms. You may request deletion of your account at any time (see Section 8).

7. Security

We use industry-standard security practices including encryption in transit (HTTPS), secure authentication (Supabase Auth), and hardened payment processing (Stripe, PCI DSS compliant). No system is 100% secure; you are responsible for keeping your password safe and notifying us of any suspected unauthorized use.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction or deletion of your data
  • Object to or restrict certain processing
  • Export your data in a portable format
  • Withdraw consent where processing is based on consent

To exercise any of these rights, email us at support@kolosseum.com.

9. Children

Kolosseum is not intended for children under 18. We do not knowingly collect personal information from anyone under 18. If you believe a child has provided us information, contact us and we will delete it.

10. International Users

Kolosseum is operated from the United States. By using the Service, you consent to your data being transferred to and processed in the U.S. and any other country where our service providers operate.

11. Changes to This Policy

We may update this Policy from time to time. Material changes will be announced through the Service. The "Last updated" date at the top shows when it was most recently revised.

12. Contact Us

Questions or requests? Email us at support@kolosseum.com.