๐ŸŽฉBlack Hat Market

Privacy Policy

Last updated: June 15, 2025

1. Information We Collect

Information you provide

  • Account data โ€” Name, email address, and password when you register.
  • Profile data โ€” Optional information you add to your seller profile.
  • Payment data โ€” Processed securely by Stripe. We do not store credit card numbers.
  • Product data โ€” Content, descriptions, and files uploaded by sellers.
  • Communications โ€” Messages, reviews, and support requests.

Information collected automatically

  • Usage data โ€” Pages visited, features used, and interaction patterns.
  • Device data โ€” Browser type, operating system, and screen resolution.
  • Log data โ€” IP address, access times, and referring URLs.
  • Web Vitals โ€” Core performance metrics to improve site speed and experience.

2. How We Use Your Information

  • Process transactions and deliver purchased Products.
  • Manage your account and provide customer support.
  • Send transactional emails (order confirmations, password resets, verification).
  • Detect and prevent fraud, abuse, and security threats.
  • Improve the Platform through analytics and performance monitoring.
  • Comply with legal obligations.

3. Information Sharing

We do not sell your personal data. We share information only in these cases:

  • Payment processing โ€” Stripe receives payment data to process transactions.
  • Sellers โ€” Buyers' names are shared with sellers for order fulfillment. Email addresses are not shared.
  • Legal requirements โ€” When required by law, court order, or to protect our rights and safety.
  • Service providers โ€” Trusted third parties that help us operate the Platform (email delivery, hosting).

4. Data Security

We implement industry-standard security measures to protect your data, including:

  • Passwords hashed with bcrypt (12 salt rounds).
  • HTTPS encryption for all data in transit.
  • HttpOnly, secure, SameSite cookies for session management.
  • Input sanitization to prevent XSS and injection attacks.

No method of electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

5. Cookies

We use the following cookies:

  • Session cookie โ€” Essential for authentication. HttpOnly, expires after 7 days.
  • Cart data โ€” Stored in localStorage (not a cookie) to persist your shopping cart.

We do not use third-party tracking cookies or advertising cookies.

6. Your Rights

You have the right to:

  • Access โ€” Request a copy of the personal data we hold about you.
  • Correction โ€” Update or correct inaccurate personal data.
  • Deletion โ€” Request deletion of your account and associated data.
  • Portability โ€” Receive your data in a portable format.
  • Objection โ€” Object to processing of your data for specific purposes.

To exercise any of these rights, contact us at privacy@blackhatmarket.xyz.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Purchase records are kept for accounting and legal compliance purposes. You may request account deletion at any time, after which we will remove your personal data within 30 days, except where retention is required by law.

8. Children's Privacy

The Platform is not intended for users under 18 years of age. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us immediately.

9. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email or a prominent notice on the Platform. The "Last updated" date at the top reflects the most recent revision.

10. Contact Us

For privacy-related inquiries, contact us at privacy@blackhatmarket.xyz.