Privacy Policy

Last updated: April 21, 2026

JAMJU is built on a simple principle: your data is yours. We collect only what is strictly necessary to run the app, we do not track you, and we will never sell or share your personal information for advertising purposes.

1. What we collect — and why

Email address. Required to create and secure your account. We use it only for account-related messages (password resets, critical service notices). We do not send marketing email unless you explicitly opt in.

Inventory data you enter. Item details, photos, costs, prices, and sale records that you create inside the app. This data is yours. We store it securely so the app works across devices, and we do not analyze or share it.

Marketplace tokens (eBay, Etsy, etc.). When you connect a marketplace, we store OAuth access tokens on our servers — never on your device — so the app can list items and sync orders on your behalf. Tokens are encrypted at rest and used only to perform actions you initiate.

Nothing else. We do not use analytics SDKs, crash reporters that phone home personal data, ad networks, or behavioral tracking of any kind.

2. What we do not do

• We do not sell your personal information — ever.
• We do not share your data with advertisers or data brokers.
• We do not build advertising profiles or track you across apps or websites.
• We do not use your inventory data to train AI models.
• We do not collect location data in the background.

3. Service providers

Running the app requires a small number of infrastructure providers. Each is bound by contract to use your data only to provide their service to us:

• Supabase — database and authentication (data stored in the US)
• Vercel — web hosting for this site
• RevenueCat / Apple / Google — subscription and payment processing
• Resend — transactional email (password resets only)
• Google (Gemini) — AI item identification; item photos are sent to Gemini to generate listing suggestions and are not retained by Google beyond the API call

We do not use any other third-party services that receive your personal data.

4. Security

All data is encrypted in transit (TLS) and at rest. Our database uses Row Level Security so each user can access only their own data. Marketplace OAuth tokens are stored encrypted. We review our security practices regularly.

5. Your rights

You can, at any time:

• Export all of your inventory data from within the app
• Delete your account and all associated data permanently
• Request a copy of any personal information we hold about you
• Correct any inaccurate information

To exercise any of these rights, email hello@jamju.cc. We will respond within 30 days.

6. Data retention

Your data is retained for as long as your account is active. When you delete your account, all personal data is permanently deleted within 30 days. Anonymized aggregate statistics (e.g. total number of active accounts) may be retained indefinitely but cannot be linked back to you.

7. Children

JAMJU is not directed at children under 13. We do not knowingly collect information from anyone under 13. If you believe a child has created an account, contact us at hello@jamju.cc and we will delete it promptly.

8. Changes to this policy

If we make material changes to this policy, we will notify you via email and post the updated policy here with a new effective date. Continuing to use JAMJU after that date constitutes acceptance of the changes.

9. Contact

Questions or concerns about privacy? Email us at hello@jamju.cc. We take privacy seriously and will respond promptly.