Privacy Policy

Last updated: June 2, 2026

The Card Ledger ("we", "our", or "us") is committed to protecting your privacy. This policy explains what information we collect, how we use it, and your rights regarding your data.

1. Information We Collect

We collect information you provide directly and information generated by your use of the app:

2. How We Use Your Information

We do not sell your personal information to third parties.

3. Third-Party Services

We use the following third-party services to operate the app. Each has its own privacy policy:

Affiliate disclosure. The Card Ledger participates in affiliate programs. Some links in the app and on this website are affiliate links, meaning we may earn a commission if you make a purchase through them — at no additional cost to you. As an Amazon Associate, The Card Ledger earns from qualifying purchases. Affiliate relationships never influence the market values, comparable sales, or pricing data we show you; those are derived from real sold-listing data independently of any commission.

4. eBay Integration

Collector and Pro subscribers may connect their eBay seller account to The Card Ledger to create listings directly from the app. When you connect your eBay account:

We do not share your eBay tokens or seller data with any third party other than eBay's own API services.

5. Data Retention

We retain your account and collection data for as long as your account is active. You may delete your account at any time from the app (Profile → Settings → Delete Account), which permanently removes all your data from our systems within 30 days.

Crash reports and analytics data are retained for up to 90 days in aggregated or anonymized form.

6. Your Rights

Depending on your location, you may have the following rights:

To exercise any of these rights, contact us at contact@thecardledgerapp.com.

7. Children's Privacy

The Card Ledger is not directed at children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will delete it promptly.

8. Your Rights in the EEA, UK & Switzerland (GDPR)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, The Card Ledger (operated by its owner, a sole proprietor based in Texas, USA) is the data controller of your personal data. Our legal bases for processing are:

In addition to the rights in Section 6, you may restrict or object to processing, withdraw consent at any time, and lodge a complaint with your local data-protection authority. We do not carry out automated decision-making that produces legal effects concerning you.

9. California Privacy Rights (CCPA / CPRA)

If you are a California resident, you have the right to know what personal information we collect, to request its deletion or correction, and not to be discriminated against for exercising these rights.

We do not sell or share your personal information (as "sell" and "share" are defined under the CCPA/CPRA), and we do not use sensitive personal information beyond providing the Service. The categories we collect (identifiers such as your email; commercial information such as your collection and purchases; photos you upload; and usage/device data) are described in Section 1 and used for the purposes in Section 2.

To exercise your California rights, contact us at contact@thecardledgerapp.com. You may use an authorized agent to submit a request on your behalf.

10. International Data Transfers

We operate from the United States, and our service providers (including Supabase, Google, and RevenueCat) may process and store your data in the United States and other countries. Where personal data is transferred out of the EEA, UK, or Switzerland, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses. By using the Service, you understand your data may be processed in countries whose data-protection laws differ from those where you live.

11. Data Security

We use industry-standard security measures including encrypted connections (HTTPS/TLS), row-level security on our database, and secure credential management. No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the "Last updated" date at the top of this page and, where appropriate, by sending an in-app notification. Continued use of the app after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: