Privacy Policy

1. Introduction

ResellerOS ("Company", "we", "us") operates the ResellerOS platform ("Platform"), a white-label infrastructure for digital account marketplaces. This Privacy Policy describes how we collect, use, store, and protect your personal information. By using the Platform, you consent to the data practices described herein.

2. Information We Collect

Reseller Registration: Full name, email address, Telegram username (optional), business name, desired store name, and website URL. Passwords are stored exclusively as irreversible bcrypt hashes.

Customer Orders: Email address and order details (order number, product selection, payment amount). We do not collect physical addresses, phone numbers, or government ID from customers.

Payment Data: Cryptocurrency transaction identifiers are processed by our third-party payment provider (Cryptomus). We do not store private keys or wallet seed phrases.

Technical Data: IP addresses, browser type, device information, and usage analytics via standard server logs.

3. How We Use Your Information

We use collected information to: (a) process reseller applications and manage accounts; (b) facilitate order processing, payment verification, and delivery; (c) provide customer support; (d) monitor platform security and prevent fraud; (e) generate anonymized analytics; (f) comply with legal obligations.

4. Data Storage & Security

Data is stored on encrypted cloud infrastructure (PostgreSQL with SSL/TLS). Passwords are hashed using bcrypt with salting. Access to production databases is restricted. We implement industry-standard security measures including encrypted connections, parameterized queries, and role-based access controls.

5. Third-Party Services

We use: Cryptomus (payment processing), Neon.tech (database hosting), and Vercel (application hosting). Each operates under their own privacy policy.

6. Data Sharing

We do not sell, rent, or trade your personal information. We may disclose information only: (a) to comply with legal obligations; (b) to protect rights, property, or safety; (c) in connection with a merger or acquisition, with prior notice.

7. Data Retention

We retain data while your account is active. Order records are kept for 24 months minimum for dispute resolution. Upon deletion request, personal data is removed within 30 days, except where legally required.

8. Your Rights

Depending on jurisdiction, you may: (a) access your data; (b) request correction; (c) request deletion; (d) object to processing; (e) request data portability. Contact us through official support channels to exercise these rights.

9. Cookies

We use essential cookies for session management and authentication only. No third-party advertising cookies or cross-site tracking pixels are used.

10. Children's Privacy

The Platform is not intended for individuals under 18. We do not knowingly collect personal information from minors.

11. Changes

We may update this policy. Material changes will be posted with a revised date. Continued use constitutes acceptance.

12. Contact

For questions regarding this Privacy Policy, contact us through the Platform's official support channels.