Privacy

Privacy Policy

Last updated: February 2026

1. Introduction

GimmeDat ("we," "our," or "the Platform") is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

2. Information We Collect

2.1 Information You Provide

  • Account information: email address, display name, class year, phone number (optional), and campus affiliation.
  • Profile information: bio, avatar photo, and any other details you choose to add.
  • Offers: titles, descriptions, photos, pricing, and category selections.
  • Messages: content of messages sent through the Platform’s messaging system.
  • Reports: information you provide when reporting other users or content.

2.2 Information Collected Automatically

  • Device and browser information: browser type, operating system, and device identifiers (via User-Agent header).
  • Usage data: pages visited, offer views, search queries, and interaction patterns.
  • IP address: collected for security, rate limiting, and fraud prevention purposes.

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain the Platform and its features.
  • Verify your identity and campus affiliation.
  • Display your offers and profile to other users on your campus.
  • Facilitate messaging between users.
  • Send you notifications about your account, offers, and messages (based on your preferences).
  • Moderate content and enforce our Terms of Service.
  • Detect and prevent fraud, abuse, and security threats.
  • Improve the Platform through aggregate analytics.

4. Information Sharing

We do not sell your personal information. We share information only in these limited circumstances:

  • With other users on your campus: your display name, avatar, class year, bio, and offer content are visible to authenticated users at your school.
  • Cross-campus isolation: your information is never shared with users at other campuses. Each school is a completely separate community.
  • Service providers: we may share data with third-party services that help us operate the Platform (e.g., hosting, email delivery, error tracking), under strict data protection agreements.
  • Legal requirements: we may disclose information if required by law, court order, or to protect the safety of users.

5. Data Retention

  • Account data is retained as long as your account is active.
  • Deleted offers are soft-deleted and may be retained for moderation purposes for up to 90 days.
  • Messages are retained for the duration of the conversation thread.
  • You may request full deletion of your account and associated data at any time.

6. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Passwords are hashed using industry-standard algorithms (never stored in plain text).
  • Authentication tokens are securely managed with expiration and rotation.
  • API access is protected by rate limiting and input validation.
  • Database connections are encrypted.

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

7. Your Rights

You have the right to:

  • Access your personal data through your profile and account settings.
  • Correct inaccurate information by editing your profile.
  • Delete your account and associated data.
  • Control notifications through your notification preferences.
  • Export your data upon request.

8. Cookies & Local Storage

The Platform uses browser local storage to maintain your authentication session. We do not use tracking cookies or third-party advertising trackers. Session data is stored locally in your browser and expires after 30 days of inactivity.

9. Children’s Privacy

The Platform is intended for college students aged 18 and older. We do not knowingly collect information from anyone under 18. If we learn that we have collected data from a minor, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes via email or platform notification. Continued use of the Platform after changes constitutes acceptance of the updated policy.

11. Contact

If you have questions about this Privacy Policy or wish to exercise your data rights, please reach out through the Platform's support channels.

See also our Terms of Service

Terms of Service