Privacy Policy

This Privacy Policy explains how BlockFactory Sp. z o.o., based in Poznan, Poland, NIP: [to be completed] ("BlockFactory", "Useble", "we", "us" or "our") collects, uses, shares, stores, and protects personal data in connection with Useble.

Useble is a local matching platform for people who may own items and people who may need items. We process personal data to operate accounts, alerts, matching, notifications, communications, safety tools, support, and platform administration.

This Privacy Policy should be read together with our Terms of Service. The Terms describe the rules for using Useble; this Privacy Policy describes our handling of personal data.

For the purposes of the General Data Protection Regulation (GDPR), BlockFactory Sp. z o.o. is the controller of personal data processed through Useble, unless a specific notice states otherwise.

You can contact us about privacy matters at support@useble.com. Please include enough information to identify your account or request, but do not send unnecessary sensitive information.

Any dedicated privacy contact or data protection officer details will be identified in this Privacy Policy or in a separate notice.

Account data: name, email address, password authentication data or authentication provider identifiers, account settings, profile details, language, city, and verification-related information where applicable.

Platform content: alerts, item categories, item descriptions, request and offer information where those features are available, messages, reports, support requests, reviews, uploaded images, and other content you choose to provide.

Location and matching data: selected city, approximate location signals, geolocation if you choose to allow it, radius or area preferences, item categories, matching history, notification preferences, and interactions with alerts or recommendations.

Technical and usage data: IP address, device and browser information, operating system, pages viewed, actions taken, timestamps, identifiers, logs, error reports, security events, referral information, and cookie or similar technology data.

We collect personal data directly from you when you create an account, edit your profile, create alerts, communicate, contact support, respond to requests, or otherwise use the Service.

We collect some data automatically from your device, browser, network, and interactions with the Service.

We may receive limited data from service providers, authentication providers, email delivery services, analytics tools, security providers, other users, or public sources where necessary to operate, secure, support, or protect the Service.

We use personal data to create and manage accounts, authenticate users, provide the web app and APIs, remember settings, create alerts, display relevant information, and operate matching and notification features.

We use personal data to communicate with you about your account, alerts, security, support requests, product changes, legal notices, and administrative matters.

We use personal data to prevent abuse, investigate suspicious activity, enforce our Terms, protect users, detect technical issues, debug errors, improve reliability, understand aggregate product usage, and comply with legal obligations.

We may use aggregated or de-identified information for analytics, product development, safety analysis, reporting, and business planning where it no longer identifies you.

Contract: we process data necessary to provide the Service you request, including account creation, authentication, alerts, core platform features, support, and operational communications.

Legitimate interests: we process data to secure the Service, prevent fraud and abuse, improve reliability, understand usage, develop features, enforce rules, protect our rights, and communicate about service-related matters, where those interests are not overridden by your rights and freedoms.

Consent: we rely on consent where required, such as for optional geolocation, certain cookies, marketing communications, or optional features that ask for permission. You may withdraw consent where applicable.

Legal obligation and legal claims: we process data where necessary to comply with law, respond to lawful requests, maintain required records, handle complaints, protect legal rights, and establish, exercise, or defend legal claims.

Useble is local by design. We may process your selected city, approximate area, or device-provided geolocation to suggest cities, show local matches, estimate distance, prevent misuse, and send relevant alerts.

Precise geolocation is used only where your browser or device permission allows it or where you otherwise provide it. You can usually disable geolocation through your browser or device settings.

If location permission is disabled, some local features may be unavailable or less accurate, but you may still be able to select a city manually where the product supports it.

We process contact details and communication content to send account emails, security notices, support replies, alert notifications, product notices, and other service-related messages.

Where in-app messaging, request, or offer features are available, we may process message content and metadata to deliver messages, maintain records, prevent abuse, investigate reports, and enforce the Terms.

You may be able to manage certain notification preferences in the Service or through your device, email, or browser settings. Some administrative and security communications cannot be disabled while you maintain an account.

We may use cookies, local storage, pixels, SDKs, and similar technologies to keep you signed in, remember settings, secure sessions, measure usage, detect errors, improve performance, and understand how the Service is used.

Some technologies are necessary for the Service to function. Others may depend on consent or settings available through the product, browser, or device.

You can control cookies through your browser settings. Blocking certain cookies or storage may affect sign-in, security, preferences, or other product features.

Service providers: we share personal data with providers that help us operate the Service, such as hosting, database, authentication, storage, email delivery, analytics, security, monitoring, customer support, and infrastructure providers.

Other users: where product features allow it, certain profile details, city, alerts, requests, offers, messages, item information, or reports may be visible to other users as necessary for matching, communication, safety, or dispute context.

Legal and safety purposes: we may disclose data where necessary to comply with law, respond to lawful requests, enforce our Terms, protect rights and safety, investigate abuse, or prevent fraud.

Business changes: if BlockFactory is involved in a merger, acquisition, financing, restructuring, sale of assets, or similar transaction, personal data may be transferred as part of that transaction, subject to appropriate safeguards.

Where providers process personal data on our behalf, we use appropriate contractual, organisational, and technical safeguards required by applicable data protection law.

Processors are authorised to process personal data only for specified purposes and must protect the data according to their obligations to us and applicable law.

We review provider categories based on the nature of the service, the data involved, security needs, and legal requirements.

Personal data may be processed in Poland, the European Economic Area, and other countries where our providers or infrastructure operate.

Where personal data is transferred outside the European Economic Area, we rely on appropriate safeguards such as adequacy decisions, standard contractual clauses, supplementary measures where required, or another lawful transfer mechanism.

Transfer safeguards may vary depending on the provider, location, and type of processing.

We keep personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, including providing the Service, maintaining accounts, security, support, legal compliance, dispute handling, fraud prevention, and legitimate business records.

Retention periods may differ by data category. Account data is generally kept while the account exists. Logs and security records are usually kept for shorter periods unless needed for investigation, security, legal, or compliance reasons.

When data is no longer needed, we delete it, anonymise it, or restrict it according to applicable law and our operational requirements.

We use technical and organisational measures designed to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or unauthorised access.

Measures may include access controls, encryption in transit, credential protection, logging, monitoring, backups, provider safeguards, least-privilege practices, and security reviews appropriate to the risk.

No online service can guarantee absolute security. You are responsible for using a strong password, keeping credentials confidential, and notifying us if you suspect unauthorised access to your account.

Subject to applicable law, you may have the right to request access to your personal data, correction of inaccurate data, deletion of data, restriction of processing, portability of data, and objection to certain processing.

Where processing is based on consent, you may withdraw consent at any time. Withdrawal does not affect processing that occurred before withdrawal.

You may object to processing based on legitimate interests where the law allows. You may also object to direct marketing at any time.

To exercise rights, contact support@useble.com. We may need to verify your identity and may refuse, limit, or charge for requests where permitted by law, for example if a request is manifestly unfounded or excessive.

Useble may use automated systems to support matching, alert delivery, recommendations, ranking, fraud prevention, spam detection, abuse prevention, security, and moderation.

These systems may consider account activity, city, item category, device signals, interaction history, report signals, and other relevant data.

We do not intend to make decisions based solely on automated processing that produce legal effects concerning you or similarly significant effects, unless permitted by law and accompanied by required safeguards.

Useble is not intended for children. You must be at least 18 years old to use the Service.

We do not knowingly collect personal data from children. If you believe a child has provided personal data to Useble, contact us so we can review and take appropriate action.

The Service may contain links to third-party websites, tools, stores, or services. Their privacy practices are governed by their own policies.

We are not responsible for third-party privacy practices, content, security, or processing unless they process data for us as our processor under applicable law.

We may update this Privacy Policy from time to time to reflect legal, technical, product, or business changes.

If changes are material, we will take reasonable steps to notify you through the Service, by email, or by another appropriate method.

The updated Privacy Policy applies from the date stated on the page or notice, unless applicable law requires a different approach.

Controller: BlockFactory Sp. z o.o., Poznan, Poland, NIP: [to be completed].

Privacy and support contact: support@useble.com.

Please include your account email, the right or request you want to exercise, and enough information for us to understand and respond to your request.