Privacy Policy

1. Introduction

Chronotime LTD (“WatchTraderHub”, “we”, “us”, or “our”) is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, store, and protect your information in compliance with the General Data Protection Regulation (GDPR), Bulgarian data protection laws, and other applicable privacy regulations worldwide.

2. What Data We Collect

2.1 Information You Provide

• Account Information: Name, email address, company details, VAT number
• Business Information: Inventory data, pricing, watch specifications
• Payment Information: Billing address, payment method (processed by Stripe)
• Communications: Support tickets, emails, feedback

2.2 Information We Collect Automatically

• Usage Data: How you interact with our platform
• Technical Data: IP address, browser type, device information
• Cookies: See Section 9 for detailed cookie information

2.3 Data From Integrated Services

• Information necessary to sync with Chrono24, eBay, Shopify, WooCommerce, and Wristler.eu
• Limited to data required for inventory synchronization

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

3.1 Contract Performance

• To provide our services and manage your account
• To process payments and maintain transaction records
• To sync your inventory with integrated platforms

3.2 Legitimate Interests

• To improve our services and user experience
• To ensure platform security and prevent fraud
• To provide customer support

3.3 Consent

• To send marketing communications (newsletter)
• To use analytics and performance cookies

4. How We Use Your Data

We use your personal data to:

• Provide and maintain WatchTraderHub services
• Process payments and manage subscriptions
• Sync your inventory with selected platforms
• Provide customer support
• Send service-related communications
• Send marketing emails (only with consent)
• Analyze usage to improve our services
• Ensure security and prevent fraud
• Comply with legal obligations

5. Data Sharing and Third Parties

5.1 Service Providers

We share data with trusted service providers who assist us in operating our platform:

• Supabase: Database and authentication (GDPR compliant)
• Cloudflare R2: Secure image storage (GDPR compliant)
• Vercel: Platform hosting (GDPR compliant)
• Upstash Redis: Rate limiting and security (GDPR compliant)
• Stripe: Payment processing (GDPR compliant)
• Resend: Email delivery (GDPR compliant)

5.2 No Sale of Data

We never sell, rent, or trade your personal data to third parties.

6. Data Security

We implement appropriate technical and organizational measures to protect your data:

• Encryption in transit and at rest
• Regular security assessments
• Access controls and authentication
• Secure data centers with GDPR-compliant providers
• Regular backups and disaster recovery procedures

7. Data Retention

We retain your data for the following periods:

• Active Accounts: As long as your account remains active
• Inactive Accounts: 12 months after last sign-in
• After Account Deletion: 30-day deactivation period, then permanent anonymization of personal data
• Financial Records: 7 years as required by Bulgarian tax law

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Restrict Processing: Request limitation of data processing
• Right to Withdraw Consent: Withdraw consent at any time

Most rights can be exercised directly from your Settings page, including data export and account deletion. You can also contact us at support@watchtraderhub.com. We will respond within 30 days.

9. Cookie Policy

9.1 What Are Cookies

Cookies are small text files stored on your device that help us provide and improve our services.

9.2 Types of Cookies We Use

• Essential Cookies: Supabase authentication session cookies and cookie consent preference — always active, cannot be disabled
• Analytics Cookies: Not currently in use. When activated, will require your explicit consent
• Marketing Cookies: Not currently in use. If added, will require your explicit consent

You can manage your cookie preferences through our Cookie Settings panel, accessible via the footer link or the cookie consent banner shown on your first visit. For detailed information, see our Cookie Policy.

10. International Data Transfers

WatchTraderHub serves dealers worldwide. Some of our service providers may process data outside the European Economic Area (EEA). Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions. All our service providers are GDPR compliant.

11. Children's Privacy

WatchTraderHub is not intended for users under 18 years of age. We do not knowingly collect personal data from anyone under 18. If we discover such data has been collected, we will promptly delete it.

12. Updates to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will notify you of significant changes via email or platform notification. Continued use after changes constitutes acceptance.

13. Contact Information

For privacy-related questions, concerns, or to exercise your rights: