Privacy Policy

Last updated: March 24, 2026

1. Introduction

Ionic Market ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains what personal data we collect, how we use it, and the choices you have in relation to it when you use the Ionic Market platform ("the Platform").

By using the Platform, you agree to the collection and use of information as described in this Policy. If you do not agree, please do not use the Platform.

2. Information We Collect

2.1 Account Data

When you register, we collect your name, email address, and password (stored in hashed form). Sellers additionally provide business or payout information required for Stripe Connect onboarding (e.g., legal name, address, bank details — collected and stored by Stripe, not us).

2.2 Profile and Listing Data

Sellers may provide a display name, bio, avatar, and product listings including descriptions, screenshots, and uploaded files. This information is stored to operate the Platform and is visible to other users as intended.

2.3 Usage Data

We automatically collect certain technical information when you visit the Platform, including IP address, browser type and version, pages viewed, referring URLs, and session duration. This data is used in aggregate to understand Platform usage and improve performance.

2.4 Communications

If you contact us via the Support page or submit a support ticket, we collect the contents of your messages and any attachments. This data is used solely to respond to your enquiry.

2.5 Transaction Data

We store records of purchases made on the Platform, including the product purchased, amount paid, and timestamp. This data is necessary for download delivery, dispute resolution, and accounting purposes.

3. Payment Data

All payment processing is handled by Stripe. We do not collect, store, or process your card number, CVV, or bank account details. These are entered directly into Stripe's secure, PCI-compliant infrastructure.

We receive from Stripe only a transaction confirmation, amount, and anonymised payment method summary (e.g., "Visa ending in 4242"). For Sellers, Stripe manages all identity verification and payout information directly. Stripe's privacy policy governs their handling of your data.

4. How We Use Your Information

We use the information we collect to:

  • Create and manage your account.
  • Process purchases and deliver digital products.
  • Facilitate seller payouts via Stripe.
  • Respond to support requests and resolve disputes.
  • Send transactional emails (purchase confirmations, password resets, payout notifications).
  • Detect and prevent fraud, abuse, and unauthorised access.
  • Analyse usage patterns to improve the Platform.
  • Comply with applicable legal obligations.

We do not sell your personal data. We do not use your data for third-party advertising.

5. Sharing of Information

We share your data only in the following circumstances:

5.1 Stripe

Payment and payout processing requires sharing transaction data with Stripe. Stripe acts as an independent data controller for information collected during payment processing. Please review Stripe's privacy policy for details.

5.2 Infrastructure Providers

We use Firebase (Google) for database, authentication, and file storage. These providers process data on our behalf under data processing agreements and are not permitted to use your data for their own purposes.

5.3 Legal Requirements

We may disclose your data if required to do so by law, court order, or governmental authority, or where necessary to protect the rights, property, or safety of Ionic Market, its users, or the public.

5.4 Business Transfers

In the event of a merger, acquisition, or sale of all or part of our business, your data may be transferred as part of that transaction. We will notify you of any such change via email or a prominent notice on the Platform.

6. Cookies and Tracking

6.1 Essential Cookies

We use cookies and similar technologies that are strictly necessary to operate the Platform, including session authentication tokens and user preference storage. These cannot be disabled without affecting Platform functionality.

6.2 Analytics

We may use analytics tools to collect aggregate, anonymised data about how users interact with the Platform. This helps us identify issues and improve the user experience. We do not use third-party advertising or tracking cookies.

6.3 Managing Cookies

You can control cookies through your browser settings. Note that disabling essential cookies may prevent you from logging in or using certain features.

7. Data Security

We implement industry-standard security measures to protect your personal data, including encryption in transit (TLS), hashed password storage, and access controls that limit who within our organisation can access your data.

Despite these measures, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security and encourage you to use a strong, unique password for your account.

8. Data Retention

We retain your account data for as long as your account is active. Transaction records are retained for a minimum of 7 years to comply with financial record-keeping obligations. Support communications are retained for 2 years.

When you delete your account, we remove your personal profile data within 30 days. Anonymised transaction records and aggregated usage data may be retained indefinitely as they cannot be linked back to you.

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data, subject to legal retention requirements.
  • Restriction: Request that we limit processing of your data in certain circumstances.
  • Portability: Request your data in a structured, machine-readable format.
  • Objection: Object to processing of your data for certain purposes.

To exercise any of these rights, please contact us via the Support page. We will respond within 30 days. We may need to verify your identity before processing certain requests.

10. Third-Party Services

The Platform integrates with third-party services including Stripe (payments) and Firebase (infrastructure). These services have their own privacy policies and data practices. We encourage you to review their policies:

  • Stripe Privacy Policy: stripe.com/privacy
  • Google / Firebase Privacy Policy: policies.google.com/privacy

Ionic Market is not responsible for the privacy practices of these third parties.

11. International Users

Ionic Market is accessible globally. By using the Platform, you acknowledge that your data may be processed in countries outside your own, including countries that may not have the same data protection laws as your jurisdiction.

Where we transfer data internationally, we take steps to ensure that appropriate safeguards are in place, such as using service providers that adhere to recognised data protection frameworks.

12. Children's Privacy

The Platform is not directed at children under the age of 18. We do not knowingly collect personal data from minors. If we become aware that we have inadvertently collected data from a child, we will delete it promptly.

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For material changes, we will notify registered users by email or via an in-platform notice.

Continued use of the Platform after changes have been posted constitutes your acceptance of the updated Policy.

14. Contact

For privacy-related questions or to exercise your data rights, please contact us via the Support page.