Help & Legal

Platform policies, terms and support resources.

Effective date: 2026-06-08

Privacy Policy

Effective date: 8 June 2026

This Privacy Policy explains how Devdazzle LLC ("Devdazzle," "we," "us," or "our") collects, uses, shares, and protects your personal data when you use Devdazzle - our digital-asset marketplace, freelancer service, and showcase portfolio - and the related websites and services (the "Platform"). It also explains the rights you have over your data and how to exercise them.

We serve users worldwide. If you are in the European Economic Area (EEA), the United Kingdom, or Switzerland, Section 10 (Your rights - GDPR) applies to you. If you are a resident of California or another U.S. state with a privacy law, Section 11 (Your rights - United States) applies to you.

At a glance

  • We collect only what we need to run the marketplace, pay sellers, and keep the Platform safe.
  • We do not sell your personal data, and we use no advertising or third-party analytics trackers.
  • We are the merchant of record, so we handle the payment, tax, and invoicing data that role requires.
  • The most sensitive fields (payment, identity, tax, and bank details, and the contents of private messages) are encrypted at rest.
  • You can access, correct, export, or delete your data - see Section 10 and Section 11.

1. Who we are

Devdazzle LLC is a limited liability company organized in the State of New Mexico, United States. As the operator of the Platform and the seller of record for purchases made on it, Devdazzle LLC is the controller of your personal data and is responsible for it under applicable law.

Where Devdazzle sells digital products to a buyer, it does so as the merchant of record - meaning we, rather than the individual seller, are the party to the sale, and we handle billing, tax, and the buyer's invoice or receipt.

You can reach us at any time using the details in Section 13.

2. Scope

This policy covers personal data we process about everyone who interacts with the Platform: visitors, registered users, buyers, sellers, and people who send us legal notices (such as copyright complaints). It does not cover third-party websites or services that link to or from the Platform; those have their own privacy policies.

3. The personal data we collect

We collect personal data in three ways: directly from you (when you register, fill in your profile, buy, sell, or contact us), automatically (technical data when you use the Platform), and from third parties (for example, your basic Google account details if you sign in with Google, and verification data from our payment provider). What we collect depends on how you use the Platform.

3.1 If you are a visitor

  • Network and device data - your IP address and browser/device information, collected through our content-delivery and security provider, used to deliver the site and keep it secure.
  • Cookie data - the strictly necessary cookies described in our Cookie Notice (session, security token, language, and cookie-banner preference). We use no advertising or analytics cookies.

3.2 If you are a registered user

In addition to the above:

  • Account data - username, email address, and a securely hashed password. If you sign in with Google, we receive your Google account identifier, email, name, and profile picture from Google. We record the date you accept our terms.
  • Profile and content - your display name and any optional details you add (biography, website, location, social links, birthday), your avatar and cover image, and the listings, portfolio items, reviews, and messages you post. Profile and published content are visible to others by design.
  • Preferences - your language, notification, and messaging settings, and an optional "remember me" token if you choose to stay signed in.
  • Activity - items you view, your cart, wishlist, owned-products library, and your notifications.

3.3 If you are a buyer

In addition to the above:

  • Billing data - your billing name, city, and country, and - where you provide them - your address, phone number, and tax or identity number (these last three are stored encrypted).
  • Transaction data - a record of each purchase (amounts, currency, tax, and a payment reference) and the products delivered to you, plus a record of files you download, used to deliver your purchases, handle refunds, and prevent fraud.
  • Card data is never stored by us. Your card details are entered directly into our payment provider's secure fields and processed by them; we never receive or keep your full card number.

3.4 If you are a seller

In addition to the above, to verify you and pay you we (and our payment provider) collect:

  • Identity and tax data - your legal name, government identity number, tax number, tax office, and company details. Your identity number and tax number are stored encrypted.
  • Payout data - your bank/IBAN details (stored encrypted) and your seller contact email, phone, and address (stored encrypted).
  • Verification data - your KYC (know-your-customer) status and related records. Much of the heavy verification data is collected directly by our payment provider rather than by us.
  • Payout and sales records - your transfers, amounts, commission, tax withheld, and related accounting entries.

3.5 If you send us a legal notice

If you submit a copyright or other legal notice, we collect the name, company, email, phone, and postal address you provide, the statements and signature in your notice, the IP address it was sent from, and any files you attach - so we can review and act on it.

We do not intentionally collect special categories of data (such as health, biometric, racial, or political data). Please do not send us such data.

4. How we use your data, and our legal bases

We use your personal data for the purposes below. Where the GDPR applies, the legal basis is shown in brackets.

  • Provide the Platform - create and operate your account, show listings, deliver purchases, and run the freelancer and showcase features. (Performance of a contract.)
  • Process payments as merchant of record - charge buyers, calculate and collect tax, issue invoices and receipts, and pay sellers. (Contract; legal obligation.)
  • Verify sellers (KYC) and prevent money laundering. (Legal obligation.)
  • Tax and information reporting - report seller identity and earnings or transaction data to the relevant tax authorities where required by digital-platform reporting rules (for example DAC7 in the EU, Form 1099-K in the United States, and similar regimes). (Legal obligation.)
  • Keep the Platform safe - prevent fraud, abuse, and security incidents, enforce our terms, and handle disputes and copyright notices. (Legitimate interests; legal obligation.)
  • Operate core features - search, real-time notifications, and content delivery. (Legitimate interests; contract.)
  • Communicate with you - send transactional emails such as verification codes, password resets, receipts, and service notices. (Contract.)
  • Optional features - non-essential profile fields and any optional updates you opt into. (Consent, which you can withdraw at any time.)

Where we rely on legitimate interests, we have weighed those interests against your rights and freedoms. Where we rely on consent, you can withdraw it at any time without affecting processing that already took place.

5. Who we share your data with

We do not sell your personal data, and we do not share it for cross-context behavioral advertising. We use no third-party advertising or analytics trackers. We share data only in these cases:

Service providers (processors). We use a small set of vendors that process data on our behalf under data-processing agreements:

  • Stripe (United States / global) - card processing as merchant of record, seller verification (KYC), payouts, tax calculation, and disputes.
  • ZeptoMail, by Zoho (European Union) - transactional email.
  • Cloudflare, including R2 storage (global / United States) - content delivery, security and DDoS protection, and file/image storage.
  • Google (United States / global) - "Sign in with Google," only if you use it.
  • Bunny.net (European Union, Slovenia) - video hosting and delivery, where used.

Our search and real-time notification systems are self-hosted on our own infrastructure and do not send your data to a third-party search or messaging service. Our hosting provider stores data on our behalf as part of our infrastructure.

Tax and government authorities. We report seller identity and earnings or transaction data to the relevant tax authorities where required by law (Section 4), and we may disclose data to comply with a law, court order, subpoena, or lawful government request.

Legal and safety. We may disclose data to enforce our terms, respond to copyright and other legal notices, protect the rights, property, or safety of users or the public, or in connection with an actual or proposed merger, acquisition, or sale of assets (subject to this policy).

Other users. Your public profile, listings, portfolio, and reviews are visible to others. Sellers and buyers see the information needed to complete and support an order.

6. International data transfers

We operate globally, so your data may be processed in countries other than your own, including the United States. Where we transfer personal data out of the EEA, the United Kingdom, or Switzerland, we rely on appropriate safeguards - primarily the European Commission's Standard Contractual Clauses (and the UK Addendum) together with each provider's data-processing agreement. Our email provider stores data in the European Union.

7. Cookies

We use only strictly necessary cookies and no advertising or analytics trackers. Full details, including each cookie and how to manage them, are in our Cookie Notice.

8. How long we keep your data

We keep personal data only as long as needed for the purposes above, then delete or anonymize it. Our standard periods are:

  • Account and profile data - kept for as long as your account exists, including while it is dormant, so you can come back at any time. We do not delete accounts for inactivity. When you ask us to delete your account, your personal data is anonymized about 30 days later, and you can cancel any time before then. Legal-hold exceptions below still apply.
  • Financial, tax, KYC, and payout records - kept for about 10 years, as required by tax, accounting, and anti-money-laundering law, even after an account is deleted.
  • Copyright and legal-notice records - kept for about 5 years after the matter is resolved.
  • Security and abuse logs (such as IP addresses and sign-in records) - kept for about 12 months for fraud prevention and security.
  • Password-reset and verification tokens - short-lived, expiring within a few days.
  • Optional/consent-based data - kept until you withdraw consent.

When you delete your account, we remove or detach your personal identifiers and unpublish your listings, but records we must keep by law (such as financial, tax, and copyright-notice records) are retained for the periods above with your account reference removed where possible. Items other people already bought from you stay available to those buyers; we do not generate new sales for a deleted account.

9. How we protect your data

We use administrative, technical, and contractual safeguards to protect your data, including:

  • Encryption in transit (HTTPS/TLS) for all traffic;
  • Encryption at rest for the most sensitive fields - payment and identity numbers, tax numbers, bank/IBAN details, seller contact details, and the contents of private direct messages;
  • Access controls limiting staff access to personal data on a need-to-know basis;
  • a hardened network where our origin servers sit behind our security/CDN provider and are not directly reachable;
  • session protections (HttpOnly, SameSite, and Secure cookies, and anti-forgery tokens); and
  • contractual safeguards with our service providers.

No system is perfectly secure, but we work to protect your data and will notify you and the relevant authorities of a personal-data breach where the law requires.

10. Your rights - EEA, United Kingdom, and Switzerland (GDPR)

If the GDPR applies to you, you have the following rights, which you can exercise from your account settings or by contacting us (Section 13):

  • Access - obtain a copy of the personal data we hold about you.
  • Rectification - have inaccurate or incomplete data corrected.
  • Erasure - have your data deleted ("right to be forgotten"), subject to our legal retention duties.
  • Restriction - ask us to limit how we use your data in certain situations.
  • Portability - receive your data in a portable format, or have it sent to another provider where technically feasible.
  • Object - object to processing based on our legitimate interests.
  • Withdraw consent - where we rely on consent, withdraw it at any time.
  • Lodge a complaint - complain to your local data-protection authority.

We respond to rights requests within the time the law requires. We do not make decisions producing legal or similarly significant effects about you based solely on automated processing. Your right to erasure does not override our legal duty to keep certain records (Section 8); in those cases we restrict the data rather than delete it.

11. Your rights - United States (California and other states)

If you are a California resident, the CCPA/CPRA gives you the right to: know what personal information we collect and how we use it; access and delete it; correct inaccurate information; and appeal a decision. Residents of other U.S. states with privacy laws have similar rights.

We collect the categories of personal information described in Section 3 (identifiers; commercial and transaction information; internet and device activity; financial and identity-verification information; professional information; and visual content such as avatars), for the business purposes in Section 4.

We do not sell your personal information, we do not share it for cross-context behavioral advertising, and we do not use it for targeted advertising or significant automated profiling. You will not be discriminated against for exercising your rights, and you may use an authorized agent to submit a request. To make a request, contact us using Section 13.

12. Children

The Platform is intended for adults. You must be at least 18 years old to create an account or use the Platform, and we ask for your date of birth at sign-up to enforce this. We do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will delete it.

13. How to contact us

For any privacy question or to exercise your rights, you can:

  • open a support ticket from your dashboard at /dashboard/tickets (for signed-in users);
  • email us at [email protected]; or
  • write to us at Devdazzle LLC, Levent Mah. Cevdetpaşa Cd. No:1/1, Beşiktaş/İstanbul.

If you are in the EEA or United Kingdom, you may contact us at the address above; where the law requires it, we will designate a representative under Article 27 of the GDPR / UK GDPR and identify them here.

14. Changes to this policy

We may update this policy from time to time. The effective date above reflects the current version. For material changes we will provide notice through the Platform and, where appropriate, by email. Your continued use of the Platform after a change takes effect means you accept the updated policy.