Privacy Policy

1. Information We Collect

We collect information you provide directly to us, including:

Account Information: Name, email address, and profile information when you create an account or sign in using third-party authentication providers (Google or Discord)
Third-Party Authentication Data: When you sign in using Google or Discord OAuth, we receive your basic profile information (such as name, email, and profile picture) from these providers. We do not receive or store your passwords from these services.
Payment Information: Billing address and payment details processed securely by iyzico
Usage Data: Information about how you use our Service
Comment Data: Comments and content submitted through our widget

2. How We Use Your Information

We use the information we collect to:

Provide, maintain, and improve our Service
Process transactions and send related information
Send technical notices, updates, and support messages
Respond to your comments and questions
Monitor and analyze trends and usage

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

With your consent
With service providers who assist in our operations (e.g., payment processing via iyzico)
To comply with legal obligations
To protect our rights and prevent fraud

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. Payment information is processed securely through iyzico's PCI-DSS compliant infrastructure.

Website Owner Responsibility: The security of commenter data also depends on the websites that integrate our widget. Website owners who use Crowment are responsible for implementing adequate security measures on their own websites, including but not limited to protection against cross-site scripting (XSS) attacks, proper content security policies, and measures to prevent token leakage. Crowment cannot be held responsible for security vulnerabilities or data breaches resulting from inadequate security practices on third-party websites using our widget.

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. When you request deletion of your data (including comments and associated content), we perform a soft deletion where your data is marked as deleted but retained for 6 months to comply with legal requirements. After this 6-month retention period, your data will be permanently and irreversibly deleted from our systems.

6. Your Rights

You have the right to:

Access your personal data
Correct inaccurate data
Request deletion of your data
Object to processing of your data
Data portability

7. Cookies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.

8. Age Requirement

Our Service is intended for users who are 18 years of age or older. By using our Service, you confirm that you are at least 18 years old. We do not knowingly collect personal information from anyone under the age of 18. If we become aware that we have collected personal information from a user under 18, we will take steps to delete that information.

9. Changes to This Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us at [email protected].