Privacy Policy

How we protect and manage your personal information

Last updated: This privacy policy is effective as of its last revision date and complies with Costa Rica Law 8968, EU GDPR, and California CCPA/CPRA.

Quick navigation

1. Who controls your information 2. Personal information we collect 3. How we use the information 4. Sharing and disclosure 5. Third-party providers 6. Country or residence changes 7. Your privacy rights 8. Data retention 9. Information security 10. Changes to this policy 11. Contact and responsible entities 12. Definitions

1. Who controls your information

1.1 Data controller

The entity responsible for processing your personal data is Pawnfind LLC, a limited liability company registered at 254 Chapman Rd, Ste 208 #22061, Newark, Delaware 19702, United States.

You can contact us at: info@pawnfind.com

1.2 Payment processor

Third-party payment processing: Pawnfind uses Stripe and PayPal as gateways to process charges and refunds. Pawnfind LLC does not store full card data (tokens only).

Host payments are scheduled according to Platform rules and settled through processors or our bank account, depending on the operational flow.

2. Personal information we collect

Pawnfind collects data in three main ways: (A) data you provide, (B) data generated automatically when using the Platform, and (C) data received from authorized third parties.

A. Data you provide

Identification: legal name, profile photo, official ID number.
Contact: email, phone, postal address.
Pet data: breed, age, weight, vaccination schedule, and medical condition.
Payments: card token, IBAN, holder name (sensitive data processed by Stripe/PayPal).
User-generated content: reviews, messages, photos and videos.

B. Automatic data

Device and connection: IP address, browser type, operating system, mobile model.
Platform usage: pages visited, clicks, session time.
Cookies and similar technologies: session ID, preferences, tracking tags.

C. Third-party data

Payment processors: fraud checks, chargeback results.
Verification services: biometric matching, sanctions lists.
Social networks (optional login): profile ID, photo, verified email.
Insurers and veterinarians: claims reports, medical histories.

2.1 Sensitive and special data

Biometric verification (facial matching) is used solely for identity validation and impersonation prevention.

Pet health data ensures safety and proper care; it is never used for marketing.

2.2 Data we do NOT collect

We do not collect:

Sexual orientation, religion, or user credit history.
CCTV footage from hotels (owned by the host, accessible only with consent in disputes).

3. How we use the information

Pawnfind processes personal data only for legitimate, specific, and limited purposes.

Service delivery: account creation, bookings, confirmations, receipts.
Identity and fraud verification: selfie-ID validation, sanctions list review.
Animal safety and welfare: vaccine review, breed/care alerts.
Support and disputes: chat history, photos, veterinary reports.
Compliance: billing, tax, and legal obligations.
Product improvement: metrics, logs, A/B testing.
Marketing: newsletters, surveys, remarketing cookies (opt-in).
Research: anonymized trend reports.
Legal requirements: disclosure to competent authorities.

Automated decisions: fraud scoring and search ranking never produce legal effects without human review. You may request manual review.

4. Sharing and disclosure

Important: Pawnfind never sells your personal data. It is only shared with trusted partners under confidentiality agreements.

We share data with:

Service processors: Stripe, PayPal, AWS/Google, SendGrid/Twilio.
Verification/fraud tools: Persona, Onfido, Sift.
Insurers/veterinarians: liability insurance and emergency care.
Authorities: PRODHAB, IRS, courts.
Users/hosts: limited contact data after a booking.
Pawnfind group entities: Pawnfind Payments LLC, Pawnfind CR Ltd.

4.1 Corporate disclosures

In mergers, acquisitions, or restructurings, data may be transferred with equivalent protections.

4.2 With consent

Third-party marketing sharing is opt-in only and can be revoked at any time.

4.3 Transparency

We maintain internal transfer records and periodic vendor security reviews.

5. Third-party providers

Pawnfind integrates third-party providers under their own privacy policies.

Payment gateways: Stripe/PayPal.
Analytics: Google Analytics, Mixpanel.
Session recording: Hotjar.
Maps: Google Maps.
Social login: Google, Apple, Facebook.

5.1 External sites

If you leave pawnfind.com, third-party terms and policies apply.

5.2 Social login revocation

You can revoke social login permissions from your social network settings.

5.3 Cookies and SDKs

They are loaded only with explicit consent and managed in cookie preferences.

5.4 Data transfers

International transfers are protected by contractual safeguards, encryption and audits.

6. Country or residence changes

When users change countries, the applicable data protection regulation may vary.

Change within the same region: usually no change to legal framework.
Move to EEA/UK: GDPR rights apply.
Leaving EEA/UK to non-GDPR country: Delaware and local laws apply.
Move to/from California: CCPA/CPRA applies.
Host relocation: may impact tax and billing obligations.

Update your address in your account to ensure correct legal processing.

7. Your privacy rights

Under applicable law (Costa Rica Law 8968, EU/UK GDPR, California CCPA/CPRA), you may have the following rights:

Access
Rectification
Erasure
Restriction
Objection
Portability
CCPA opt-out
Non-discrimination

How to exercise your rights

Submit requests through our privacy portal or by emailing privacy@pawnfind.com. Identity verification may be required.

Filing a complaint

Costa Rica: PRODHAB.
European Union: local data protection authority.
United Kingdom: ICO.
California: CPPA.

8. Data retention

Data is retained only for as long as necessary for the purposes of this policy.

Data type	Retention period
Account and profile	Account lifetime + 5 years
Bookings and billing	5 years (tax compliance)
Chats and messages	3 years after checkout
KYC/AML documents	5 years
Access logs	12 months
Session cookies	24 hours
Analytics cookies	14 months
Marketing cookies	6 months
Backup data	30-day cycle

Exceptions: data may be retained longer for legal cases, active disputes, or security deposits.

9. Information security

We apply robust security standards and controls.

Technical measures

Encryption: TLS 1.3 (in transit), AES-256 (at rest).
MFA: available for all accounts.
Access controls: role-based and least privilege.
Monitoring: continuous security surveillance.
Testing: pentests and audits.

Incident response

In the event of a data breach, we will:

Notify authorities within applicable legal timeframes.
Notify affected users where appropriate.
Investigate and remediate the incident.

Responsible disclosure

If you detect a vulnerability, report it to info@pawnfind.com.

10. Changes to this policy

Pawnfind may update this policy due to legal, technical, or product changes.

Major changes: 15-day advance notice.
Minor editorial changes: immediate effect.

If you disagree, adjust your preferences or close your account before the effective date. Continued use after the effective date implies acceptance.

11. Contact and responsible entities

Data controller

Pawnfind LLC

254 Chapman Rd, Ste 208 #22061

Newark, Delaware 19702

United States

Payment processors

Stripe: stripe.com/privacy
PayPal: paypal.com/privacy

Contact channels

Privacy inquiries: privacy@pawnfind.com

Security incidents: info@pawnfind.com

General support: info@pawnfind.com

Privacy portal: pawnfind.com/privacy-portal

12. Definitions

Pawnfind

Website, subdomains, mobile apps, and related services.

User

Person who books services on the Platform.

Host / Provider

Provider who lists pet boarding spaces.

Account

Profile with access credentials.

Personal data

Any data that directly or indirectly identifies a person.

Processing

Collection, use, storage, sharing, deletion, etc.

Controller

Entity that determines purposes and means of processing.

Processor

Entity that processes data on behalf of the controller.

Payment services

Charge and fund disbursement operations.

Payment gateway

Transactional processing via Stripe and PayPal.

Cookies

Small files stored for functionality and analytics.

KYC/AML

Identity and money laundering prevention procedures.

Anonymization

Irreversible process that makes data non-identifiable.

Pseudonymization

Separation of identifying data and attributes.

Legitimate interest

Legal basis when user rights do not override it.

Supervisory authority

Data protection agency (PRODHAB, ICO, CPPA, etc.).

Privacy contact

For privacy inquiries and data requests

privacy@pawnfind.com

Related policies

Terms and conditions Cookie policy

← Back to home

↑