CardSentinel

Privacy Policy

Last updated: 1st August, 2025

Introduction

At CardSentinel, we are committed to protecting your privacy and ensuring transparency about how we collect, use, and protect your personal information. This Privacy Policy explains our practices regarding data collection and usage when you use our Magic: The Gathering card price and availability tracking service.

Information We Collect

Authentication Information

When you sign in with Google, we collect your Google account email address, profile name, and profile picture (if available). This information is provided by Google's OAuth service and is used solely for account authentication and identification.

Card Alert Data

When you create card alerts, we store information about the cards you're tracking, your price and quantity thresholds, alert preferences (foil/non-foil), and notification settings. This data is linked to your account to provide personalized alert services.

Usage Information

We may collect anonymous usage data such as search queries, page views, and general usage patterns to improve our service. This data is not linked to your personal identity.

Technical Information

We automatically collect certain technical information including your IP address, browser type, device information, and access logs. This information is used for security, troubleshooting, and service optimization.

How We Use Your Information

  • To authenticate your account and provide secure access to our services
  • To create, manage, and deliver card alert notifications via email
  • To send you important service updates and notifications about your alerts
  • To analyze usage patterns and improve our service functionality
  • To detect and prevent fraud, abuse, and security issues
  • To comply with legal obligations and enforce our terms of service

Information Sharing and Third Parties

We work with trusted third-party services to provide our functionality:

Supabase (Authentication & Database)

We use Supabase for user authentication and data storage. Your account information and card alerts are stored securely on Supabase servers. Supabase operates under strict security and privacy standards.

Scryfall API (Card Data)

We use the public Scryfall API to retrieve Magic: The Gathering card information, images, and pricing data. No personal information is shared with Scryfall; only card search queries are sent.

Cardmarket (Price Data)

Price information is sourced from Cardmarket through Scryfall's API. We do not directly share any personal information with Cardmarket.

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

Data Storage and Security

We implement industry-standard security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

All data transmission is encrypted using HTTPS/TLS protocols. Your authentication is handled securely through Google OAuth and Supabase.

We retain your account information and card alerts for as long as your account is active. You can delete your account and data at any time by contacting us.

Your data is stored on secure servers managed by Supabase, which maintains data centers in various locations with appropriate security certifications.

Your Rights and Choices

You can access and review your account information and card alerts through your account dashboard

You can update your card alerts and account preferences at any time

You can delete individual card alerts or request complete account deletion

You can request a copy of your personal data we have on file

You can opt out of email notifications by managing your alert settings or contacting us

If you are in the European Union, you have additional rights under GDPR including data portability and the right to be forgotten

Cookies and Local Storage

We use browser local storage to save your preferences (such as view mode settings) and maintain your login session. We do not use tracking cookies or third-party advertising cookies. You can clear your browser's local storage at any time, though this may reset your preferences.

Data Protection and Compliance

We comply with the General Data Protection Regulation (GDPR) for users in the European Union

We respect the privacy rights of California residents under the California Consumer Privacy Act (CCPA)

Our lawful basis for processing your data is your consent for creating card alerts and legitimate interest for providing our services

Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us immediately.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal compliance. We will notify users of significant changes by posting the updated policy on this page and updating the 'Last Updated' date. Continued use of our service after changes constitutes acceptance of the updated policy.

Contact Information

If you have any questions about this Privacy Policy, your personal data, or would like to exercise your privacy rights, please contact us:

Email: info@cardsentinel.io

We will respond to privacy-related inquiries within 30 days.

The information presented on this site about Magic: The Gathering, including card names, images, set data, and mana symbols, is copyright Wizards of the Coast, LLC. This content is used under the Wizards of the Coast Fan Content Policy.

Logos and trademarks such as those of Cardmarket, Scryfall, TCGPlayer, and other platforms are copyright their respective owners and are used for informational and navigational purposes only.

Card listings, prices, and availability shown on this site are sourced from external partners or marketplaces and are provided as-is for convenience. We make no guarantees about accuracy, availability, or pricing. Always refer to the source marketplace for up-to-date information.

All other content © CardSentinel 2025.

HelpRoadmapPrivacy Policy