Loro

Loro is an online marketplace that helps buyers and sellers discover listings and communicate through messaging. Loro does not currently process payments in the MVP stage — payments may be introduced later under updated terms. Data Controller: [Your legal entity name] Registered Address: [Address] Support Email: support@loro.com Privacy Contact: privacy@loro.com

This Policy explains how we collect, use, share, retain, and protect personal data (information that identifies you or can reasonably identify you) and usage data (how you interact with the Service). We aim to follow the principles and requirements of Jamaica's Data Protection Act, 2020 (in force as of December 1, 2023), including lawful processing, transparency, data minimization, security, and user rights.

We process your data to provide the Service (create and manage accounts, display listings, enable messaging, and provide search and filters); ensure safety and trust (detect and prevent fraud, spam, scams, and abusive behavior; enforce our Acceptable Use Policy; and investigate reports); send communications (verification emails, password resets, security alerts, seller notifications, and support responses); improve and maintain the platform (debug issues, analyze usage trends, and improve performance); and meet legal and compliance obligations. Legal bases may include performance of a contract, legitimate interests in keeping the marketplace safe and functional, consent where required, and compliance with legal obligations under Jamaican law.

We do not sell your personal data. Other Users: Your public profile fields (display name, seller store name, listing details) are visible to other users. Messaging is visible only to conversation participants. Service Providers: We may share data with vendors for hosting, database storage, analytics, email delivery, security monitoring, and error logging. These providers only receive what they need to perform services for Loro. Legal, Safety & Enforcement: We may disclose data to comply with law, court orders, or lawful requests; investigate fraud, cybercrime, or harassment; or protect users, the public, or Loro's rights and safety. Business Transfers: If Loro is involved in a merger, acquisition, or sale of assets, user data may be transferred as part of that transaction, subject to appropriate safeguards.

Your data may be stored or processed outside Jamaica depending on our hosting providers. Where that happens, we apply appropriate safeguards and access controls to protect your data.

We keep data only as long as necessary for operating the Service, ensuring safety and fraud prevention, and meeting legal compliance and dispute resolution obligations. Account data is retained while your account is active, with limited retention after deletion for legal and safety logs. Messages are retained to support user experience, fraud detection, and dispute handling, with backups kept for a limited period. Security logs are retained for a defined period to prevent abuse and investigate incidents. Note: If you delete content, copies may remain in backup systems temporarily.

Subject to applicable law, you may have the right to access the personal data we hold about you, correct inaccurate data, request deletion where legally permitted, object to certain processing or request restriction, and withdraw consent where processing is based on consent. To exercise any of these rights, email privacy@loro.com. We may need to verify your identity before responding. Loro will also comply with requirements under Jamaica's Data Protection Act, including data controller registration where applicable.

We use reasonable administrative, technical, and organizational safeguards including access controls and least-privilege permissions, encryption in transit (HTTPS/SSL), monitoring for suspicious activity, and secure backups with incident response processes. No system is 100% secure. You are responsible for keeping your password confidential and using strong, unique passwords.

We use cookies and local storage for login sessions and security, preferences such as location filters, and basic analytics to improve the Service. You can control cookies through your browser settings, but some features may not work properly if they are disabled.

The Service is not intended for children under 18 years of age. We do not knowingly collect data from children. If you believe a child is using Loro, please contact us at support@loro.com for removal.

We may update this Privacy Policy from time to time. We will post the updated version with a new effective date. Material changes may be communicated by email or an in-app notice. Continued use of Loro after updates constitutes acceptance of the revised Policy.