Privacy Policy

Last updated: July 13, 2026

CardRevive Grading ("we", "us", "our") is operated by itDreams (ABN: 17690197267), located in Padstow, NSW, Australia. This Privacy Policy explains how we collect, use, disclose, and protect your personal information in accordance with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

1. Information We Collect

Account Information: For password-based signup, we collect your email address, optional name, and password (stored as a cryptographic hash, never in plain text). When passwordless sign-in is configured and you choose it, we send your email address and a short-lived, single-use sign-in link to Resend for delivery. When Google sign-in is configured and you choose it, Google provides the name, email address, and profile image associated with that Google account.

Saved Grade Optimizer Scenarios: If an active Pro subscriber chooses to save a scenario, we store its bounded companies, grades, AUD values, costs, selling-fee percentage and strategy plus a server-derived label. We do not attach a card image, certificate number, note or public report to that scenario.

Payment Information: When you purchase credits, your payment is processed by Stripe. We do not store your credit card number, CVV, or full card details on our servers. Stripe handles all payment data in accordance with PCI-DSS standards. We receive and store your Stripe customer ID and transaction records (amounts, dates, credit pack purchased).

Card Images: When you upload trading card images for grading, we store the front and back images on our servers. These images are processed through our image analysis pipeline and sent to OpenAI's API for AI-powered grading assessment.

Usage Data: We collect information about how you use our service through an allowlisted first-party event sink and, only after you explicitly opt in, Google Analytics 4, Google Ads, Meta Pixel, and Sentry browser monitoring/session replay. Optional events can include a random browser ID, canonical page path, campaign source, feature interactions and verified conversion value. They exclude email, card images, card names, report text and stored file paths.

Operational and transaction events: Independently of optional browser tracking, our server records bounded payment, refund, subscription, referral-reward and service-request events needed to maintain credits, prevent duplicate rewards, resolve support issues and reconcile the account ledger. These first-party records do not create a browser ID. They are not sent to Google unless the related checkout supplied a GA client ID created after opt-in.

Returned Grade Evidence: If you choose to report a professional grading outcome, we store the company, returned grade, optional card year and dates. An optional certificate number is stored as a one-way keyed fingerprint plus its final four characters, not as the complete number. Optional slab-label photos are private by default.

Sharing and Referrals: If you share a public report, we may create an opaque referral code and store the referring-account relationship, source public report, qualifying purchase, reward and reversal status. Abuse checks compare existing account email aliases and Stripe customer identifiers inside the transaction; they do not publish those values or add them to a shared link. Shared links contain only the opaque report ID, referral code and campaign labels.

Device Information: We automatically collect your IP address and request/security details in standard server logs needed to deliver and protect the Service. Optional analytics processors may receive browser type, operating system and device details only after opt-in.

2. How We Use Your Information

  • To provide and operate the card grading service
  • To process payments and manage your credit balance
  • To attribute public-report referrals, issue eligible credits, and reverse rewards after payment reversals
  • To maintain your card library and grading history
  • To improve our grading accuracy and service quality
  • With your opt-in, to measure acquisition, advertising, feature use, errors and service performance
  • To communicate with you about your account, transactions, and service updates
  • To detect and prevent fraud, abuse, and security incidents
  • To comply with legal obligations

We do not use identifiable uploaded card images to train a separate CardRevive model. We may use anonymised, aggregated grading and usage data that does not include your personal information or identifiable card images to evaluate and improve the Service.

3. Third-Party Data Processors

We share your information with the following third-party services, each of which has their own privacy policies:

OpenAI:Card images (front and back) are sent to OpenAI's API for AI grading analysis. OpenAI states that API inputs and outputs are not used to train its models by default unless the API organisation explicitly opts in. OpenAI also states that default abuse-monitoring logs may retain customer content for up to 30 days unless different approved data controls apply or longer retention is legally required. See OpenAI's API data-controls documentation. We send the card images and grading instructions, not your account name, email address, or user ID.

Stripe: Payment processing. Stripe receives your payment details, email, and transaction amounts. Stripe's privacy policy is available at https://stripe.com/privacy.

Google:When Google sign-in is configured and you choose it, Google processes authentication and provides your account identity to us. When Google Analytics and Google Ads are configured, their browser tags load only after optional-tracking consent. Google may then receive the random Google client ID, device/browser details, canonical page paths, campaign fields, interactions, and server-verified purchase value and transaction ID for analytics and advertising measurement. Google's privacy policy is available at https://policies.google.com/privacy.

Meta:When configured, Meta Pixel loads only after optional-tracking consent and may receive its browser/click identifiers, device/browser details, page views and conversion events for advertising attribution and measurement. Meta's privacy policy is available at https://www.facebook.com/privacy/policy/.

Resend:When you request a password reset or passwordless sign-in link, Resend receives your email address, the short-lived link, and message content solely to deliver that authentication email. Resend also delivers restoration requests and returned-grade reminders you choose to initiate. Resend's privacy policy is available at https://resend.com/legal/privacy-policy.

Sentry:Server-side operational errors may be processed to secure and maintain the Service. Sentry browser error monitoring, performance telemetry and session replay initialise only after optional-tracking consent. Browser replay masks all text and media by default and blocks the complete centering-checker tool subtree. Sentry may receive technical error, device, page and masked interaction information; we do not intentionally set an account user ID in the browser SDK. Sentry's privacy policy is available at https://sentry.io/privacy.

Hetzner: Our servers are hosted by Hetzner Online GmbH in Singapore. Your data is stored on these servers. Hetzner's privacy policy is available at https://www.hetzner.com/legal/privacy-policy.

4. Data Storage And Security

Your data is stored on secured servers hosted by Hetzner in Singapore. We implement the following security measures:

  • All data is transmitted via HTTPS/TLS encryption
  • Passwords are hashed using bcrypt with a cost factor of 12
  • Password-reset bearer tokens are random, short-lived, single-use, excluded from proxy/telemetry logs, and stored in the database only as SHA-256 digests
  • Database access is restricted to the application layer only
  • Payment data is handled entirely by Stripe (PCI-DSS compliant)
  • Regular database backups are maintained with 30-day retention
  • Server access is restricted via SSH key authentication and firewall rules

5. Data Retention

Account Information: Retained for as long as your account is active. To request deletion, use the prepared email on the Account page or email us from your account address. After identity verification, personal information is deleted within 30 days, subject to legal retention requirements.

Card Images and Grade Reports: Retained for as long as your account is active and stored in your card library. You can delete individual cards from your library at any time.

Saved Optimizer Scenarios: Retained until you delete an individual scenario or complete verified account deletion. Scenario history is capped at 50 per account; saving beyond that limit removes the least recently updated entry.

Returned Grades and Evidence: Retained with the card until you remove the outcome, delete the card, or complete account deletion. Showing an outcome on a public report, including it anonymously in accuracy totals, and publishing its evidence image are three separate opt-in choices. Withdrawing a choice removes that use without changing the others.

Backups: Deleted data may remain in secured operational backups until the documented 30-day backup cycle expires. Backups are retained for recovery, not as an active library or public report.

Transaction Records:A verified account deletion removes CardRevive's account-linked purchase rows and deletes the Stripe customer so saved payment methods and future subscription billing stop. Stripe and CardRevive accounting records may retain the minimum payment information required for up to 7 years for Australian tax, dispute and fraud obligations; those records are not an active app account.

Usage Analytics:First-party funnel events and their random browser IDs are deleted after 14 months. Google Analytics user-level and event-level retention is configured for 14 months. Sentry browser errors, performance events and session replays are configured for no more than 30 days. Meta's _fbp cookie lasts up to 90 days; Meta and Google may retain processor records under their policies and our configured business-account controls.

Operational events: Bounded server-side transaction, reward and service-request audit events are deleted from the analytics table after 14 months. The underlying purchase/accounting record may remain for the longer legal period described above.

Acquisition Attribution: The first-party campaign cookie expires after 30 days. If you create an account, privacy-safe first-touch and last-touch source, medium, campaign, landing path, channel and dates remain with the account; unrelated query parameters and complete external URLs are not stored. Account-linked attribution and purchase snapshots are deleted from the app during verified account deletion. Limited payment metadata may remain with the legally required Stripe/accounting record. First-party funnel events are deleted after 14 months.

Referral Records: The account relationship remains while both accounts are active. Verified account deletion removes app referral and reward rows; a legally required payment record may still show limited fraud or dispute metadata. Public report consent can be revoked independently; revocation disables the report and share assets without rewriting payment records.

6. Your Rights

Under the Australian Privacy Principles, you have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate personal information
  • Request deletion of your personal information (subject to legal retention requirements)
  • Withdraw consent for data processing
  • Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

To exercise any of these rights, email info@cardrevive.com.au. For account deletion, you can use the prepared request.

7. Cookies

We use cookies and similar technologies for authentication, security, payments, stable server-side homepage experiment assignment, and service functionality. First-party analytics IDs and attribution, Google Analytics/Ads, Meta Pixel, and Sentry browser monitoring/replay remain off until you opt in. Use the persistent “Privacy choices” control on any page to reject or withdraw optional tracking; withdrawal stops new optional events and removes accessible optional identifiers. If you actively followed a referral link, its opaque code and landing path may remain for up to 30 days solely to fulfil the referral, without campaign or external-referrer fields. The experiment cookie contains only a control/fee-filter label and expires after 90 days. See our Cookie Policy for full details.

8. Children

Our service is not directed to children under 16. We do not knowingly collect personal information from children under 16. If you believe a child under 16 has provided us with personal information, contact us and we will delete it.

9. International Data Transfers

Your data may be processed in the following locations:

  • Singapore (Hetzner servers - primary data storage)
  • United States (OpenAI API processing, Stripe payment processing, and Sentry operational/browser monitoring)
  • United States (Resend email delivery, when you request an authentication or service email)
  • Google's global infrastructure (Google sign-in, plus consented Google Analytics and Ads when configured)
  • Meta's global infrastructure (consented Meta Pixel, when configured)

Required transfers occur only to provide, secure or administer the Service you request. Transfers to Google Analytics/Ads, Meta Pixel, and Sentry browser monitoring/replay occur only after you accept optional tracking and stop for new events when you withdraw that choice.

10. Changes To This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes via email. The "Last updated" date at the top of this page indicates when this policy was last revised.

11. Contact Us

If you have questions about this Privacy Policy or wish to make a complaint:

Email: info@cardrevive.com.au

Business: itDreams (ABN: 17690197267)

Location: Padstow, NSW 2211, Australia

You may also contact the Office of the Australian Information Commissioner:

Website: www.oaic.gov.au

Phone: 1300 363 992

Your privacy choices

Essential sign-in, security, payments and on-device grading always work.

Optional first-party analytics, Google Analytics and Ads, Meta Pixel, plus Sentry error and session replay stay off unless you accept.

Read the Cookie Policy and Privacy Policy.