Back to Home

Privacy Policy

Last updated: January 15, 2025

We value your privacy and are committed to protecting your personal information.

Information We Collect

Account Information

When you create an account, we collect:

  • Email address (required for account creation and communication)
  • Authentication data (password hash, OAuth tokens for Google sign-in)
  • Account preferences (theme settings, notification preferences)
  • Referral codes (if you use or share them)

Gift Quiz & Suggestions Data

To provide personalized gift recommendations, we collect and process:

  • Quiz responses (recipient details, interests, budget preferences, occasions)
  • Generated gift suggestions and your interactions with them
  • Purchase tracking through affiliate links (for trending analysis)
  • Wishlist items and saved suggestions
  • Feedback on recommendation quality

Payment & Transaction Data

For credit purchases and transactions:

  • Credit balance and transaction history
  • Stripe payment session data (processed securely by Stripe)
  • Purchase confirmations and receipts
  • Refund requests and processing status

Usage & Analytics Data

To improve our service and understand usage patterns:

  • Page views, feature usage, and navigation patterns
  • Device information (browser type, screen size, operating system)
  • Session duration and frequency of visits
  • Error logs and performance metrics

How We Use Your Information

Core Service Delivery

  • AI Gift Recommendations: Your quiz responses are processed by OpenAI's GPT-4 to generate personalized gift suggestions
  • Account Management: Maintaining your profile, preferences, and purchase history
  • Credit System: Tracking your credit balance and processing purchases
  • Referral Program: Managing referral codes and awarding credits

Service Improvement

  • Trending Analysis: Analyzing popular gifts and categories to improve recommendations
  • Quality Enhancement: Using feedback to refine our AI prompts and suggestion algorithms
  • Feature Development: Understanding usage patterns to build better features

Communication

  • Account verification and password reset emails
  • Purchase confirmations and credit notifications
  • Important service updates and security notifications
  • Customer support responses (only when you contact us)

Information Sharing & Third Parties

We work with trusted third-party services to provide NiftyGift. Here's how your data is shared:

Essential Service Providers

  • Supabase: Database hosting, authentication, and session management
  • OpenAI: AI processing for gift recommendations (quiz data only, no personal identifiers)
  • Stripe: Secure payment processing for credit purchases
  • Resend: Email delivery for account notifications and support

Affiliate Partners

When you click on shopping links, we may share limited information with affiliate partners:

  • Amazon Associates: Product referral tracking (anonymous)
  • Etsy Affiliate Program: Product discovery and commission tracking
  • eBay Partner Network: Shopping behavior analysis (aggregated)
  • Google Shopping: Product comparison and availability

We Never Share

  • Your personal gift suggestions with other users
  • Individual quiz responses or personal preferences
  • Email addresses with marketing companies
  • Payment information beyond what Stripe requires

Data Security & Storage

Security Measures

  • Encryption: All data is encrypted in transit (HTTPS) and at rest
  • Authentication: Secure password hashing and OAuth 2.0 implementation
  • Database Security: Row-level security policies protecting user data
  • Access Controls: Limited employee access on a need-to-know basis

Data Retention

  • Active Accounts: Data retained while your account is active
  • Inactive Accounts: Data may be retained for up to 2 years after last login
  • Deleted Accounts: Personal data deleted within 30 days of account deletion
  • Analytics Data: Aggregated, anonymized data retained indefinitely for service improvement

Your Privacy Rights

Data Access & Control

You have the following rights regarding your personal data:

  • Access: Request a copy of all personal data we hold about you
  • Correction: Update or correct inaccurate personal information
  • Deletion: Request deletion of your account and associated data
  • Portability: Export your quiz responses and suggestion history
  • Restriction: Limit how we process your data

GDPR Rights (EU Residents)

If you're in the European Union, you have additional rights under GDPR:

  • Right to object to data processing for legitimate interests
  • Right to withdraw consent for optional data processing
  • Right to lodge a complaint with your local data protection authority
  • Right to know the legal basis for data processing

CCPA Rights (California Residents)

California residents have additional rights under CCPA:

  • Right to know what personal information is collected and how it's used
  • Right to delete personal information (with certain exceptions)
  • Right to opt-out of the sale of personal information (we don't sell data)
  • Right to non-discrimination for exercising privacy rights

Cookies & Tracking

We use cookies and similar technologies to enhance your experience. For detailed information about our cookie usage, please see our Cookie Policy.

Cookie Categories

  • Essential: Required for authentication and basic site functionality
  • Functional: Remember your preferences and settings
  • Analytics: Help us understand how you use our service
  • Affiliate: Track referrals to shopping partners (anonymous)

Children's Privacy

NiftyGift is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States where our servers are located. We ensure appropriate safeguards are in place for international transfers as required by applicable privacy laws.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Email notification to your registered email address
  • Prominent notice on our website
  • In-app notification when you next log in

Continued use of NiftyGift after such changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or want to exercise your privacy rights, please contact us:

Privacy Inquiries

Email: privacy@niftygift.com

Response Time: We respond to privacy requests within 30 days

Data Requests: Include "Privacy Request" in your email subject line

Related Legal Documents

Terms of ServiceCookie PolicyAffiliate DisclosureContact Us