Privacy Policy

Account Information: When you create an account, we collect your name, email address, phone number, and mailing address. For identity verification, we may collect government-issued ID information and biometric data (facial recognition for liveness checks).

Transaction Information: We record details of trades and transfers you initiate or participate in through GatSwap, including item descriptions, trade values, FFL dealer selections, and compliance check results.

Usage Data: We automatically collect information about how you interact with our platform, including pages visited, features used, search queries, and device information (browser type, operating system, IP address).

Communications: Messages sent through our in-app messaging system are stored to facilitate trade negotiations and provide dispute resolution support.

Facilitating Trades: We use your information to match you with potential trading partners, verify your identity, process compliance checks, and coordinate FFL transfers.

Compliance & Legal Obligations: We use your data to comply with federal and state firearms regulations, including ATF reporting requirements and background check facilitation.

Platform Improvement: We analyze usage patterns to improve our matching algorithms, user experience, and security measures.

Communications: We may send you transaction updates, security alerts, product announcements, and promotional offers. You can opt out of promotional communications at any time.

FFL Dealers: When you initiate a transfer, relevant information is shared with the selected FFL dealer to facilitate the legal transfer process.

Compliance Authorities: We may share information with law enforcement or regulatory bodies as required by law or to comply with legal obligations.

Service Providers: We work with third-party providers for identity verification, payment processing, hosting, and analytics. These providers are contractually bound to protect your data.

We Never Sell Your Data: GatSwap does not sell, rent, or trade your personal information to third parties for marketing purposes.

All data is encrypted at rest using AES-256 encryption and in transit using TLS 1.3.

Identity verification data is processed through a zero-knowledge architecture, meaning our staff cannot access your raw identification documents.

We conduct quarterly third-party penetration testing and maintain SOC 2 Type II compliance.

Access to user data is restricted to authorized personnel on a need-to-know basis, with all access logged and audited.

Access & Portability: You can request a copy of all personal data we hold about you in a machine-readable format.

Correction: You can update your account information at any time through your profile settings or by contacting support.

Deletion: You can request deletion of your account and associated data, subject to legal retention requirements for compliance records.

Opt-Out: You can opt out of promotional communications and certain data processing activities through your account settings.

Essential Cookies: Required for platform functionality, security, and authentication. These cannot be disabled.

Analytics Cookies: Help us understand how users interact with our platform. You can opt out of these in your browser settings.

We do not use advertising or tracking cookies. GatSwap does not participate in cross-site tracking or targeted advertising networks.

Account data is retained for as long as your account is active, plus 30 days after account deletion for recovery purposes.

Transaction and compliance records are retained for a minimum of 7 years as required by federal firearms regulations.

Communication records are retained for 3 years for dispute resolution purposes.

Usage analytics data is anonymized after 24 months.

If you have questions about this privacy policy or wish to exercise your data rights, contact our Privacy Team at privacy@gatswap.com.

GatSwap Inc., 1234 Commerce Street, Dallas, TX 75201