Effective Date: May 29, 2026 · Last Updated: May 29, 2026
This Privacy Policy explains how PokeTracker ("we," "us," "the site") collects, uses, stores, and protects information about visitors to pokemoncardvalue.io. We take privacy seriously and aim to be transparent about every category of data we handle.
PokeTracker is operated by an independent individual based in Belgium, European Union. As such, our processing of personal data is governed primarily by the European Union General Data Protection Regulation (GDPR), and where applicable, by relevant local data protection laws.
1. Data We Collect
PokeTracker collects the following categories of information:
- Analytics data: Anonymized usage data via Google Analytics 4, including pages visited, time on site, approximate geographic location (country/region level), device type, browser, and referral source. This data is aggregated and not used to identify individuals.
- Watchlist data: If you use the Watchlist feature, we store the card IDs you choose to track along with a session-based identifier. We do not require account registration, email addresses, or personally identifiable information to use this feature.
- Affiliate click data: When you click an affiliate link (eBay, TCGPlayer), the destination marketplace receives standard referral information including the link source and a tracking identifier. We receive aggregated commission reports from these networks but do not see your individual purchase activity.
- Server logs: Our hosting provider automatically logs IP addresses, request timestamps, user agents, and response codes for security and debugging purposes. These logs are retained for a maximum of 30 days.
We do not collect: real names, email addresses (unless you contact us directly), payment information, government IDs, or any biometric data.
2. Cookies and Tracking
PokeTracker uses cookies and similar technologies for the following purposes:
- Essential cookies: Required for basic site functionality including the Watchlist feature. These have no opt-out option as the site cannot function without them.
- Analytics cookies: Google Analytics 4 sets cookies to measure aggregated site usage. These cookies expire after a maximum of 24 months. You can opt out at any time using browser extensions like Google Analytics Opt-Out or by enabling Do Not Track in your browser.
- Affiliate cookies: When you click an eBay or TCGPlayer affiliate link, those services set their own cookies on the destination site to attribute purchases. PokeTracker does not control these cookies. Refer to eBay's Privacy Notice and TCGPlayer's Privacy Policy for details.
3. Legal Basis for Processing (GDPR)
Under GDPR, we process your data based on the following legal grounds:
- Legitimate interest: for aggregated analytics, server security logs, and improvements to the service.
- Consent: for non-essential cookies and analytics. You may withdraw consent at any time by clearing cookies or using browser opt-out tools.
- Contractual necessity: for the Watchlist feature, where storing your card list is required to deliver the feature you requested.
4. Your Rights Under GDPR
If you are a resident of the European Union or the United Kingdom, you have the following rights regarding your personal data:
- Right to access: Request a copy of the data we hold about you.
- Right to rectification: Request correction of inaccurate or incomplete data.
- Right to erasure ("right to be forgotten"): Request deletion of your data, subject to legal obligations to retain certain records.
- Right to restriction: Request that we limit how we process your data.
- Right to data portability: Request your data in a portable format.
- Right to object: Object to processing based on legitimate interest.
- Right to lodge a complaint: File a complaint with your national data protection authority. In Belgium, this is the Autorité de protection des données (APD).
To exercise any of these rights, contact us at growwithpassive@gmail.com. We will respond within 30 days as required by GDPR.
5. Data Sharing
PokeTracker does not sell, rent, or trade your personal data. We share data only with the following categories of third parties, and only as necessary to operate the service:
- Google Analytics (Google LLC): Aggregated analytics data. Google's data is processed in accordance with their Privacy Policy and Data Processing Terms.
- Affiliate networks (eBay Partner Network, Impact for TCGPlayer): Click attribution data when you follow an affiliate link.
- Hosting provider (Hostinger): Server infrastructure for the site to operate.
- Database provider (MongoDB Atlas): Storage for Watchlist data.
If we are legally required to disclose data (court order, valid law enforcement request), we will do so. We will not voluntarily share data with authorities outside of legally compelled circumstances.
6. Data Retention
We retain different categories of data for different periods:
- Server logs: 30 days
- Google Analytics data: up to 14 months (set to the minimum available)
- Watchlist data: indefinitely while the session-based identifier remains active, deleted automatically after 12 months of inactivity
7. International Data Transfers
Some of the services we rely on (Google Analytics, MongoDB Atlas) may process data in jurisdictions outside the European Economic Area, including the United States. These transfers are protected by standard contractual clauses or adequacy decisions where applicable, in compliance with GDPR Article 46.
8. Children's Privacy
PokeTracker is not directed at children under 13. We do not knowingly collect data from children under 13. If we become aware that we have collected data from a child under 13 without parental consent, we will delete that data promptly. If you believe a child has provided us data, contact us immediately.
9. Security
We implement reasonable security measures including HTTPS encryption for all site traffic, secure server configurations, and limited access to data. However, no internet transmission is completely secure. We cannot guarantee absolute security of data transmitted to or from PokeTracker.
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or in applicable law. Material changes will be communicated by updating the "Last Updated" date at the top of this page and, where appropriate, by a notice on the site homepage. Continued use of the site after changes constitutes acceptance of the revised policy.
11. Contact
For privacy questions, data requests, or complaints, contact us at:
Data Controller: Independent operator based in Belgium, European Union. Detailed registration information available on written request for legitimate purposes.