0
Home
0 Cart
Checkout
Viewed

Privacy Policy

Update: December 18, 2025

Privacy Policy

Short legal notes

  • This Policy is incorporated by reference into the Terms of Service.

  • Nothing here limits any rights you may have under applicable law.

  • If any provision conflicts with local law, that law controls to the extent of the conflict.

We at Nylcos, LLC (together with our affiliates, “Nylcos”, “we”, “our” or “us”) respect your privacy and are strongly committed to keeping any information we obtain from you or about you secure. This Privacy Policy explains how we collect, use, disclose, and protect information when you access nylcos.com (the “Site”) and use our services (collectively “Services”).

We currently target users in the United States. If you access the Services from outside the U.S., your information will be transferred to and processed in the United States.

1. Personal Information We Collect

Personal data relating to you that we collect are as follows:


Personal Data You Provide: If you create an account to use our Services or communicate with us, we collect your Personal Data as follows:

  • Account Information: When creating an account with us, we will collect information associated with your account, including your name, email address, password, phone number, billing/shipping addresses, profile details, transaction history, and (if you choose) social login identifiers (Google or Facebook).
  • Vendor onboarding (18+ only): When you create an account as a seller we collect information such as your legal name (first & last name), email address, password, shop/business name, shop/business url, phone number, and payout information (bank account details handled through payment processors).
  • User Content & Listing: We collect Personal Data that you provide to our services, including your order details, invoices and receipts, refunds, disputes, product photos, titles, descriptions, pricing, inventory, shop policies, product ratings/reviews, and other content you upload (depending on the features you use).

Personal Data We Receive from You When Using Our Services:  When visiting, use, or interact with our Services, we receive the following information about your visit, use, or interactions (know as “Technical Information”):

  • Log & Usage Data: We collect information that your device or browser automatically sends when using our services. Log data includes your device type, Internet Protocol address, browser type and settings, date and time of your request, and approximate location derived from your Internet Protocol address. We also collect information about your use of our services, such as the pages you viewed, page you originate and referring from, the features you use and the actions you take, as well as your time zone, country, the dates and times of access, user agent and version, type of computer or mobile device, and your computer connection.
  • Location Information: We may determine the general area from which your device accesses our Services based on information like your approximate location derived from IP address for security and fraud detection, and to improve our services for your a better experience, for example to protect your account by detecting unusual login activity or to provide more accurate responses.
  • Cookies & Similar technologies: We use cookies and similar technologies to operate the Services, and improve your experience, for example to keep you signed in, remember preferences, protect against abuse, and measure performance. If you use our services without creating an account, we may store some of the information describes in this policy with cookies, to help maintain your preferences across browsing sessions. You can control cookies via your browser settings; some features may not function properly if cookies are disabled. If we deploy a consent banner, your selections there will govern non-essential cookies.
  • Information We Receive From Other Sources: We receive information from our trusted partners, such as security partners, to protect against fraud, abuse, and other security threats to our Services (to protect our customer and the services and improve reliability), from shipping logitsics who provide label, tracking, and delivery status, from Payments processors who provide limited transaction metadata (Nylcos does not store full card numbers) We also receive information from marketing vendors who provide us with information about potential customers of our business services.

2. How we use Personal Data

We may use your Personal Data for the following purposes:

  • To provide, operate, and maintain the marketplace (accounts, storefronts, listings, carts, orders, payments/payouts, shipping labels, tracking, messaging, reviews).
  • To improve and develop the services for usability, perfomance, reliability, and safety).
  • To communicate with you, including to send you information about our services such as transactional emails/SMS about orders, payouts, changes to terms/policies, and security alerts.
  • To prevent from potential threats, illegal activity, abuse, or misuses of our services, and to protect the security and integrety of our systems and services.
  • To comply with legal obligations with laws, tax and accounting abligations and protect rights, privacy and safety, and property.

We may also aggregate or de-identify Personal Data so that it no longer identifies you and use this information for the purposes described above, such as to analyze the way our Services are being used, to improve and add features to them, and to conduct research. We will maintain and use de-identified information in de-identified form and not attempt to reidentify the information, unless required by law.

3. Disclosure of Personal Data

We may use your Personal Data in the following circumstances:

  • Vendors and Service Providers: To assist us in meeting business operations needs and to perform certain services and functions, we may disclose Personal Data to vendors and service providers, including providers of hosting services, customer service vendors, cloud services, content delivery services, support and safety monitoring services, email communication software, web analytics services, payment and transaction processors, shipping & tracking logistics providers, and other information technology providers. Pursuant to our instructions, these parties will access, process, or store Personal Data only in the course of performing their duties to us.
  • Business Transfers: If we are involved in strategic transactions, completion of a merger, acquisition, financing, reorganization, bankruptcy, receivership, or transition of service to another provider, or similar transaction, your Personal Data may be disclosed in the diligence process with counterparties and others assisting with the Transaction and transferred to a successor or affiliate as part of that Transaction along with other assets.
  • Government Authorities or Other Third Parties: To comply with law, protect rights and safety, investigate fraud/abuse, or respond to legal process, we may share your Personal Data, including information about your interaction with our Services, with government authorities, industry peers, or other third parties in compliance with the law (i) if required to do so to comply with a legal obligation, or in the good faith belief that such action is necessary to comply with a legal obligation, (ii) to protect and defend our rights or property, (iii) if we determine, in our sole discretion, that there is a violation of our terms, policies, or the law; (iv) to detect or prevent fraud or other illegal activity; (v) to protect the safety, security, and integrity of our products, employees, users, or the public, or (vi) to protect against legal liability.
  • Affiliates: We may disclose Personal Data to our affiliates, meaning an entity that controls, is controlled by, or is under common control with Nylcos. Our affiliates may use this Personal Data in a manner consistent with this Policy.

4. Retention

We retain Personal Data only as long as necessary in order to provide our Services to you, or for other legitimate business purposes such as resolving disputes, safety and security reasons, or complying with our legal obligations. We retain Personal Data depending on a number of factors, for example:

  • Our purpose for processing the data (such as whether we need to retain the data to provide our Services);
  • The amount, nature, and sensitivity of the information;
  • The potential risk of harm from unauthorized use or disclosure;
  • Any legal requirements that we are subject to.

5. Your Rights

Depending on where you live, you may have certain rights in relation to your Personal Data, such as the rights to access, delete, correct, port, restrict, object, or withdraw consent (where applicable). At launch we focus on U.S. users and support U.S. rights requests. For example, you may have the right to:

  • Access your Personal Data and information relating to how it is processed.
  • Delete your Personal Data from our records.
  • Update or correct your Personal Data.
  • Transfer your Personal Data to a third party (right to data portability).
  • Restrict how we process your Personal Data.
  • Withdraw your consent—where we rely on consent as the legal basis for processing at any time.
  • Object to how we process your Personal Data.
  • Lodge a complaint with your local data protection authority.

You can exercise some of these rights through your Nylcos account. If you are unable to exercise your rights through your account, please submit your request through privacy@nylcos.com. We may need to verify your identity and whether you are a buyer or vendor. In case we cannot verify your identity or if an exception applies (e.g., legal recordkeeping), we may automatically decline your request.

Photos, reviews, and storefront information you publish may be visible to others. Removing content from public view may not remove it from our backups and archives immediately.

6. Children

Our Services are not directed to, or intended for, children under 13. We do not knowingly collect Personal Data from children under 13. If you have reason to believe that a child under 13 has provided Personal Data to Nylcos through our services, please email us at privacy@nylcos.com. We will investigate any notification and, if appropriate, delete the Personal Data from our systems. Users under 18 must have permission from their parent or guardian to use our Services.

7. Security

We implement commercially reasonable technical, administrative, and organizational measures designed to protect Personal Data from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. Measures include security for data in transit; role-based access controls; WAF/CDN; performance/security features; anti-spam software; and regular backups and operational reviews. However, no Internet or email transmission is ever fully secure or error free. Therefore, you should take special care in deciding what information you provide to the Services. In addition, we are not responsible for circumvention of any privacy settings or security measures contained on the Service, or third-party websites.

8. Additional U.S state disclosures

Certain U.S. state privacy laws require disclosures about categories of Personal Data, sources, uses, and disclosures.

Your state privacy rights: Depending on your state, you may have rights to know/access, delete, correct, and opt-out of certain processing. At launch, we do not “sell” or “share” Personal Data as defined by CPRA, and we do not use Sensitive Personal Information to infer characteristics. To exercise your rights, email us at privacy@nylcos.com.

Verification: In order to protect your Personal Data from unauthorized access, change, or deletion, we may require you to verify identity (and whether you are a buyer or vendor) before you can submit a request to know, correct, or delete Personal Data. If you do not have an account with us, or if we suspect fraudulent or malicious activity, we may ask you to provide additional Personal Data for verification. If we cannot verify your identity, we will not be able to honor your request.

Appeals: Depending on where you live (if applicable in your state), you may have the right to appeal a decision we make relating to requests to exercise your rights. To appeal a decision, please send your request to privacy@nylcos.com with “Appeal” in the subject line.

9. Changes to the Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will publish an updated version and effective date on this page, unless another type of notice is required by applicable law. If changes are material, we will provide additional notice (e.g., email, banner, or dashboard notice).

10. How to contact us

Please contact us if you have questions, concerns or requests related to this Policy.

Privacy Officer: privacy@nylcos.com.

Contact Support: support@nylcos.com.

Back to top