Privacy Policy
This Privacy Policy explains how HEATDROP ("HEATDROP," "we," "us") collects, uses, and protects information when brands and fans use our fair-drop platform — including the virtual waiting room, draw entries, and bot-defense gating.
The short version: we collect the minimum needed to run a fair drop, we never sell your personal data, and a fan's payment card is never charged unless they win.
1. Information we collect
- Entry data — name, email, and chosen variant when a fan enters a drop.
- Integrity signals — IP address, network/VPN indicators, device and browser fingerprints, and behavioral signals used solely to detect bots, fraud, and resale activity.
- Brand account data — contact details and store configuration for brands running drops.
- Usage data — pages viewed, queue position, and interaction events to operate and improve the service.
2. How we use it
- To place fans fairly in the waiting room and run provably-fair draws.
- To screen entries through our gates (Network, Identity, Location, Account, Fingerprint) and block bots and resellers.
- To process winning orders, and to notify winners and non-winners.
- To provide brands with bot-free analytics about their releases.
3. Payments
An entry is an authorized hold, not a payment. No funds move until a draw resolves. Card data is processed by our PCI-compliant payment partners — HEATDROP does not store full card numbers.
4. Sharing
We share data only with: the brand running a drop you entered; service providers (hosting, payments, IP-intelligence, email) under contract; and authorities where legally required. We do not sell personal data.
5. Data retention
Entry and integrity data is retained for as long as needed to operate drops, resolve disputes, and meet legal obligations, then deleted or anonymized.
6. Your rights
Depending on your region, you may request access, correction, deletion, or export of your personal data. Contact us to exercise these rights.
7. Contact
Questions about this policy? Email privacy@heatdrop.app.