Privacy Policy
PRIVACY POLICY
CleanListed™
Effective Date: March 25, 2026
Last Updated: March 25, 2026
This Privacy Policy explains how Northbound Software Group d/b/a CleanListed ("CleanListed," "we," "us," or "our") collects, uses, discloses, stores, and otherwise processes personal information when you access or use the CleanListed website, applications, messaging tools, listings, reports, boosts, badges, and related services (collectively, the "Services").
This Privacy Policy also describes certain choices and rights you may have, depending on where you live and subject to applicable law.
1. Scope
This Privacy Policy applies to personal information we collect:
- when you create or use a CleanListed account;
- when you browse, search, post, message, purchase a paid feature, or otherwise interact with the Services;
- when you contact us for support or otherwise communicate with us;
- when you participate in trust and safety, fraud prevention, moderation, seller verification, reviews, reporting, blocking, or compliance processes; and
- when we receive information from third parties in connection with the Services.
This Privacy Policy does not apply to:
- peer-to-peer device payments or other off-platform transactions between users that occur outside our Services;
- third-party websites, apps, databases, processors, or services that we do not control; or
- information processed solely on behalf of another company where we act only as a service provider.
2. Eligibility; Children and Teens
The Services are intended only for individuals who are at least 18 years old. The Services are not directed to children or teens.
If we learn or reasonably believe that we have collected personal information from or about a person under 18 in connection with the Services, we may suspend or terminate the account, remove associated content, restrict access, and delete or retain information as permitted or required by law and this Privacy Policy.
3. Personal Information We Collect
The personal information we collect depends on how you use the Services. We may collect the following categories of information.
A. Account and Profile Information
We may collect:
- first name and last name;
- email address;
- phone number, if provided;
- ZIP code and general location information;
- account identifiers and login-related information;
- profile or authentication information received from supported sign-in providers such as Google and Apple;
- profile image or avatar information, if available through your sign-in provider or account setup; and
- account status, moderation status, trust and safety status, and related account metadata.
B. Listing, Device, and Marketplace Information
We may collect information you submit in connection with listings, device checks, and marketplace activity, including:
- device type, model, IMEI, serial number, and similar device identifiers;
- listing title, description, condition, pricing, battery health, carrier status, lock status, repair history, parts history, and similar listing details;
- listing photos, uploaded media, upload metadata, and related listing-photo records;
- device-screening requests, comparison inputs, and resulting device-status or mismatch outputs, including blacklist, lost-or-stolen, lock-status, or similar verification results;
- listing location information, including ZIP code and location-derived output such as city and state;
- badge, boost, report, trust signal, and related marketplace metadata; and
- listing lifecycle events such as creation, edits, moderation, boost or badge activity, sold status, or removal.
C. Communications and User-Generated Content
We may collect:
- in-app messages and other communications sent through the Services;
- support requests, emails, appeals, complaints, reports, dispute-related communications, the topic you select, and basic request context;
- reviews, ratings, feedback, reports, blocks, and related reputation or safety signals; and
- any content, files, screenshots, images, attachments, or records you submit to us.
D. Paid Feature Information
We may collect information related to paid features and one-time purchases, including:
- records of purchases for boosts, IMEI checks, badges, reports, or similar paid features;
- billing identifiers, billing contact information, and references tying a paid feature purchase to the related listing, verification, or marketplace flow;
- transaction amounts, taxes, invoices, receipts, quotes, price-lock records, and payment status; and
- limited payment-related information made available to us by payment processors, while the payment processors collect the full payment credentials needed to complete the transaction.
E. Device, Usage, and Technical Information
We may automatically collect:
- IP address;
- browser type, device type, device identifiers, operating system, app or browser settings, and language preferences;
- timestamps, session data, referral URLs, and similar usage logs;
- pages viewed, listings viewed, searches, feature interactions, and engagement data;
- crash data, diagnostics, and performance data; and
- security logs, fraud signals, access logs, and related technical telemetry.
F. Location Information
We may collect location-related information, including:
- ZIP code or general location you provide, save, or ask us to use for browsing or listing activity;
- approximate location inferred from IP address;
- browser geolocation, including latitude and longitude, if you choose to allow location access on your device or browser; and
- supported ZIP codes, city and state display, proximity estimates, and other geocoded or derived location information used to determine nearby supported areas and related marketplace functions.
Raw or more precise location information may be used internally for trust and safety, eligibility, fraud prevention, and platform operations. Other users may see more limited location output, such as city, state, or approximate distance, rather than your raw coordinates, and we do not disclose your precise coordinates to other users merely because you set a location.
G. Verification, Fraud, and Compliance Information
We may collect or create information used for trust and safety, fraud prevention, moderation, and compliance, including:
- verification information and supporting materials you submit;
- information received from fraud-prevention, device-check, or verification vendors;
- photo-screening signals, screenshot or stock-image detection results, moderation outputs, rejection decisions, and related review or retention records;
- reports of suspicious activity, prohibited conduct, policy abuse, or safety concerns;
- moderation decisions, risk alerts, account restrictions, investigation records, and internal notes; and
- records associated with seller verification, suspicious activity reporting, listing-device mismatch review, or marketplace compliance workflows.
H. Information We Derive or Infer
We may generate internal data, summaries, analytics, or inferences from the information above, including:
- trust and safety signals;
- fraud, abuse, or compliance indicators;
- listing quality or moderation signals;
- review or reputation summaries;
- product, support, or operational summaries; and
- internal analytics and derivative outputs used to operate, secure, improve, and administer the Services.
4. Sources of Personal Information
We may collect personal information:
- directly from you;
- automatically from your device or browser when you use the Services;
- from supported sign-in providers, such as Google and Apple;
- from payment processors;
- from carriers, IMEI-check providers, external device-status databases, fraud-prevention vendors, or verification vendors;
- from mapping, geolocation, analytics, hosting, communication, and support providers;
- from other users, including buyers, sellers, reviewers, reporters, or support participants;
- from legal, regulatory, or law-enforcement sources; and
- from our affiliates, contractors, service providers, and internal administrative tools.
5. How We Use Personal Information
We may use personal information for the following purposes.
A. To Provide and Operate the Services
We use personal information to:
- create and manage accounts;
- authenticate users;
- publish and manage listings;
- provide messaging, search, discovery, badge, report, boost, support, and related features;
- process one-time paid features and related taxes, receipts, and reconciliation; and
- operate, troubleshoot, debug, and administer the Services.
B. Trust, Safety, Fraud Prevention, and Security
We may use personal information to:
- detect, investigate, prevent, and respond to fraud, abuse, policy violations, suspicious activity, and security incidents;
- verify sellers, devices, listings, or reported facts;
- review messages, photos, uploads, reports, moderation history, and related records;
- screen uploaded listing photos for safety, quality, screenshot, stock-image, main-subject, and related marketplace-policy concerns, including whether an upload may be rejected and retained with related moderation records;
- screen submitted IMEI or device identifiers and compare provider responses against your listing details to determine lost-or-stolen or blacklist results, lock-status outcomes, listing eligibility, mismatch handling, seller restrictions, or similar trust and safety outcomes;
- assess trust, risk, eligibility, or restriction decisions;
- enforce our Terms, platform rules, and internal policies; and
- protect CleanListed, users, and third parties.
C. Paid Features and Financial Operations
We may use personal information to:
- process purchases for boosts, reports, IMEI checks, badges, and similar one-time paid features;
- connect paid-feature purchases to the related listing, verification, or marketplace flow and return you to the relevant experience after checkout where applicable;
- manage quoted prices, price locks, promotional features, invoices, receipts, and payment reconciliation;
- respond to payment failures, disputes, chargebacks, or reversals; and
- maintain internal financial, accounting, and audit records.
D. Communications and Support
We may use personal information to:
- send transactional emails, receipts, legal notices, security notices, moderation notices, dormant-listing notices, and support communications;
- respond to customer support requests, disputes, appeals, or complaints, including storing and routing support submissions through our support systems and inbox providers;
- communicate about account status, safety issues, or policy enforcement; and
- provide service-related updates and administrative messages.
If we offer promotional or marketing communications in the future, you will be able to opt out as described in those messages or by contacting us.
E. Compliance, Legal, and Operational Purposes
We may use personal information to:
- comply with legal, regulatory, tax, court-order, subpoena, marketplace-compliance, or law-enforcement obligations;
- investigate and respond to legal claims or disputes;
- maintain internal records, audits, and compliance processes;
- support service operations, internal administration, and quality assurance; and
- enforce our agreements and protect our rights, property, systems, users, and business.
F. Analytics, Product Improvement, and Internal Development
We may use personal information to:
- analyze usage trends and marketplace performance;
- improve our products, moderation systems, trust systems, support tools, and security controls;
- test, develop, and evaluate features; and
- create internal analytics, summaries, or derivative outputs for service operations and improvement.
6. Automated Processing; Moderation; Administrative Access
We may use automated tools, rules-based systems, machine-learning systems, and human review for trust and safety, fraud prevention, listing quality review, photo screening, support, analytics, security, and product improvement.
This may include automated or vendor-assisted screening of uploaded listing photos for safety and quality issues, including screenshot or stock-image concerns and whether the phone appears to be the main subject, and automated or vendor-assisted device-status checks using submitted IMEI or similar device identifiers together with listing-related comparison inputs to evaluate blacklist, lost-or-stolen, lock-status, mismatch, and similar trust and safety outcomes.
CleanListed’s authorized personnel, contractors, service providers, and internal administrative tools may access, review, correlate, analyze, summarize, and use account data, listings, photos, media, reports, messages, block and report history, moderation records, support records, paid-feature records, investigation records, security logs, and related operational metadata for trust and safety, fraud prevention, customer support, legal compliance, quality assurance, security, investigations, enforcement, service operations, and product improvement, subject to this Privacy Policy and applicable law.
We may also use internal administrative or AI-assisted tools to help review, summarize, or answer internal operational questions about alerts, users, listings, moderation, support, security, boosts, emails, and related administrative workflows.
7. How We Disclose Personal Information
We may disclose personal information in the following ways.
A. To Service Providers and Vendors
We may disclose personal information to vendors and service providers that help us operate the Services, including:
- cloud hosting, storage, database, and infrastructure providers;
- authentication and identity providers;
- payment processors;
- email, support-inbox, and communications providers;
- analytics and product-measurement providers;
- photo moderation, image analysis, and safety-review providers;
- IMEI-check, device-data, and carrier-related providers;
- fraud-prevention, verification, security, and compliance vendors;
- mapping, geolocation, and geocoding providers; and
- AI or model providers used to support internal moderation, admin assistance, analytics, or internal operations.
B. Major Service Categories We Currently Use
Depending on the feature and environment, the Services may currently rely on service providers such as:
- Google Firebase / Google Cloud, including authentication, storage, database, analytics, and related infrastructure;
- Stripe for payment processing for one-time paid features;
- Resend for email delivery;
- Google Cloud Vision or similar services for automated photo or image screening;
- external IMEI / device-check providers;
- OpenAI and/or Google Gemini or similar providers for certain internal administrative or AI-assisted tooling.
We may change providers over time. This Privacy Policy covers equivalent providers that perform similar functions for us.
C. To Other Users and the Public
We may disclose information to other users or make it visible through the Services when you choose to post, list, message, review, rate, or otherwise interact on the platform.
Depending on the feature, other users may see limited seller- or listing-related information such as listing details, listing photos, first name and last initial or other display information, city and state, review or rating summaries, sold status, related marketplace activity, and limited verification-related output such as masked IMEI last-four digits or similar verification summaries where needed to support the marketplace workflow. Raw ZIP codes, precise coordinates, internal moderation records, security logs, and similar internal fields are not disclosed to other users merely because a listing is visible. Payment credentials submitted through processor-hosted checkout flows are handled by the payment processor and are not disclosed to sellers or other marketplace users.
D. For Legal, Safety, and Compliance Reasons
We may disclose personal information to courts, regulators, law enforcement, governmental authorities, tax authorities, consumer-protection authorities, marketplace-compliance bodies, or other third parties where we believe disclosure is reasonably necessary or appropriate to:
- comply with law, regulation, subpoena, court order, or legal process;
- enforce our Terms or policies;
- investigate fraud, suspicious activity, or violations;
- protect the rights, property, safety, or security of CleanListed, our users, or others; or
- support legal claims, audits, or compliance processes.
E. Business Transfers
We may disclose or transfer personal information in connection with an actual or proposed merger, acquisition, financing, sale of assets, reorganization, bankruptcy, or other corporate transaction.
F. With Your Direction or Consent
We may disclose personal information where you direct us to do so or where you otherwise consent.
G. Aggregated or De-Identified Information
We may use, disclose, or publish aggregated, anonymized, or de-identified information for lawful purposes.
8. Cookies, Similar Technologies, and Analytics
We and our vendors may use cookies, SDKs, local storage, log files, session technologies, and similar technologies to operate the Services, remember preferences, authenticate sessions, analyze performance, detect fraud, and understand usage.
These technologies may be used for:
- core site and app functionality;
- authentication and account security;
- analytics and performance measurement;
- fraud prevention and abuse detection; and
- service improvement.
We currently use analytics and service-functionality technologies. Optional analytics are only turned on after the in-product consent prompt is accepted.
We do not currently describe cross-context behavioral advertising, ad-network tracking, or retargeting technologies in this Privacy Policy because those practices are not part of the current product behavior described here.
You may be able to control certain cookies or similar technologies through your browser or device settings. However, disabling some technologies may affect functionality.
9. Paid Features and Price-Quote Records
If you purchase a paid feature, we may collect and maintain records relating to the purchase, billing status, taxes, invoices, receipts, quote IDs, price-lock records, boost-related records, badge or IMEI-check records, related listing or verification references, and payment reconciliation.
Some paid features may be offered using dynamic pricing, limited-time offers, demand-based pricing, or short-lived quoted prices. We may keep records of quoted or locked pricing, related parameters, and purchase reconciliation data to administer purchases, prevent abuse, support customer service, resolve disputes, and enforce our Terms.
10. Data Retention
We retain personal information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Services, maintain accounts, operate the marketplace, complete paid-feature purchases, comply with law, resolve disputes, enforce our agreements, detect fraud, protect security, and maintain business records.
Retention periods vary by category of information and use case. In general:
- account and profile information is retained while the account is active and for a period afterward to support account recovery, customer support, fraud prevention, legal compliance, and business recordkeeping;
- listing and device information is retained while listings remain active and for a period afterward to support marketplace operations, disputes, fraud review, support, and compliance;
- messages and support communications may be retained while the related conversation or case is active and for a period afterward to support support operations, trust and safety, investigations, dispute resolution, and enforcement;
- paid-feature and transaction-related records may be retained for longer periods where needed for accounting, tax, reconciliation, chargeback handling, dispute resolution, audits, and legal compliance; and
- technical logs, usage data, security telemetry, verification records, location-related records, moderation records, and investigation records may have shorter or category-specific retention periods depending on the system, purpose, sensitivity, and whether the information is tied to an investigation, appeal, or compliance need.
We may retain information for longer than our baseline retention periods where necessary for legal holds, litigation, disputes, chargebacks, fraud or abuse review, moderation appeals, audits, regulator requests, incident response, security investigations, or other permitted legal or operational reasons.
Removal from public display does not necessarily mean immediate deletion from internal systems. We may also retain information in backups, archives, logs, and other internal records for a period of time after deletion or account closure, subject to applicable law.
11. Security
We use administrative, technical, and physical safeguards designed to help protect personal information. These may include access controls, authentication measures, vendor management, logging, monitoring, and security practices designed to protect confidentiality, integrity, and availability.
No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
12. Your Choices
You may have the following choices, depending on how you use the Services:
Account information.
You may update certain account or profile information through your account settings.
Location permissions.
You may control browser or device location permissions through your device or browser settings.
Marketing or promotional emails.
If we send marketing emails in the future, you may opt out using the unsubscribe link in those messages or by contacting us.
Cookies and browser settings.
You may manage some cookies or similar technologies through browser or device settings.
Paid features.
You may choose whether to purchase optional paid features such as boosts, checks, reports, or similar tools.
13. U.S. State Privacy Rights
Depending on where you live and subject to applicable law, you may have rights to:
- know or access certain personal information we hold about you;
- request correction of inaccurate personal information;
- request deletion of certain personal information;
- obtain a copy of certain personal information in a portable format;
- opt out of certain processing activities where applicable under law;
- appeal certain decisions relating to your privacy rights request; and
- limit certain uses of sensitive personal information where applicable.
To submit a privacy rights request, contact us at:
Email: legal@cleanlisted.com
Mail: 3537 N Steele Blvd, Suite 110, Fayetteville, AR 72703, United States
We may need to verify your identity before completing a request. We may deny or limit requests where permitted by law, including where an exemption applies, where we cannot verify your identity, or where the information must be retained for legal, security, fraud-prevention, transaction, or compliance reasons.
If applicable law gives you the right to appeal a denial of a request, you may do so by replying to our response or contacting us again at the address above with "Privacy Appeal" in the subject line.
14. California Privacy Notice
This section applies to California residents to the extent the California Consumer Privacy Act, as amended ("CCPA"), applies.
The sections above titled "Personal Information We Collect," "Sources of Personal Information," "How We Use Personal Information," and "How We Disclose Personal Information" describe the categories of personal information we collect, the sources of that information, the business or commercial purposes for collecting and using it, and the categories of third parties to whom we disclose it.
Depending on the facts, the categories of personal information we may collect or disclose about California residents may include identifiers, customer records, commercial information, internet or network activity, geolocation data, audio/electronic/visual information, inferences, and other information described above.
Based on the current product behavior described in this Privacy Policy, we do not currently sell personal information for money, and we do not currently share personal information for cross-context behavioral advertising as those terms are used under California law.
We do not currently use or disclose sensitive personal information for purposes that would require a separate right to limit beyond providing the Services, security, fraud prevention, compliance, and other permitted business purposes.
California residents may submit requests to know, correct, delete, or obtain a copy of certain personal information, and may exercise any applicable rights as described in the U.S. State Privacy Rights section above.
We do not currently state that we respond to Global Privacy Control signals. If that changes, we will update this Privacy Policy accordingly.
We will not unlawfully discriminate against you for exercising applicable privacy rights.
15. Do Not Track
Some browsers may transmit "Do Not Track" signals. Because there is not a universally accepted standard for DNT, we do not currently respond to DNT signals.
16. International Use and Data Transfers
The Services are intended primarily for users in the United States. If you access the Services from outside the United States, you understand that your information may be processed and stored in the United States and other jurisdictions where we or our vendors operate.
17. Third-Party Services and Links
The Services may link to, integrate with, or rely on third-party services, including sign-in providers, payment processors, IMEI or device-data providers, mapping providers, analytics vendors, email providers, AI providers, security vendors, and support tools. Their privacy practices are governed by their own policies, not this Privacy Policy.
18. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will post the updated version with a revised "Last Updated" date. If we make material changes, we may provide additional notice where appropriate.
Your continued use of the Services after the effective date of the updated policy, to the extent permitted by law, indicates your acknowledgment of the updated policy.
19. Contact Us
If you have questions about this Privacy Policy or want to submit a privacy request, contact us at:
Northbound Software Group d/b/a CleanListed
3537 N Steele Blvd, Suite 110, Fayetteville, AR 72703, United States
Email: legal@cleanlisted.com
Support: support@cleanlisted.com