Privacy Policy

Effective: February 20, 2026

1. Introduction

Vinyl Catalog ("we," "us," or "our") is a record collection management service operated by Joseph Condon. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website and iOS application (collectively, the "Service").

By using Vinyl Catalog, you agree to the collection and use of information as described in this policy.

2. Information We Collect

Account Information

  • First name and last name
  • Display name
  • Email address
  • Password (stored encrypted, never in plain text)
  • Apple ID identifier (if you sign in with Apple)

Collection Data

  • Albums and releases you add to your collection
  • Condition ratings, personal notes, and ratings you assign
  • Purchase details (price paid, date, location) if you choose to enter them
  • Folders and organizational structures you create

Automatically Collected Data

  • Activity logs of collection changes (additions, removals, edits) for your activity feed
  • Basic request information (IP address, browser type) via standard server logs

3. How We Use Your Information

We use your information to:

  • Provide and maintain the Vinyl Catalog service
  • Authenticate your account and secure your data
  • Display your collection, statistics, and activity history
  • Estimate collection values based on marketplace data
  • Send password reset emails when requested
  • Improve the service based on usage patterns

4. Third-Party Services

Discogs

We use the Discogs API to provide album, artist, and label information. When you search for or add a release, your search queries are sent to the Discogs API. Discogs has its own privacy policy. We cache release data locally to reduce API calls and improve performance.

Image Storage

Album, artist, and label images are downloaded and stored on Backblaze B2 cloud storage to ensure fast and reliable image loading. These are publicly accessible images sourced from Discogs.

Apple Sign In

If you use Sign in with Apple, we receive and store only your Apple user identifier and, if you choose to share it, your email address. We verify your identity through Apple's authentication servers. Apple's privacy policy governs data on their end.

5. Data Storage and Security

Your data is stored in a MySQL database. We use industry-standard security measures including:

  • Encrypted password storage (bcrypt hashing)
  • HTTPS encryption for all data in transit
  • Token-based API authentication (Laravel Sanctum)
  • Per-user data isolation — you can only access your own collection

6. Data Sharing

We do not sell, rent, or share your personal information with third parties for marketing purposes. Your collection data is private to your account. We may disclose information only if required by law or to protect the safety of our users.

7. Cookies and Local Storage

We use:

  • Session cookies — to keep you logged in and maintain your session
  • CSRF tokens — to protect against cross-site request forgery
  • Local storage — to remember your appearance preferences (dark/light mode)

We do not use tracking cookies or third-party analytics cookies.

8. Your Rights

You have the right to:

  • Access — View all data associated with your account through the app
  • Update — Edit your profile information and collection data at any time
  • Delete — Delete your account and all associated data through the account settings. This action is permanent and cannot be undone.
  • Export — Your collection data can be viewed in full through the application

9. Children's Privacy

Vinyl Catalog is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us so we can remove it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Continued use of the Service after changes constitutes acceptance of the revised policy.

11. Contact Us

If you have questions about this Privacy Policy or your data, please contact us.