Privacy Policy

1. Who we are

This privacy policy is for ComboBroker ("ComboBroker," "we," "us," or "our"), an independent fishing-gear comparison and combo-building service operated from Central Texas, United States. It explains what information we collect when you use the website at combobroker.com (the "Service") and what we do with it.

By using the Service you agree to this policy. If you don't agree, don't use the Service.

2. Information we collect

Information you give us

• Account information. When you sign in with Google, we receive your email address, your display name, and your profile picture URL from Google. We do not receive your Google password.
• User content. Combos you save, product lists you build, and searches you save. If you make a combo public, the combo's contents are visible to anyone with the link; your email and account info are not attached to public combos.
• Correspondence. Anything you send us by email or through a contact form, including the email address you sent it from.

Information we collect automatically

• Log and device data. IP address, browser type and version, operating system, referring page, and the pages you visit on ComboBroker. We use this to keep the site running and to investigate abuse.
• Usage analytics. Aggregated events like "product page viewed" or "combo created," used to understand which features matter and which are broken.
• Cookies and local storage. We use cookies and browser local storage to keep you signed in, remember your filter preferences, and hold your in-progress combo between page views. See section 7.

Information we do not collect

We do not knowingly collect payment card information, government IDs, location data more precise than your general region, biometric data, or sensitive personal information as defined under applicable law. ComboBroker is not directed to children under 13 and we do not knowingly collect data from them.

3. How we use information

We use the information described above to:

• Provide the Service — show you products, run searches, save your work, render shareable combo pages.
• Authenticate you and keep your account secure.
• Reply to your support requests.
• Understand which features get used, find bugs, and improve the Service.
• Detect and prevent fraud, abuse, scraping, and security incidents.
• Comply with our legal obligations and enforce our Terms of Service.

We do not use your information for behavioral advertising, build advertising profiles about you, or share your data with third-party ad networks.

4. How we share information

We do not sell your personal information. We share information only in the limited circumstances below:

• Service providers. Vendors that help us run the Service — for example, hosting (Vercel), database providers (Neon, Cloudflare), and authentication (Google Sign-In). These providers only receive what they need to do their job and are bound by confidentiality.
• Public combos. When you make a combo public, the products in that combo and any name you gave it are visible to anyone with the link and may be indexed by search engines.
• Legal requests. If we're required to by law, subpoena, court order, or to protect our rights or someone's safety, we may disclose information. We push back on overly broad requests when we can.
• Business transfers. If ComboBroker is acquired, merged, or sells its assets, information may transfer to the new owner subject to this policy.

5. Affiliate links and outbound clicks

Some links from ComboBroker to retailer websites (Amazon, Bass Pro, Tackle Warehouse, and others) are affiliate links. When you click one and then make a purchase, the retailer may share a transaction confirmation with us so we get credit for the referral. That confirmation is typically anonymized (you're not identified back to your ComboBroker account), and the retailer's own privacy policy governs what they collect on their site.

6. How long we keep information

We keep your account and user content for as long as your account is active. If you delete your account, we delete your saved combos, lists, and searches within 30 days, except where we're required to retain something for legal, tax, or security reasons.

Server logs are kept for up to 90 days. Aggregated analytics that can't be traced back to an individual may be kept indefinitely.

7. Cookies and similar technologies

We use three categories of client-side storage:

• Strictly necessary. A session cookie set by our authentication worker and a hasSession entry in local storage that tells the UI whether you're signed in. Without these you can't stay logged in.
• Functional. Local storage entries that remember your last filter selections, your in-progress combo, and similar preferences. These never leave your browser.
• Analytics. Aggregated, first-party usage events. We do not use third-party cross-site tracking cookies.

You can clear cookies and local storage at any time from your browser settings. Doing so will sign you out and reset your saved preferences on that browser.

8. Your rights

Depending on where you live, you may have the right to:

• Access the personal information we have about you.
• Correct information that's wrong.
• Delete your account and associated data.
• Export your saved combos and lists in a portable format.
• Object to or restrict certain processing.
• Withdraw consent where processing is based on consent.
• Lodge a complaint with a data protection authority.

To exercise any of these rights, email [email protected]. We'll respond within the timeframe required by law (typically 30–45 days).

For Texas residents

Texas residents have rights under the Texas Data Privacy and Security Act, including the right to know what personal data we process, to correct inaccuracies, to delete personal data, to receive a portable copy, and to opt out of targeted advertising, sale of personal data, and certain profiling. We do not sell personal data and we do not engage in targeted advertising, so the last two opt-outs don't apply to us.

For California residents

California residents have rights under the California Consumer Privacy Act and CPRA, including the rights to know, delete, correct, and opt out of the sale or sharing of personal information. We do not sell or share personal information for cross-context behavioral advertising. We do not discriminate against users who exercise their CCPA rights.

For users in the EEA, UK, and Switzerland

We process personal data based on legitimate interests (running and improving the Service, securing it against abuse) and, where applicable, your consent. You have rights under GDPR including access, rectification, erasure, restriction, portability, and objection. To make a request, email [email protected].

9. Security

We use HTTPS everywhere, store credentials only in hashed or tokenized form, and follow standard practices for keeping production infrastructure locked down. No system is perfectly secure, though, and we can't promise that data transmitted over the internet is immune to interception. If we ever experience a breach that affects you, we'll notify you as required by law.

10. International data transfers

ComboBroker is operated from the United States. If you access the Service from outside the US, your information will be transferred to, stored in, and processed in the US and other countries where our service providers operate. By using the Service you consent to this transfer.

11. Do Not Track

Our Service does not currently respond to Do Not Track browser signals because there is no consistent industry standard for how to interpret them. We do honor the Global Privacy Control signal where required by applicable law.

12. Changes to this policy

We may update this policy from time to time. When we do, we'll revise the "Last updated" date at the top of the page. If the changes are material we'll provide more prominent notice — for example, an in-app banner or an email to your account address. Continued use of the Service after changes take effect means you accept the updated policy.

13. Contact us

Privacy questions, requests, and complaints:

ComboBroker — Privacy
[email protected]
PO Box / Suite TBD
Austin, TX 78701
United States