Effective July 2, 2026. This describes what we collect, why, and your choices.
This Privacy Policy explains how Opivex ("Opivex", "we", "us") handles personal information when you visit our website, sign up for an account, publish an editor profile, hire an editor, or communicate with us. If you are a Creator or Editor in the European Economic Area, United Kingdom, or California, additional rights apply — see Sections 8 and 9.
We only collect what we need to run the marketplace:
We do not knowingly collect information from anyone under 18. If you believe a minor has signed up, contact us and we will remove the account.
We do not sell your personal information. We share it only with service providers who help us run Opivex, and only what they need:
We use a short list of cookies:
opivex_session — HttpOnly, secure session cookie that keeps you signed in.visitor id stored in localStorage, used to de-duplicate pageview counts.We do not run third-party advertising cookies. Stripe may set cookies inside its embedded checkout iframe, which is subject to Stripe’s policy.
We keep account and profile data while your account is active. Once you delete your account we remove or anonymize personal data within 30 days, except: (a) transactional records we’re legally required to keep for tax and accounting (typically 7 years), (b) records reasonably needed to resolve open disputes or enforce our Terms, and (c) messages inside a workspace that the counterparty still has access to.
Passwords are hashed with scrypt with a per-user salt — never stored in plaintext. Session cookies are HttpOnly, Secure, and SameSite-scoped. Data in transit is encrypted with TLS. Card data never touches our servers. Only a small number of Opivex staff can access production data, and access is logged. No system is 100% secure — if we ever detect a data breach that affects you, we will notify you as soon as reasonably possible and no later than required by law.
If you are in the EEA, UK, Switzerland, or a jurisdiction with equivalent law, you have the right to: access the personal data we hold about you, correct inaccurate data, request deletion, object to or restrict certain processing, withdraw consent (for newsletter or optional cookies), and receive a portable copy of the data you provided. Contact privacy@opivex.com to exercise any of these rights. You also have the right to lodge a complaint with your local data protection authority.
If you are a California resident, the CCPA/CPRA gives you the right to know what personal information we’ve collected about you in the last 12 months, request deletion, request correction, and opt out of "sale" or "sharing" of personal information for cross-context behavioral advertising. Opivex does not sell your personal information and does not share it for cross-context behavioral advertising. You will not be discriminated against for exercising your rights. To submit a request, email privacy@opivex.com from the address on your account.
Opivex is operated from the United States. If you are outside the U.S., your information will be transferred to and processed in the U.S. and other countries where our service providers operate. We rely on standard contractual clauses or equivalent safeguards for transfers from the EEA/UK.
We may update this Privacy Policy from time to time. If we make a material change, we’ll notify signed-in users by email or in-app notice at least 7 days before it takes effect. Continued use of the service after the change means you accept the updated policy.
Data controller: Opivex. Reach us at privacy@opivex.com for any privacy request or question.