Privacy Policy
Effective Date: December 2025

1. Introduction
   This Privacy Policy applies to Scopa Deals Inc. ("Scopa," "we," "us," or "our"), a Delaware corporation. It explains how we collect, use, disclose, and protect personal information through Scopa's website, browser extension, and related applications (collectively, the "Services").

By using the Services, you acknowledge that you have read and understood this Privacy Policy.

If you do not agree, do not use the Services.

1. Scope & Applicable Law
   This Privacy Policy is intended to comply with:

Delaware Personal Data Privacy Act (DPDPA)
California Consumer Privacy Act (CCPA), as amended by CPRA
Other applicable U.S. state privacy laws
Where laws differ, we apply the most protective standard required.

1. Categories of Personal Information Collected
   Category Examples
   Identifiers Email address, username, account ID
   Contact Information Email, optional phone number
   Commercial Information Order confirmations, merchant attribution
   Financial Information Payout destination (PayPal / gift card identifier only)
   Internet Activity URLs, extension interactions, feature usage
   Technical Data IP address, browser type, OS, extension version
   Profile Data Preferences, feedback, survey responses
   Marketing Preferences Opt-in / opt-out settings
   We do not store:

Credit/debit card numbers
Banking login credentials
Government identifiers
Emails or page content unrelated to shopping features
4. How Information Is Collected
4.1 Information You Provide
Collected when you:

Create an account
Request Scopa Coin redemption payouts
Contact support
Opt into communications
4.2 Automatic Collection
Collected via cookies, logs, and extension functionality:

Site compatibility checks
Coupon testing results
Purchase confirmation status
5. Browser Extension Data Use (Compliance-Critical)
The Scopa browser extension:

Operates only on supported shopping websites
Reads only limited data required to provide discounts, coupon testing, and Cash Back attribution
Does not read emails, messages, forms, passwords, or unrelated content
Does not record keystrokes or browsing history outside supported sites
On supported sites, we may process:
Page URL
Product identifiers (non-personal)
Displayed prices
Coupon success/failure results
Order confirmation signals
On unsupported sites:
URL is checked only to determine compatibility
No account linkage or retention occurs
6. How We Use Personal Information
We process personal data for the following lawful purposes:

Account creation and management
Cash Back and rewards fulfillment
Service notifications
Fraud detection and abuse prevention
Legal and regulatory compliance
Product analytics and service improvement
Marketing communications (opt-in only)
7. Sweepstakes Data: Separate & Independent
Any sweepstakes, giveaways, or prize promotions accessible through Scopa are NOT operated by Scopa Deals Inc.

Sweepstakes are operated independently by RealTime Media LLC
Sweepstakes are governed by separate Sweepstakes Terms & Conditions
Sweepstakes data is collected, processed, and stored solely by RealTime Media LLC
Scopa:

Does not control Sweepstakes data
Does not determine winners or distribute prizes
Does not share Scopa user data with Sweepstakes unless explicitly disclosed
Participation in Sweepstakes is optional and separate from Scopa's Services.

1. Data Sharing & Disclosure
   8.1 No Sale of Personal Data
   Scopa does not sell personal information under CCPA, CPRA, or DPDPA definitions.

8.2 Limited Disclosures
We may share data with:

Service providers (email, analytics, payout processors)
Affiliate networks for attribution
Legal authorities when required by law
No mobile data is shared for advertising purposes.

SMS opt-in data is never shared.

1. CCPA / CPRA Consumer Rights (California)
   California residents have the right to:

Know what data we collect and why
Access personal information
Request deletion
Correct inaccurate information
Limit use of sensitive data
Opt out of "sharing" (even though we do not sell)
Not be discriminated against
We honor Global Privacy Control (GPC) signals where required.

1. Delaware Privacy Rights (DPDPA)
   Delaware residents may:

Confirm processing of personal data
Access and obtain a copy
Delete personal data
Correct inaccuracies
Opt out of targeted advertising (if applicable)
11. Data Security
We use:

Encryption in transit and at rest
Access controls
Security audits
Incident response procedures
No system is 100% secure, but safeguards are commercially reasonable.

1. Data Retention
   We retain data only as long as necessary to:

Provide Services
Meet legal obligations
Resolve disputes
Data is deleted or anonymized when no longer required.

1. Automated Decision-Making
   We do not engage in automated decision-making that produces legal or similarly significant effects.
2. Contact
   support@scopadeals.com