Privacy Policy

At MCP Catalog ("we", "us", "our"), we are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, and share information about you when you use our website at mcpcatalog.io (the "Service").

We adhere to the General Data Protection Regulation (GDPR) and are committed to ensuring the privacy and security of your personal data. Please read this Privacy Policy carefully to understand our practices regarding your personal data.

1. Data Controller

For the purposes of the GDPR, MCP Catalog is the data controller responsible for your personal data. If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@mcpcatalog.io
Address: 123 Tech Street, San Francisco, CA 94105, USA

2. Personal Data We Collect

We may collect the following types of personal data about you:

2.1 Information you provide to us

• Account information: When you create an account, we collect your name, email address, and password.
• Profile information: Information you add to your profile, such as a profile picture, job title, organization, and bio.
• Communications: Information you provide when you contact us for support or communicate with us.

2.2 Information we collect automatically

• Usage data: Information about how you use our Service, including pages visited, time spent on pages, and other actions taken.
• Device information: Information about the device you use to access our Service, including device type, operating system, browser type, and IP address.
• Cookies and similar technologies: We use cookies and similar tracking technologies to collect information about your browsing activities. For more information, please see our Cookie Policy.

3. How We Use Your Personal Data

We use your personal data for the following purposes:

• To provide and maintain our Service
• To authenticate users and personalize your experience
• To improve and optimize our Service
• To communicate with you about updates, security alerts, and support
• To respond to your inquiries and provide customer support
• To detect, prevent, and address technical issues and security threats
• To comply with legal obligations
• To display relevant advertising (if you have consented)

4. Legal Basis for Processing (GDPR)

Under the GDPR, we process your personal data based on the following legal grounds:

• Consent: Where you have given us explicit consent to process your personal data for specific purposes, such as sending marketing communications or displaying personalized advertisements.
• Contractual necessity: Where processing is necessary for the performance of a contract with you (e.g., to provide you with the Service you have signed up for).
• Legitimate interests: Where processing is necessary for our legitimate interests, such as improving our Service, ensuring security, and preventing fraud, provided that these interests are not overridden by your rights and freedoms.
• Legal obligation: Where processing is necessary to comply with a legal obligation to which we are subject.

5. Data Sharing and Disclosure

We may share your personal data with the following categories of recipients:

• Service providers: Third-party vendors who provide services on our behalf, such as hosting, analytics, customer support, and payment processing.
• Advertising partners: With your consent, we may share data with advertising partners like Google Ads to display relevant advertisements.
• Analytics providers: We use Vercel Analytics to collect anonymous usage data to improve our Service.
• Legal requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities.
• Business transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred as a business asset.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

6. International Transfers

Your personal data may be transferred to, and processed in, countries other than the country in which you reside. These countries may have data protection laws that are different from the laws of your country.

Whenever we transfer your personal data out of the European Economic Area (EEA), we ensure a similar degree of protection is afforded to it by implementing appropriate safeguards, such as:

• Using specific contracts approved by the European Commission (Standard Contractual Clauses)
• Transferring data to countries that have been deemed to provide an adequate level of protection by the European Commission
• Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield or have implemented similar appropriate safeguards

7. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider:

• The amount, nature, and sensitivity of the personal data
• The potential risk of harm from unauthorized use or disclosure
• The purposes for which we process your personal data
• Whether we can achieve those purposes through other means
• The applicable legal requirements

In some circumstances, we may anonymize your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

8. Your Data Protection Rights (GDPR)

Under the GDPR, you have the following rights regarding your personal data:

• Right of access: You have the right to request copies of your personal data.
• Right to rectification: You have the right to request that we correct any inaccurate personal data or complete any incomplete personal data.
• Right to erasure: You have the right to request that we delete your personal data in certain circumstances.
• Right to restrict processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
• Right to data portability: You have the right to request that we transfer your personal data to you or a third party in a structured, commonly used, machine-readable format.
• Right to object: You have the right to object to the processing of your personal data in certain circumstances, including processing for direct marketing or based on legitimate interests.
• Right to withdraw consent: If we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us at privacy@mcpcatalog.com. We will respond to your request within one month. Please note that we may need to verify your identity before responding to your request.

You also have the right to lodge a complaint with a supervisory authority if you believe that our processing of your personal data infringes data protection laws. In the EU, you can find your national data protection authority at https://edpb.europa.eu/about-edpb/board/members_en.

9. Data Security

We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage. These measures include:

• Encryption of personal data where appropriate
• Regular testing and evaluation of the effectiveness of our security measures
• Limiting access to personal data to authorized personnel
• Implementing procedures to address potential data breaches

While we strive to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security.

10. Third-Party Services

Our Service may contain links to third-party websites or services that are not owned or controlled by us. This Privacy Policy applies only to our Service. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party websites or services.

We use the following third-party services:

• Vercel Analytics: For website analytics and performance monitoring. For more information, see Vercel's Privacy Policy.
• Google Ads: For displaying advertisements. For more information, see Google's Privacy Policy.

11. Children's Privacy

Our Service is not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information as soon as possible. If you believe we have collected personal data from a child under 16, please contact us.

12. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect information about your browsing activities on our Service. For detailed information about the cookies we use and the purposes for which we use them, please see our Cookie Policy.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top of this page. We will also notify you through a prominent notice on our Service before the changes become effective.

We encourage you to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@mcpcatalog.io
Address: 123 Tech Street, San Francisco, CA 94105, USA