Privacy Policy
Last updated: March 2026
1. What We Collect
We collect account information, order and payment metadata, message data, and technical logs needed to run the marketplace. This may include identifiers, contact details, transaction records, and customer support records.
2. UK GDPR Lawful Bases
Under UK GDPR and the Data Protection Act 2018, we process personal data using lawful bases including contract performance, legitimate interests (such as fraud prevention and service security), legal obligations, and consent where required.
3. How We Use Data
We use data to operate Dibble, process purchases, support sellers and buyers, prevent abuse, provide customer service, and comply with legal obligations.
4. Cookies and PECR
We use essential cookies for core functionality and security. Non-essential cookies are used only with consent in line with PECR. See our Cookie Policy for details.
5. Payment Processing
Card payments are processed by Stripe. Dibble does not store full card details.
6. Data Sharing
We share data only with trusted processors required to provide the service (for example, payment, hosting, and communications providers). We do not sell personal data.
7. International Transfers
If personal data is transferred outside the UK, we use approved safeguards such as adequacy regulations or standard contractual clauses with additional safeguards where appropriate.
8. Retention
We retain data only as long as needed for service operation, dispute handling, fraud prevention, and legal compliance, then delete or anonymize it.
9. Your Rights
Subject to legal limits, you can request access, rectification, erasure, restriction, objection, and portability, and withdraw consent where processing is based on consent.
10. Complaints and Contact
For privacy requests, contact privacy@dibble.market. You can also complain to the UK Information Commissioner's Office (ICO) if you believe your data has been handled unlawfully.