Privacy Policy

The data controller responsible for personal data processed through this Service is: the operator of this website.

Contact for privacy questions: support@cs2p2p.com

Depending on how you use the Service, we may process:

• Account data — e.g. Steam identifier, display name, profile image URL, and email if you provide it or if your login method supplies it.
• Listing and trade-related data — e.g. item names, offer text, chat messages, and similar content you submit.
• Technical data — e.g. IP address, device/browser type, timestamps, and cookies or similar technologies needed for security, sessions, and analytics.
• Billing data — if you purchase a paid feature, our payment provider (e.g. Stripe) processes payment details; we typically receive limited billing metadata, not your full card number.

Where GDPR-style rules apply, we rely on appropriate bases such as:

• Contract — to provide the Service you request (account, listings, messaging).
• Legitimate interests — to secure the Service, prevent abuse, improve features, and analyse aggregate usage, balanced against your rights.
• Legal obligation — to comply with law or enforceable government requests.
• Consent — where required (e.g. non-essential cookies or marketing); you may withdraw consent where applicable.

We use cookies and similar technologies for essential functions (e.g. session / authentication state) and, if enabled, analytics or preferences. You can control cookies through your browser settings. Blocking essential cookies may break login or security features.

We may share data with:

• Service providers — hosting, database, transactional email delivery (e.g. for support and notifications), analytics, payment processing, and security vendors, under arrangements that require appropriate protection of personal data.
• Steam / Valve — only to the extent needed when you choose Steam-related login or features (subject to Valve’s policies).
• Authorities — if required by law or to protect rights, safety, and integrity.

We do not sell your personal data as “sale” is commonly defined in US state privacy laws.

If we or our processors transfer data outside your country (e.g. to the US or EU cloud regions), we use appropriate safeguards where required (such as Standard Contractual Clauses). Details can be provided on request.

We keep data only as long as needed for the purposes above, including legal, tax, and dispute resolution. When no longer needed, we delete or anonymise it subject to backup cycles.

Depending on where you live, you may have rights to access, rectify, erase, restrict, or object to certain processing, and to data portability. You may lodge a complaint with a supervisory authority. To exercise rights, contact us using the details in section 1.

The Service is not directed at children under the age required by law to use Steam or to consent to data processing in your region. We do not knowingly collect personal data from children in violation of applicable law.

We implement technical and organisational measures appropriate to the risk. No online service is 100% secure; you are responsible for protecting your accounts and devices.

We may update this Policy and will adjust the “Last updated” date. Material changes may be communicated via the Service or email where appropriate.