Security Policies
Information about our security policies and data protection
Contents
Data Protection
Data Collection and Use
We collect only the data necessary for platform operation:
- Registration data: Username, email, country
- Collection data: Information about coins in your personal collection
- Transaction data: Information related to purchases/sales in the market
- Technical data: IP, browser, activity timestamps
Privacy Commitment
We never sell, rent, or share your personal data with third parties for commercial purposes.
Storage and Security
- All data is stored on secure servers
- Passwords are encrypted using secure algorithms
- We implement physical and logical security measures
- We perform regular backups
Privacy Policy
Personal Information
Your privacy is fundamental to us:
- Your personal collection is private by default
- You can control what information you share publicly
- Public comments are visible to other users
- Private comments are for you only
Información Pública
By participating in the market, your username will be visible to other users. Be careful with personal information you include in public descriptions.
Cookies and Tracking
- Usamos cookies esenciales para el funcionamiento del sitio
- No utilizamos cookies de tracking de terceros
- Puedes configurar tu navegador para rechazar cookies, pero algunas funciones podrían no funcionar
Account Deletion
Right to Data Deletion
We respect your right to privacy and control over your personal data. In compliance with data protection best practices, we offer the possibility to completely delete your account and all associated information.
Permanent Deletion
IMPORTANT: Account deletion is an irreversible process. Once completed, we cannot recover any information from your account.
What Gets Deleted
When you request account deletion, all ALL the following data is deleted:
- Información personal: Name, email, country, biography and all contact data
- Colección personal: All coins registered in your collection
- Fotografías: All uploaded images (profile and coin photos)
- Statistics: Activity history, preferences and configurations
- Messages: All conversations and communications
- Transacciones: Historial de compras/ventas en el mercado
- Your personal store (if you have one configured): If you have a configured store, all its information
- System files: All directories and files associated with your account
Deletion Process
To ensure security and prevent accidental deletions, we have implemented a multiple verification process:
- Secure access: You must be authenticated in your account
- Specialized page: Access through the security section in "My Account"
- Triple confirmation:
- Write exactly the phrase: "I want to delete my account"
- Enter your current password
- As final confirmation, write
- Final verification: Confirmation dialog with clear warning
- Processing: Automatic and immediate deletion of all data
Recommended Alternatives
Before deleting your account, consider these alternatives:
- Change information: You can update your email or personal data
- Disable notifications: If you receive too many emails
- Make your collection private: If you don't want others to see it
- Contact support: We can help you with specific problems
Process Security
- Transactional: The process uses database transactions to ensure integrity
- Logging: Deletion is recorded for audit purposes (without personal data)
- Technical verification: Password and security token validation
- Physical deletion: Files are deleted from the file system
- Session closure: Immediate destruction of active session
Deletion Commitment
Garantizamos que todos tus datos serán eliminados de manera segura y definitiva. No mantenemos copias ocultas ni respaldos con información personal identificable después de la eliminación.
Function Access
Para acceder a la eliminación de cuenta:
- Log in to your account
- Go to "My Account" → "Security" tab
- Look for the "Danger Zone" section
- Click on "Delete Account Permanently"
- Follow the complete verification process
Account Security
Password Protection
- Usa contraseñas seguras con al menos 8 caracteres
- Combine uppercase, lowercase, numbers and symbols
- Don't reuse passwords from other sites
- Change your password if you suspect it's compromised
Security Lockouts
Las cuentas se bloquean temporalmente después de múltiples intentos fallidos de inicio de sesión para proteger contra ataques de fuerza bruta.
Email Verification
- Email verification required before proceeding
- Email changes require verification
- Keep your email updated to receive security notifications
Platform Security
Technical Measures
- Conexiones seguras HTTPS en toda la plataforma
- Protection against SQL injections and XSS
- Validation and sanitization of all user inputs
- Monitoreo continuo de actividad sospechosa
- Actualizaciones regulares de seguridad
Certifications
Nuestra plataforma sigue las mejores prácticas de seguridad web y está en constante actualización para mantener los más altos estándares.
Backups and Recovery
- Respaldos automáticos diarios de la base de datos
- File and image backups
- Plan de recuperación ante desastres
- Regular restoration tests
User Responsibilities
Responsible Use
Como usuario, te comprometes a:
- Maintain account confidentiality
- No compartir tus credenciales con terceros
- Report any suspicious activity
- Use the platform only for legitimate purposes
- Respect other users' rights
Prohibited Activities
- Intentos de acceso no autorizado
- Uso de bots o scripts automáticos
- Spam o contenido malicioso
- Sale of fake or illegal items
- Harassment or abusive behavior
Market Transactions
- Provide honest and accurate descriptions
- Use secure payment methods
- Document all transactions
- Resolve disputes in a civilized manner
Incident Response
Response Procedure
En caso de incidentes de seguridad:
- Detection: Continuous monitoring and user reports
- Analysis: Impact and scope assessment
- Containment: Immediate measures to limit damage
- Investigation: Deep analysis of root cause
- Recovery: Restoration of normal services
- Communication: Notification to affected users
How to Report Incidents
- Email: admin@zaraguate.com
- Formulario de contacto en el sitio web
- Direct message to administrators
- Provide as much detail as possible
Types of Incidents
- Acceso no autorizado a cuentas
- Security vulnerabilities
- Data loss or theft
- Malicious activity on the platform
- Problemas técnicos que afecten la seguridad
Compliance
Regulatory Frameworks
We comply with all applicable data protection and privacy regulations, including:
- Leyes de protección de datos aplicables
- E-commerce regulations
- Estándares internacionales de seguridad web
- Industry best practices
Regular Reviews
Nuestras políticas se revisan y actualizan regularmente para mantener el cumplimiento con las regulaciones cambiantes y las mejores prácticas emergentes.
Audits and Evaluations
- Evaluaciones regulares de seguridad
- Auditorías de cumplimiento
- Pruebas de penetración
- Code reviews
Contact Information
Security Contacts
General Contact
For any inquiries related to security, privacy, technical support, or legal matters, contact the main administrator directly.
Response Time
- Critical incidents: Within 2 hours
- Security inquiries: Within 24 hours
- General requests: Within 48 hours