Last updated on January 16, 2026

This Privacy Policy applies to your use of https://crosslist.com, https://app.crosslist.com, and any related services we provide (collectively, the Service). It explains how Crosslist BV (Crosslist, we, us, our) collects, uses, shares, and retains personal information.

As used in this Privacy Policy:

• Third-Party Platforms means marketplaces and other third-party services you choose to connect to the Service.

• Personal information means information that identifies, relates to, describes, or could reasonably be linked to you or your device.

Information we collect

Account and profile information

When you create an account or use the Service, we may collect information such as your name (if provided), email address, username, account preferences, and authentication details. Passwords are stored in hashed form.

Support communications

When you contact us (for example, via chat on the Websites or Application, or via email), we collect the content of your communications and related details needed to provide support, verify your identity, and maintain security.

Billing and transaction information

If you purchase a subscription or add-ons, we collect information such as billing name, billing address, VAT information (when applicable), subscription status, invoices, and transaction history. Payment card details are collected and processed by our payment processor and are not stored by Crosslist in full.

Marketplace and integration information

If you connect Third-Party Platforms, we process information required to provide the Service. This may include connected account identifiers, authorization tokens or credentials, and listing-related data such as titles, descriptions, images, prices, inventory fields, and listing status, as well as actions you request (for example, posting, updating, or removing listings).

Technical and usage information

We collect technical data such as IP address, device and browser type, timestamps, logs, diagnostic events, and information about how you navigate or use the Service. We may infer approximate location from your IP address.

Marketing and referral information

We may collect referral identifiers and campaign parameters (for example, UTM parameters) to understand which campaigns and partners drive signups and to measure marketing performance.

How we use information

We use personal information to:

• Provide, operate, maintain, and secure the Service, including integrations you enable.

• Process subscriptions, billing, cancellations, and refunds.

• Provide customer support and respond to requests.

• Prevent fraud, abuse, and security incidents, and enforce our terms.

• Monitor performance and reliability, debug issues, and improve the Service.

• Communicate with you about the Service, including service messages, security notices, and billing updates.

• Send marketing communications where permitted, and honor opt-out preferences.

Roles under data protection laws

Depending on how you use the Service, Crosslist may act as a data controller and/or a data processor.

• We act as a controller when we process account, billing, security, website analytics, and marketing data for Crosslist’s own purposes.

• We act as a processor when we process marketplace-related data and listing operations on your behalf to provide cross listing and inventory functionality.

If you are a business customer and need a Data Processing Agreement (DPA), contact us at hello@crosslist.com.

Legal bases for processing

Where applicable under GDPR or similar laws, we process personal information under one or more of the following legal bases:

• Contract (to provide the Service you request).

• Legitimate interests (to secure, operate, and improve the Service, prevent fraud and abuse, and measure performance).

• Consent (where required, such as for certain cookies or marketing preferences).

• Legal obligation (to meet legal, tax, and accounting requirements).

How we share information

We do not sell personal information.

We share personal information only as needed to operate the Service, including with:

• Service providers that help us run our business (for example, payment processing, hosting and infrastructure, support tooling, email delivery, analytics and measurement, affiliate tracking, and payout processing).

• Third-Party Platforms you connect, to perform actions you request through the Service.

• Professional advisors (for example, legal and accounting) where necessary.

• Authorities and others when required by law, or to protect rights, safety, and security.

• Parties involved in business transfers if we are involved in a merger, acquisition, financing, bankruptcy, or sale of assets.

We may update vendors over time. We maintain an internal list of key service providers and, where required (for example, under a DPA), we make relevant information available to customers.

Cookies, pixels and similar technologies

We use cookies and similar technologies for essential functionality, security, and to understand how our Websites and Application are used.

We also use measurement and advertising technologies. This may include server-side conversion measurement (for example, for Google Ads) and, in some cases, pixels or tags used for analytics or advertising measurement.

Where required by law, we request consent before placing non-essential cookies or similar technologies on your device.

You can control cookies through your browser settings and, where available, through cookie controls presented on the Service. Blocking certain cookies or scripts may affect Service functionality.

Do Not Track

Some browsers offer a Do Not Track signal. The Service does not currently respond to Do Not Track signals.

International data transfers

Your information may be processed in countries other than your country of residence, including countries where Crosslist or our service providers operate.

Where required by applicable law, we use appropriate safeguards for cross-border transfers, such as the European Commission’s Standard Contractual Clauses and the UK’s recognized transfer mechanisms, or other lawful transfer mechanisms that apply to the relevant transfer.

Data retention

We retain personal information for as long as necessary to provide the Service and for legitimate business purposes such as security, fraud prevention, compliance, billing, tax, and dispute resolution.

For storage and operational reasons, we delete your listing content and related listing data 30 days after cancellation.

We may retain basic account information after cancellation, such as account identifiers, subscription and billing records, and logs needed for security, fraud prevention, dispute resolution, and compliance. We may also retain contact details for marketing communications in accordance with your preferences and applicable law.

Your choices

Marketing communications

You can opt out of marketing emails at any time using the unsubscribe link in the email. You may still receive non-marketing communications such as billing receipts, security notices, and important service updates.

Third-Party Platform access

You can revoke Crosslist’s access to a Third-Party Platform at any time by disconnecting the integration within the Service and, where available, by revoking permissions within the Third-Party Platform’s settings. If access is provided through a browser extension or a logged-in session, disabling or removing the extension and logging out may also remove that access. Steps vary by platform, and Third-Party Platforms may retain information in accordance with their own policies.

Your rights

Depending on where you live and how you use the Service, you may have certain rights regarding your personal information. We may need to verify your identity before processing a request, and in some cases we may request additional information to help us confirm you are the account holder or an authorized representative.

To submit a privacy request, contact us at hello@crosslist.com. We may ask you to submit your request from the email address associated with your account.

EEA, UK, Switzerland

Where applicable, you may have rights such as:

• Access to your personal information

• Correction of inaccurate or incomplete personal information

• Deletion of your personal information in certain circumstances

• Objection to certain processing

• Restriction of certain processing

• Data portability

You also have the right to lodge a complaint with your local supervisory authority.

United States (including California)

If you are a resident of California or another US state with privacy laws, you may have additional rights if those laws apply to Crosslist based on our activities and legal thresholds. Depending on the law that applies, these rights may include access, correction, deletion, and the right to opt out of certain uses or disclosures of personal information.

Crosslist does not sell personal information.

Because we use measurement and advertising tools (including server-side conversion tracking and, in some cases, pixels), certain disclosures or opt-out rights relating to advertising measurement or targeting may apply if we become subject to specific US state privacy laws. If you have questions or would like to make a request, contact us at hello@crosslist.com.

We will not discriminate against you for exercising applicable privacy rights.

Other regions

You may also have rights under other privacy laws depending on where you live, including rights to access, correct, delete, object to certain processing, or withdraw consent where processing is based on consent. We will respond to requests as required by applicable law.

Security

We use reasonable technical and organizational measures designed to protect personal information. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. If we make changes, we will update the Last updated date. If changes are material, we may provide additional notice, such as through the Service or by email.

Contact

Questions or requests related to this Privacy Policy can be sent to hello@crosslist.com.