Last updated: May 17, 2026 · Effective immediately
LootLens AI ("LootLens," "we," "us") is operated by Beers Labs LLC, an Oregon limited liability company. This Privacy Policy explains how we collect, use, store, and share information when you use the LootLens AI application and website (lootlens.ai).
Account information: Email address, display name, and username when you create an account.
Item data: Photos you take or upload, AI-identified item details (brand, model, condition, estimated value), and inventory data you enter.
Platform connections: OAuth tokens for marketplace platforms you connect (e.g., eBay). We store refresh tokens in encrypted form to maintain your authorization. We never store your marketplace passwords.
Usage data: Scan count, feature usage, app version, and device type (mobile/desktop). We do not use third-party analytics SDKs.
Payment data: We do not store payment card information. Stripe, our payment processor, handles all card data. We store only your Stripe customer ID and subscription status.
Communications: If you contact support, we retain those messages to resolve your issue.
We do not sell your personal data. We do not use your item photos or inventory data to train AI models.
Photos you submit for scanning are sent to a third-party AI vision API to identify items and estimate value. Photos are transmitted over encrypted connections and are not retained by the AI provider beyond the duration of the API call. Scan results are stored on your account and deleted when you delete items or your account.
When you connect your eBay account, LootLens receives OAuth credentials that allow us to read your existing listings and post new listings on your behalf. LootLens AI is not affiliated with or endorsed by eBay Inc. You can revoke LootLens's access at any time from your eBay Account Settings → Third-party account access. Revoking access or disconnecting within LootLens deletes your stored eBay OAuth token from our servers within 24 hours.
We share data only with:
Your account data is retained as long as your account is active. Item photos are stored in Cloudflare R2 and retained until you delete the item or your account. OAuth tokens are invalidated and deleted when you disconnect a platform or delete your account. Stripe subscription records are retained as required by financial regulations even after account deletion.
Access: You can view all your data within the app (inventory, connected accounts, scan usage).
Deletion: You can delete your account from Settings → Delete Account. This permanently removes your profile, items, listings, and OAuth tokens. Deletion is irreversible.
Export: Email support@lootlens.ai to request a data export.
California residents (CCPA): You have the right to know what personal information we collect, to delete it, and to opt out of sale (we do not sell personal data).
EU/UK residents (GDPR): You have the right to access, rectify, erase, and port your data. To exercise these rights, email support@lootlens.ai.
LootLens is not directed at children under 13. We do not knowingly collect information from children under 13. If you believe a child has created an account, contact us at support@lootlens.ai and we will delete it promptly.
All data is transmitted over HTTPS. OAuth tokens are stored encrypted. We use Cloudflare's infrastructure which provides DDoS protection and network-level security. No system is 100% secure; we notify affected users of breaches as required by law.
We may update this policy as the product evolves. Material changes will be communicated via in-app notice at least 7 days before they take effect. Continued use after that date constitutes acceptance.
Beers Labs LLC
Oregon, United States
support@lootlens.ai