Back to Tamanas

Privacy Policy

Last updated: March 3, 2026

1. Introduction

Tamanas ("we", "us", or "our") is owned and operated by Data Genome (datageno.me). This Privacy Policy explains how we collect, use, and protect your personal information when you use the Tamanas website and application.

2. Information We Collect

Account Information

  • Email address (required)
  • Username (required)
  • First and last name
  • Phone number (optional, used for account verification)
  • Profile photo (optional)
  • Date of birth (optional)
  • Address information (optional): country, state, city, street, postal code

Wishlist Data

  • Wishlist titles and descriptions
  • Wish items (titles, descriptions, links, prices)
  • Images you upload
  • Due dates and fulfillment status

Technical Data

  • IP address and browser type
  • Device information
  • Login timestamps
  • Approximate location (country level, derived from IP address) for currency preferences

OAuth Data

If you sign in with Google or Facebook, we receive your email address and basic profile information (name, profile picture) from these providers. We do not access your contacts or friends unless you explicitly grant permission for friend discovery features.

3. How We Use Your Information

  • To provide and maintain the Tamanas service
  • To authenticate your account and prevent unauthorized access
  • To send transactional emails (notifications, account verification, password changes)
  • To enable wishlist sharing with people you choose
  • To respond to your support requests and feedback
  • To improve our service

4. Data Sharing

We do not sell your personal information. We share data only in the following circumstances:

  • With your consent: When you share wishlists with specific users or via public links
  • Service providers: We use third-party services to operate our platform (see Section 5)
  • Legal requirements: If required by law or to protect our rights

5. Third-Party Services

We use the following third-party services to process your data:

  • Purelymail: For all email communications (transactional emails, verification, notifications, security alerts, and support)
  • Amazon Web Services (AWS): For cloud hosting, database storage (RDS), and file storage (S3)
  • Google & Facebook: For OAuth authentication (if you choose to sign in using these providers)
  • MaxMind: We use MaxMind's GeoLite2 geolocation data to determine your approximate location (country level only) based on your IP address. This helps us display prices in your local currency when products are listed in multiple currencies. This product includes GeoLite2 Data created by MaxMind, available from https://www.maxmind.com.

6. Data Storage and Security

  • Your data is stored on servers located in the EU (AWS eu-central-1 region)
  • We use encryption for data in transit (HTTPS/TLS) and at rest
  • Passwords are securely hashed and never stored in plain text
  • Access to your data is protected by industry-standard authentication

7. Data Retention

  • Account Data: Retained as long as your account is active.
  • Notifications: Automatically deleted 30 days after they are read.
  • Deleted Content: Uploaded files associated with deleted wishes or wishlists are removed within 30 days.
  • Account Deletion: If you delete your account, all associated personal data is permanently removed from our active databases.

8. Data Deletion

You have the right to request the deletion of your personal data at any time. You can delete your account directly through the application settings or by contacting us via email.

For detailed instructions on how to delete your account and what data is removed, please visit our Data Deletion Instructions page.

9. Your Rights

You have the following rights regarding your data:

  • Access: You can view all your profile information and wishlist data directly within the application.
  • Correction: You can update or correct your information at any time through your profile settings.
  • Deletion: You can delete your account via the settings page, which triggers the permanent removal of your data.
  • Portability: You can request a copy of your data in a machine-readable format by contacting us.
  • Withdraw Consent: You can disconnect OAuth providers (Google/Facebook) at any time through your account settings.

10. Cookies

We use essential cookies and local storage to maintain your login session. We do not use third-party tracking or advertising cookies.

11. Children's Privacy

Tamanas is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. We enforce this through birth date validation during profile setup.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Significant changes will be communicated via email or a notice within the application.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at: privacy@tamanas.com

Privacy Policy | Tamanas