Skip to content
Modern office building representing our company headquarters

Privacy Policy

Effective Date: June 12, 2026  |  Last Updated: June 12, 2026

How DTO collects, uses, and protects your information.


This Privacy Policy describes how DTO Holdings LLC ("DTO," "we," "us," or "our") collects, uses, shares, and protects your personal information when you visit our websites, use our mobile applications, or otherwise interact with our marketplace and related services (the "Services"). This Policy is incorporated by reference into our Terms of Service.

1. Information We Collect

  • Account information you provide: name, email address, phone number, password, profile photo, billing address, shipping address.
  • Transaction information: items purchased or sold, prices, payment-method details (handled by our payment processors — DTO does not store full card numbers), shipping and tracking information, dispute and refund history.
  • Identity and verification information: government-issued ID details, tax identification numbers, and beneficial-ownership information for Sellers who undergo verification (collected and used solely to comply with KYC, AML, sanctions, and tax-reporting obligations).
  • Usage information: pages and listings viewed, search queries, items added to cart, time spent, click paths, device type, browser, IP address, approximate location, and similar analytics data.
  • Communications: messages sent through DTO between Buyers and Sellers, support inquiries, and feedback you provide.
  • Cookies and similar technologies: see our Cookie Notice for details.

2. How We Use Information

  • Operate the marketplace: process orders, facilitate payments, ship items, handle returns and disputes, provide customer support.
  • Account management and security: authenticate you, prevent fraud, detect abuse, comply with legal obligations.
  • Personalization: recommend listings, customize your homepage, improve search results.
  • Communications: send transactional emails, SMS, and in-app notifications about your orders, account, and security; send marketing communications if you have opted in.
  • Analytics and improvement: understand usage patterns, improve features, and develop new services.
  • Legal and compliance: respond to lawful requests, enforce our Terms, protect rights and safety, and comply with applicable law.

3. How We Share Information

  • With Sellers: when you place an order, we share necessary order and shipping information with the Seller. Sellers are required to use this information only to fulfill the order.
  • With Buyers: Sellers' business names and ratings are visible to Buyers; private contact info is not shared except as needed to fulfill the order.
  • With service providers: payment processors (e.g., Stripe), shipping and logistics partners, identity verification, fraud-detection, analytics, customer-support, and infrastructure providers — under contract that limits their use of the information to service performance.
  • With our parent company: DTOA, Inc. (Delaware corporation), for purposes of corporate management, accounting, audit, and legal compliance.
  • For legal reasons: to comply with subpoena, court order, or regulatory request; to detect, prevent, or address fraud or security issues; to protect the rights, property, or safety of DTO, our users, or others.
  • Business transfers: in connection with a merger, acquisition, sale of assets, or financing.
  • With your consent: any other sharing not described above.

4. Cookies and Tracking

We use cookies, pixels, local storage, and similar technologies to make the Services work, remember your preferences, analyze traffic, prevent fraud, and (with consent where required) support advertising.

See our Cookie Notice for the list of categories, vendors, and how to manage your preferences.

5. Your Rights and Choices

  • Access, correction, and deletion: depending on your jurisdiction, you may request access to, correction of, or deletion of your personal information. Some retention is required by law (e.g., tax and transaction records).
  • Marketing opt-out: you can unsubscribe from marketing emails using the unsubscribe link, or by contacting tobe.sweeney@dtoa.global.
  • Cookie preferences: managed via the cookie banner and your browser settings.
  • California residents (CCPA / CPRA): you have rights to know, access, delete, correct, and limit use of sensitive personal information, and to opt out of any sale or sharing of personal information for cross-context behavioral advertising. We do not sell personal information for money. Submit requests to tobe.sweeney@dtoa.global.
  • EU/UK residents (GDPR / UK GDPR): you have rights to access, rectify, erase, restrict, port, and object to processing; to withdraw consent; and to lodge a complaint with a data protection authority. The legal bases for our processing are: contract performance, legitimate interest, legal obligation, and (where applicable) consent.
  • Other jurisdictions: we honor applicable local rights as required by law.

6. Data Security

We use technical and organizational safeguards including encryption in transit, access controls, and monitoring to protect your information. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

Report suspected security issues to tobe.sweeney@dtoa.global.

7. Data Retention

We retain personal information for as long as needed to provide the Services, comply with legal obligations (e.g., tax records typically 7 years), resolve disputes, and enforce agreements. We then delete or anonymize the information.

8. Children

The Services are not intended for users under 13. We do not knowingly collect personal information from children under 13. If we learn we have collected such information, we will delete it. Users 13–17 may use the Services with parental involvement and consent.

9. International Transfers

DTO is based in the United States. If you access the Services from outside the U.S., your information may be transferred to and processed in the U.S. and other countries that may have different data-protection laws. Where required, we use appropriate safeguards (e.g., Standard Contractual Clauses) for cross-border transfers.

10. Third-Party Services

The Services may link to or integrate with third-party services (e.g., social media, payment, shipping). Those services have their own privacy policies. We are not responsible for their practices.

11. Changes to This Policy

We may update this Policy from time to time. Material changes will be communicated by email or in-app notification. The "Effective" date at the top reflects the most recent version.

12. Contact

Privacy questions and requests: tobe.sweeney@dtoa.global

Postal address: DTO Holdings LLC, 206 West Avenue B, Killeen, Texas 76541.