top of page

Privacy Policy

PRIVACY POLICY

Effective Date: March 6, 2026
Website: https://www.skjgrading.com
Operator: SKJ Authentications LLC, a California limited liability company, doing business through Skjgrading.com.

1. Introduction

SKJ Authentications LLC, referred to in this Privacy Policy as “SKJ,” “we,” “us,” or “our,” respects the privacy of visitors, customers, submitters, and other individuals who interact with our website and services. Present operations involve sports card and trading card game grading, card encapsulation, autograph authentication, customer communications, submission handling, invoicing, shipping coordination, and related support functions.

Purpose of this Privacy Policy is to explain how personal information is collected, used, disclosed, retained, and otherwise processed when you visit our website, create an account, submit cards or other accepted items for service, communicate with us, make a payment, request support, or otherwise interact with us online or offline in connection with our business.

By accessing the website or using our services, you acknowledge that your information will be handled in accordance with this Privacy Policy and any additional notices that may be provided at the point of collection.

2. Scope of Policy

This Privacy Policy applies to personal information collected through the website, through submission forms, by email, through customer service interactions, in connection with grading or authentication orders, through payment and shipping workflows, and through related technologies used to operate and secure the website.

Application of this Policy extends to information collected from users located in the United States, including California. If SKJ later offers goods or services directly to individuals located in the European Economic Area, the United Kingdom, or Switzerland, or otherwise becomes subject to additional foreign data-protection laws, this Privacy Policy may be updated accordingly.

3. Categories of Information We Collect

Information we collect depends on how you interact with us. Categories may include the following.

Account and Contact Information. We may collect your name, email address, telephone number, billing address, shipping address, account login details, and any other identifying information you choose to provide when communicating with us or using our services.

Order and Submission Information. We may collect submission forms, order numbers, item descriptions, declared values, grading or authentication selections, serial identifiers, shipping instructions, service history, dispute or regrade requests, and records concerning intake, processing, release, or return shipment.

Payment and Transaction Information. We may collect transaction records, invoice data, payment status, billing-related details, and partial payment instrument information as necessary to process or document a transaction. Full payment card details may be processed by third-party payment providers rather than stored directly by SKJ, depending on the payment method and site configuration.

Communications and Support Data. We may collect the contents of emails, support requests, service inquiries, photographs you provide, dispute correspondence, and records of other communications with us.

Technical and Usage Information. We may collect internet or network activity information such as IP address, browser type, device type, operating system, referring URLs, pages viewed, visit dates and times, interactions with website features, security events, and diagnostic data.

Cookies and Similar Technologies. Current site operation may involve cookies or similar technologies associated with the Wix platform, including cookies used for session integrity, security, load balancing, and visitor-session recognition. The cookie details you previously supplied identify, among others, XSRF-TOKEN, hs, svSession, bSession, and related platform cookies. Wix also states that site operators using its platform should inform visitors about cookie use and privacy practices. 

User-Generated or Submitted Content. We may collect photographs, scans, comments, messages, or other content you provide in connection with a submission, inquiry, or support request.

Sensitive Information. We do not seek to collect sensitive personal information unless reasonably necessary for a transaction, legal compliance, fraud prevention, or dispute handling. Please do not provide government identifiers, health information, or other highly sensitive data unless specifically requested.

 

 

4. Sources of Information

Personal information may be collected directly from you, automatically from your browser or device, from payment processors, from shipping carriers, from fraud-prevention or security tools, from website-hosting or e-commerce infrastructure providers, and from other service providers that assist with site administration, payment processing, order management, or communications.

Where you submit items on behalf of another person, you represent that you have authority to provide the information associated with that submission.

5. How We Use Personal Information

We use personal information for legitimate business and operational purposes, including the following.

  • Service Administration. We use information to receive and process orders, authenticate submissions, grade items, encapsulate cards, document condition, manage regrading requests, and complete related customer-service tasks.

  • Account Management. Information is used to create and maintain customer records, verify identity where appropriate, communicate regarding orders, and provide status updates or administrative notices.

  • Payment Processing and Fulfillment. Information is used to issue invoices, receive payment, manage taxes and accounting records, coordinate shipping and return delivery, arrange insurance or carrier-related matters where applicable, and address failed or disputed transactions.

  • Website Operations and Security. We use technical data and cookies to operate the website, preserve session security, detect malicious or unauthorized activity, troubleshoot errors, maintain performance, and protect our systems, staff, customers, and submissions.

  • Legal Compliance and Risk Management. Information may be used to comply with legal obligations, enforce our Terms and Conditions, respond to lawful requests, investigate fraud, preserve evidence, assert legal claims, defend disputes, or satisfy recordkeeping duties.

  • Business Improvement. We may use data to improve our submission workflows, website functionality, customer support processes, and internal quality-control systems.

  • Marketing Communications. If we later send newsletters, promotional messages, or similar communications, we may use contact information for that purpose to the extent permitted by law, subject to available unsubscribe or opt-out rights. Your prior instructions indicate that third-party analytics or marketing tools are not presently in use, though they may be added in the future.

6. Legal Bases for Processing

For individuals located in jurisdictions requiring a legal basis for processing, including the European Economic Area, we generally rely on one or more of the following grounds.

Processing may be necessary for performance of a contract or steps taken at your request before entering into a contract, such as receiving an order, grading a submission, issuing an invoice, or returning items after service.

Processing may be necessary for our legitimate interests, provided those interests are not overridden by your fundamental rights and freedoms. Such interests include fraud prevention, network security, customer support, quality assurance, dispute management, and operation of our business in an orderly and secure manner.

Processing may also be required for compliance with legal obligations, including tax, accounting, consumer-protection, law-enforcement, and record-retention duties.

Consent may be used where required, including for certain non-essential cookies or marketing communications, depending on the jurisdiction and the technologies deployed at the relevant time. The GDPR recognizes those principal grounds for lawful processing. 

7. Disclosure of Personal Information

We do not sell personal information for money. We also do not state that we “share” personal information for cross-context behavioral advertising within the meaning used by California privacy law unless and until our actual practices fall within that definition. Should that change, this Privacy Policy and any required rights mechanisms will be updated accordingly. California law imposes disclosure obligations concerning categories of information collected and shared, together with consumer rights relating to sale and sharing.

Personal information may, however, be disclosed to the following categories of recipients when reasonably necessary.

Service Providers and Contractors. We may disclose information to website-hosting providers, payment processors, fraud-prevention vendors, cloud-storage vendors, email and communication providers, shipping carriers, printing or labeling vendors, customer-service tools, and similar providers acting on our behalf.

Professional Advisers. We may disclose information to attorneys, accountants, insurers, auditors, and other professional advisers where reasonably necessary for legal, tax, compliance, or operational matters.

Governmental and Legal Recipients. Information may be disclosed when required by subpoena, court order, regulatory request, law-enforcement request, or other lawful process, or where disclosure is reasonably necessary to protect rights, property, safety, or legal interests.

Business Transaction Counterparties. If we engage in a merger, financing, asset sale, reorganization, or similar transaction, personal information may be disclosed as part of due diligence or transfer of business assets, subject to customary confidentiality protections.

With Your Direction or Consent. Information may be disclosed where you instruct us to do so or clearly consent.

8. International Transfers

SKJ is based in the United States. Personal information collected from individuals in the European Economic Area, the United Kingdom, or Switzerland may therefore be transferred to, stored in, or processed in the United States or other jurisdictions where our service providers operate.

Where required by law, cross-border transfers will be handled through a recognized transfer mechanism, such as adequacy-based participation by a recipient, standard contractual clauses, or another legally recognized safeguard. The European Commission adopted its adequacy decision for the EU-U.S. Data Privacy Framework on July 10, 2023, and later published its first periodic review in October 2024. Availability of that framework may be relevant where a participating U.S. recipient is used.

9. Data Retention

We retain personal information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to maintain account history, document grading and authentication activity, respond to disputes, support regrading requests, manage unpaid orders, comply with tax and accounting rules, satisfy legal obligations, and preserve evidence relevant to claims or investigations.

Retention periods vary according to the nature of the information and the reason for collection. Order and submission records may be kept for an extended period because grading history, item identifiers, and transaction documentation may be necessary for later customer inquiries, authenticity verification, dispute resolution, insurance support, or legal compliance.

Where retention is no longer reasonably necessary, information may be deleted, anonymized, aggregated, or otherwise de-identified, unless continued retention is required or permitted by law.

10. Data Security

We employ reasonable administrative, technical, and organizational measures designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. Measures may include access controls, account protections, role-based limitations, secure service-provider environments, and monitoring for suspicious or unauthorized activity.

No method of internet transmission or electronic storage is entirely secure. For that reason, absolute security cannot be guaranteed. Wix states that its platform includes managed website-security protections and SSL-related safeguards, though responsibility for lawful configuration and data practices remains with the site operator as well.

You are responsible for maintaining the confidentiality of your account credentials and for notifying us promptly if you suspect unauthorized use of your account or personal information.

11. Cookies and Similar Technologies

Our website may use cookies, pixels, tags, local storage objects, and similar technologies for security, functionality, session management, performance, and analytics purposes. Current information provided by you indicates the site uses Wix-related cookies associated with session management, security, and load balancing.

Necessary cookies may be used to keep the site operational, preserve session integrity, detect malicious requests, route traffic efficiently, and maintain login or visit continuity. Non-essential cookies, such as analytics or marketing cookies, may be deployed in the future if we decide to add such tools. Where applicable law requires prior consent for non-essential cookies, we will seek that consent through an appropriate cookie banner or privacy control mechanism before such technologies are activated. Wix provides tools intended to help site operators manage cookie notices and related privacy controls.

Browser settings may allow you to block or delete cookies, although doing so may affect site functionality.

 

12. Your Privacy Rights

Depending on where you live, you may possess rights concerning your personal information.

California Rights. California residents may have rights to know what categories of personal information are collected, the purposes for collection and disclosure, the categories of recipients to whom information is disclosed, and, in certain circumstances, the specific pieces of personal information held by a business. They may also have rights to request deletion, correction of inaccurate information, and to opt out of sale or sharing if those activities occur. California law also prohibits discrimination for exercise of applicable privacy rights. Those rights arise principally under the CCPA, as amended.

EEA, UK, and Swiss Rights. If SKJ is subject to the data-protection laws of the European Economic Area, the United Kingdom, Switzerland, or a comparable jurisdiction with respect to a particular data subject or processing activity, that individual may have rights of access, rectification, erasure, restriction, objection, withdrawal of consent where consent is the basis for processing, and data portability, subject to the conditions and limitations set out in applicable law. Such individual may also have the right to lodge a complaint with a competent supervisory authority.

Other Rights. Additional rights may apply under the laws of other jurisdictions.

To exercise a privacy request, you may contact us using the details set out below. We may need to verify your identity before responding. Verification may require confirmation of account details, order history, contact information, or other information reasonably necessary to confirm that the request is legitimate.

We reserve the right to deny a request where an exemption applies, where we cannot verify identity, where the request is manifestly unfounded or excessive to the extent permitted by law, or where retention is necessary for legal, security, fraud-prevention, or transaction-completion purposes.

13. Marketing Communications and Preference Choices

Where we send marketing emails, you may opt out by using the unsubscribe mechanism contained in the message or by contacting us directly. Administrative emails relating to orders, payments, policy changes, or account security may still be sent because they are transactional in nature.

Do-not-track signals are treated in accordance with applicable law and actual site configuration. California’s online privacy statute requires disclosure of how an operator responds to such signals if the operator collects personally identifiable information over time and across third-party sites. At present, we do not represent that the website responds to browser do-not-track signals in a standardized manner across all environments.

14. Children’s Privacy

Our website and services are not directed to children under 13 years of age, and we do not knowingly collect personal information online from children under 13 without the legally required parental permission. The FTC states that COPPA applies to operators of child-directed sites and to operators with actual knowledge that they are collecting personal information from a child under 13.

If you believe that a child under 13 has provided personal information to us in violation of applicable law, please contact us so that we may take appropriate steps.

15. Third-Party Websites and Services

The website may contain links to third-party websites, services, marketplaces, payment tools, carrier portals, or social-media pages. We do not control the privacy practices of those third parties. When you leave our website or interact with an independently operated service, the privacy policy of that third party will govern.

Presently, you indicated that third-party analytics and marketing plugins are not in use, though future additions remain possible. If we later integrate such tools in a manner requiring updated disclosure or consent, the Policy will be revised accordingly.

16. California Shine the Light Notice

California Civil Code § 1798.83 permits certain California customers to request information concerning a business’s disclosure of personal information to third parties for their own direct-marketing purposes in specified circumstances. If that provision applies to our practices, qualifying requests may be sent to us using the contact details below. Based on our present business model, we do not disclose customers’ personal information to third parties for those third parties’ own direct-marketing purposes in a manner we intend to characterize as falling within that statute.

17. Changes to This Privacy Policy

We may amend this Privacy Policy from time to time to reflect changes in law, website functionality, vendor relationships, data practices, or business operations. Revised versions will be posted on the website with an updated effective date. Material changes may also be communicated by additional notice where required by law.

Continued use of the website or services after the updated version becomes effective constitutes acknowledgment of the revised Policy, to the extent permitted by law.

18. Contact Information

Questions, privacy requests, and data-protection inquiries should be directed to:

SKJ Authentications LLC
Website: https://www.skjgrading.com
Email: info@skjgrading.com

bottom of page