We collect the following types of information:

• Account data — email address, username, and profile information you provide
• Usage data — predictions made, gems staked, streak activity, and leaderboard position
• Payment data — processed securely via Stripe; we do not store card numbers
• Technical data — IP address, browser type, and approximate geolocation for fraud prevention

We use your data to:

• Provide and improve the Platform
• Process gem purchases and maintain balances
• Send transactional emails (e.g. verification, receipts)
• Prevent fraud, cheating, and abuse
• Comply with legal obligations

We do not sell your personal data. We share data only with trusted processors (Stripe for payments, Cloudinary for media) under appropriate data processing agreements.

We retain your account data for as long as your account is active. Upon deletion, we purge personal data within 30 days, except where retention is required by law.

Depending on your location, you may have the right to access, correct, delete, or export your personal data. To exercise these rights, contact us.

We use industry-standard security measures including HTTPS, hashed passwords, and row-level access controls. No system is 100% secure — please protect your account credentials.

Idol Run is not directed at users under 18. We do not knowingly collect data from minors. If you believe a minor has created an account, please contact us immediately.