Privacy Policy

Last updated: March 2026

Information We Collect

When you use PromptProven, we collect the following types of information:

  • Account information — your name, email address, and profile details provided during registration or OAuth sign-in.
  • Submissions — the code patches and solutions you submit to challenges, along with test results and scores.
  • Usage analytics — page views, challenge activity, and general platform usage patterns to help us improve the service.

How We Use Your Data

We use the information we collect to:

  • Provide, maintain, and improve the PromptProven platform.
  • Display your scores and rankings on public leaderboards.
  • Send transactional emails such as password resets and account verifications.
  • Analyze aggregate usage trends to guide product development.

Data Storage and Security

Your data is stored in a PostgreSQL database hosted on infrastructure located in the United States. We encrypt data in transit using TLS and apply industry-standard security practices to protect your information at rest. Passwords are hashed using bcrypt and are never stored in plain text.

Third-Party Services

We use the following third-party services that may process your data:

  • Stripe — payment processing for subscriptions. Stripe handles all payment card data directly; we never store your card details.
  • Google and GitHub — OAuth authentication providers. We receive only the profile information you authorize.
  • Resend — transactional email delivery for verification and password reset emails.
  • Sentry — error monitoring and performance tracking. Sentry may receive anonymized technical data when errors occur.

Cookies and Local Storage

PromptProven stores a JSON Web Token (JWT) in your browser's localStorage to keep you signed in. We do not use tracking cookies. If you opt in to analytics, a minimal analytics cookie may be set to help us understand usage patterns.

Your Rights (GDPR)

If you are located in the European Economic Area or a jurisdiction with similar data protection laws, you have the right to:

  • Access your personal data and request a copy.
  • Export your data in a portable format — visit your account settings to export your data at any time.
  • Delete your account and all associated data upon request.

Data Retention

We retain your data for as long as your account is active. If you request account deletion, we will remove your personal data within 30 days. Anonymized aggregate data (such as challenge completion statistics) may be retained indefinitely.

Changes to This Policy

We may update this privacy policy from time to time. We will notify registered users of material changes via email. Your continued use of PromptProven after changes are posted constitutes acceptance of the updated policy.

Contact

For privacy-related questions or requests, contact us at privacy@promptproven.com.