1. Scope
This policy applies to buildwithgit.com, related subdomains, and services we operate.
2. Information We Collect
- Account: username, email, password hash, verification state, avatar.
- OAuth: provider user ID, email, access token, profile photo (Google, GitHub, Facebook).
- Profile: optional hobby and social links you add.
- Activity: progress records, completed lessons/quizzes/challenges, submission metadata.
- Payments: plan, currency, order ID, payment status. Card details handled by Razorpay, not stored by us.
- Technical: session cookies, IP, browser type, request logs.
3. How We Use It
- Create and manage accounts, authenticate sessions.
- Deliver lessons, challenges, progress tracking, and repo provisioning.
- Process payments and grant paid access.
- Send verification, reset, and support emails.
- Detect abuse, debug issues, enforce terms.
4. Sharing
We do not sell personal information. Data shared only with:
- Infrastructure/database providers hosting the app.
- Email providers for transactional emails.
- OAuth providers (Google, GitHub, Facebook).
- Razorpay for payment processing.
- Legal recipients when required by law.
5. Cookies
Essential auth cookies only. Session cookies for login, short-lived state cookies for OAuth flows. No advertising cookies.
6. Do Not Track
We do not run third-party ad networks or intentionally track you across unrelated websites.
7. Data Retention
- Account data kept while account is active.
- Sessions active up to 30 days.
- Verification tokens expire in 24 hours, password resets in 1 hour.
- Payment records may be kept longer for legal/audit reasons.
8. Your Rights
- Update profile from your dashboard.
- Log out anytime, request account deletion by email.
- Control cookies through browser settings.
9. Security
We use hashed passwords, signed sessions, payment signature verification, and server-side access controls. No system is perfectly secure.
10. Contact
Privacy questions? Email support@buildwithgit.com.