Privacy Policy

Challenge Citadel ("the Platform") respects your privacy. This Privacy Policy explains what data we collect, how we use it, and your rights regarding your personal data when you use our quiz platform.

We may collect and process the following data in connection with your use of the Platform:

• Account data: If you register or sign in (e.g. via email/password, Google, Apple, or Facebook), we store identifiers (such as username, email where provided), profile information you choose to add (e.g. nickname, country, avatar), and linkage to your third-party account where applicable.
• Usage data: Quiz attempts, scores, progress, achievements, and similar activity necessary to operate the Platform and show you your history and rankings.
• Technical and session data: We use session cookies and similar mechanisms to keep you logged in and to protect against abuse (e.g. CSRF). We may collect minimal technical data (such as hashed or anonymised identifiers) where necessary for security or analytics in a privacy-friendly way.

We use the data described above to provide, secure, and improve the Platform; to personalise your experience (e.g. progress, leaderboards, achievements); to communicate with you where necessary (e.g. account or security-related messages); and to comply with applicable law.

We do not sell your personal data to third parties. We may share data only where necessary with service providers that help us run the Platform (e.g. hosting), subject to appropriate safeguards, or when required by law.

If you sign in with Google, Apple, or Facebook, we receive from the provider only the information necessary to create or link your account (such as a unique identifier and, where you consent, email or name). Use of those services is subject to their respective privacy policies. You can revoke the Platform's access to your account at any time in your Google, Apple, or Facebook settings. For detailed steps, see our Data deletion page.

We use essential cookies (e.g. session and CSRF tokens) to keep you logged in and to protect the security of the Platform. We may use additional cookies or similar technologies for analytics or functionality in a way that respects your privacy. You can control cookies through your browser settings; disabling essential cookies may affect your ability to use the Platform.

We retain your account and usage data for as long as your account is active. If you delete your account, we remove or anonymise your personal data in line with our retention and deletion procedures, except where we must keep data for legal or legitimate operational reasons (e.g. security, dispute resolution).

Depending on your location, you may have the right to access, correct, delete, or restrict the processing of your personal data, or to object to certain processing. You can delete your account and request removal of your data at any time from your profile or via our Data deletion page. For other requests or questions about your data, please contact us using the details in our Terms & Conditions.

We take reasonable technical and organisational measures to protect your data against unauthorised access, loss, or misuse. No system is completely secure; we encourage you to use a strong password and to keep your login details confidential.

We may update this Privacy Policy from time to time. The "Last updated" date at the top indicates when it was last revised. Continued use of the Platform after changes are posted constitutes acceptance of the updated policy where permitted by law.

If you have questions about this Privacy Policy or how we handle your data, please contact us through the Platform's official contact channel referred to in our Terms & Conditions.