Roiders Club

Legal

Privacy Policy

Last updated June 18, 2026

Overview

Roiders Club is built privacy-first. We do not require an email address or social login. By default, your tracking data stays on your device. This policy explains what we collect, when cloud sync applies, and your choices.

What we collect

Account identifiers. When you create an account, we store a cryptographic hash and fingerprint of your access key — never the key itself in plain text. We may store an optional username and display name you choose.

Application data (local).Labs, gear, training, nutrition logs, settings, and exports are stored in your browser's local storage by default. This data does not leave your device unless you enable cloud sync or export it yourself.

Application data (cloud sync). If premium cloud sync is enabled for your account and the platform sync switch is on, your module data is stored in our database so you can access it across devices. You can request sync be disabled at any time via support.

Technical data. Like most web services, our host (Vercel) and database provider (Supabase) may process standard request logs — IP address, browser type, timestamps — for security and operations. We do not use third-party advertising trackers.

What we do not collect

  • Email addresses (unless you voluntarily contact us outside the app)
  • Real names (unless you enter one as a display name)
  • Payment card data (premium is arranged off-platform)
  • Third-party analytics or ad profiling cookies

How we use information

  • Authenticate you when you sign in with your access key
  • Store and sync your tracking data when cloud sync is enabled
  • Operate admin and vendor tools for account management
  • Maintain security, prevent abuse, and improve reliability

We do not sell your personal data.

Data retention

Local data remains on your device until you clear browser storage or uninstall. Cloud-synced data is retained while your account is active and sync remains enabled. If your account is deleted by an administrator, associated cloud data is removed. Export your data regularly if you want an independent backup.

Your choices

  • Export: Download a full JSON export from Settings at any time
  • Local-only: Use the free tier without cloud sync — no server copy of your module data
  • Sync opt-in: Cloud sync is off by default and only enabled per account by an administrator after you request premium access

Security

Access keys are verified using one-way hashing. Sessions use secure cookies. Cloud data is transmitted over HTTPS. No system is perfectly secure — protect your access key like a password.

Children

The Service is not intended for anyone under 18. We do not knowingly collect data from minors.

Changes

We may update this Privacy Policy from time to time. The "Last updated" date above reflects the current version. Continued use after changes constitutes acceptance.

Related policies

See also our Terms of Service.

Contact

Privacy questions or data requests? Contact support.