Privacy Policy

This page explains what information Colf collects, how we use it, and the choices you have. This summary is provided for convenience and will be updated as the service evolves.

We only store data for the essential purpose of operating the service: showing leaderboards and associating submissions with your user account. We have no intention of using your data for any other purposes.

Information we collect

• Account information: We receive your GitHub account details via Supabase OAuth (e.g., user ID, username, display name, avatar URL). We do not store your password.
• Usage data: When you submit solutions, we store metadata such as pass/fail, token counts, runtime, and timestamps. For accepted submissions, we may store the prompt and code text to power leaderboards and features.
• Security & limits: We store per-user rate limit counters and one-time submission nonces to prevent abuse.
• Analytics & telemetry: We use Vercel Analytics and Sentry (with session replay sampling) to understand performance and errors.

How we use information

• Authenticate you and maintain your session via Supabase cookies.
• Operate challenges, leaderboards, and your submissions history.
• Detect, prevent, and respond to misuse and service issues.
• Improve the product via analytics and error reporting.

Data sharing

• Service providers: Supabase (auth/session), PostgreSQL (database via your configured provider), OpenAI (for code generation requests you initiate), Sentry (errors and optional session replay), and Vercel Analytics.
• Public content: Leaderboards may show your username and avatar. If you use Delete in Profile, your profile is anonymized on leaderboards and cannot be re-linked to your identity.

Your choices

• Delete: Use Profile → Delete to permanently delete your data. This is irreversible.

Cookies

We use essential cookies for authentication (Supabase) and may use analytics cookies. Your browser provides controls to manage cookies.

Last updated: 2025-08-24