Privacy Policy

When you create an account we store:

• Your email address (for authentication only)
• A display name you choose
• Your activity on the platform — guides submitted, verifications, tips, and upvotes

We do not collect payment information, government IDs, or any sensitive personal data. We do not run advertising or track you across other websites.

Your information is used solely to:

• Authenticate you and keep your session secure
• Display your display name and contribution history on the platform
• Calculate leaderboard rankings and verification scores
• Send essential account emails (password reset, sign-in links)

We never sell, rent, or share your personal data with third parties for marketing purposes.

Your data is stored securely using Supabase, hosted on AWS infrastructure in the EU. Authentication is handled by Supabase Auth with industry-standard encryption. Passwords are never stored in plain text.

We use a single first-party cookie (preferred_country) to remember your country preference. No third-party tracking cookies are used.

Guides, tips, and comments you submit are public and attributed to your display name. They may be indexed by search engines. If you want your contributions removed, contact us at the address below.

You may at any time:

• Request a copy of your data
• Request deletion of your account and associated data
• Update your display name from your dashboard

To exercise these rights, email us at privacy@opensteps.org. We respond within 14 days.

We may update this policy as the platform evolves. Material changes will be announced on the platform. Continued use after changes constitutes acceptance.