Legal

Privacy Policy

Last updated: June 20, 2026

This page is maintained by Archtin to answer common privacy questions about our platform. It explains what data we collect, why we collect it, and what choices you have.

1. What we collect

We collect the minimum we need to run Archtin:

  • Account data — email, display name, and (if you choose Google sign-in) a profile picture and provider user ID.
  • Learning data — your submissions, code, scores, streak, XP, and lesson progress.
  • Operational logs — IP address, browser type, and timestamps for security and abuse prevention. These are retained for up to 30 days.

We do not collect government IDs, payment card numbers (handled by our payment provider), or sensitive personal data.

2. How we use your data

  • To operate features you've signed up for (workspace, reviews, leaderboard).
  • To improve the product — aggregate, de-identified usage analytics only.
  • To contact you about account events (sign-in, password reset, plan changes).

We do not sell your personal data. We do not use your code or submissions to train third-party models.

3. AI reviews

When you submit a solution for AI review, your code and problem context are sent through our model gateway to generate the review. The provider processes this transiently to return a response and does not retain it for training.

4. Cookies

We use a small number of first-party cookies and localStorage entries to keep you signed in, remember your theme preference, and remember whether the sidebar is collapsed. We do not use third-party advertising cookies.

5. Subprocessors

We share data only with the providers required to operate the service:

  • Lovable Cloud — authentication, database, file storage.
  • Lovable AI Gateway — AI review processing.
  • Cloudflare — content delivery and edge hosting.
  • Google — only if you choose Google sign-in.

6. Retention and deletion

Account and learning data are retained while your account is active. You can request export or deletion of your account at any time by emailing privacy@archtin.com. We will complete deletion within 30 days, except where retention is required by law.

7. Your rights

Depending on where you live, you may have rights to access, correct, export, or delete your personal data, and to object to certain processing. To exercise these rights, email privacy@archtin.com.

8. Children

Archtin is not intended for children under 16. If you believe a minor has provided us personal data, contact us and we will remove it.

9. Security

We use industry-standard transport encryption (HTTPS/TLS), encrypted data at rest, scoped database access policies, and short-lived authentication tokens. No system is perfectly secure — report suspected vulnerabilities to security@archtin.com.

10. Changes

We will post material changes to this page and update the "Last updated" date. For significant changes, we will also notify you by email.

11. Contact

Questions? Email privacy@archtin.com.