Privacy Policy

HorizonDojo (“we”, “us”) is an independent community fan project. This policy explains how we collect, use, and protect information when you use our website at horizondojo.gg.

We collect the following categories of information:

• Account information — email address, username, display name, bio, and optional gamertag you provide when registering or editing your profile.
• OAuth data — if you sign in with Google or Discord, we receive your email address and public profile information from that provider. We do not store OAuth access tokens beyond the authenticated session.
• User-generated content — assets (share codes, tunes, liveries, drift lines, etc.), comments, tags, and any other content you post.
• Usage data — standard web server logs including IP address, browser type, pages visited, and timestamps. This data is retained for up to 30 days.
• Analytics — we use PostHog to collect aggregated, anonymised product analytics. No personally identifiable information is shared with PostHog beyond a pseudonymous user ID.

• To provide and improve the HorizonDojo service
• To authenticate you and secure your account
• To display your public profile and content to other users
• To send transactional emails (password reset, email verification)
• To detect and prevent abuse, spam, and violations of our Terms of Use
• To calculate XP, levels, and badges based on your activity

We do not sell your personal data. We do not use your data for advertising targeting.

We share data with the following third-party service providers solely to operate the site:

• Supabase — database, authentication, and file storage (EU region). Supabase processes data on our behalf under a data processing agreement.
• Vercel — hosting and edge delivery.
• Sentry — error tracking. Sentry may receive limited request metadata when an error occurs; we scrub personally identifiable data before it is sent.

We may disclose information if required to do so by law or in response to valid legal process.

We use session cookies set by Supabase Auth to keep you signed in. No persistent third-party advertising cookies are used. You can clear cookies through your browser settings at any time; doing so will sign you out.

We retain your account data for as long as your account is active. Soft-deleted content (assets, comments) is permanently purged after 30 days. You may request earlier deletion by contacting us.

If you delete your account, your personal data is removed within 14 days. Aggregated, anonymised statistics derived from your activity (e.g., total download counts) may be retained.

Depending on your jurisdiction, you may have rights including access to, correction of, deletion of, or portability of your personal data. To exercise these rights, email privacy@horizondojo.gg. We will respond within 30 days.

HorizonDojo is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe a child has submitted data to us, please contact us and we will delete it promptly.

We may update this policy from time to time. The “last updated” date at the top of this page reflects the most recent revision. Continued use of the site after changes are posted constitutes acceptance.

Questions or requests? privacy@horizondojo.gg