Privacy Policy

segfault labs LLC is the data controller for personal information processed through the Services. For any privacy question or request, contact us at support@segfaultlabs.net.

• Account data — your email address, username, and a securely hashed password. If you sign in with Google, GitHub, or Discord, we receive your email and basic profile from that provider.
• Security data — IP addresses, device/user-agent details, login and session activity, and two-factor settings, used to secure your account.
• Purchase data — order history and license entitlements. Payments are handled by Paddle (see §5); we do not receive or store your full card details.
• Product telemetry — where you opt in, usage and diagnostic data from our software, used to improve reliability and features.
• Website analytics— first-party analytics about how this site is used. By default this is anonymous and cookieless (pages viewed, time on page, referrer, coarse device type). If you choose “Accept all” in the analytics banner, we additionally collect detailed interaction data (clicks, hovers, scroll depth) and, when you are signed in, link it to your account to help us improve faster. We honour browser Do-Not-Track / Global Privacy Control signals and never use third- party or advertising trackers.
• Support data — the contents of messages you send us.

We collect information you provide directly (registration, purchases, support), automatically (cookies and server logs when you use the Services), and from third parties (OAuth sign-in providers and our payment processor) as described above.

We use personal information to:

• provide, maintain, and secure your account and the Services (performance of a contract);
• process purchases and deliver license keys (performance of a contract);
• prevent fraud and abuse, and keep the Services safe and reliable (our legitimate interests);
• analyze opt-in telemetry to improve our software (consent / legitimate interests);
• communicate with you about your account, purchases, and support (contract / legitimate interests);
• comply with legal obligations (legal obligation).

Where we rely on consent (e.g. optional telemetry or marketing), you may withdraw it at any time.

Purchases are processed by Paddle, which acts as the Merchant of Record and is responsible for billing, taxes, and handling your payment details. We receive order confirmations and the limited information needed to deliver your license — never your full card number. Paddle’s processing of your data is governed by Paddle’s own privacy policy.

We do not sell your personal information. We share it only with service providers (“processors”) who help us run the Services, under contractual confidentiality and data-protection obligations, or where required by law. These include:

• payment processing (Paddle);
• transactional email delivery;
• cloud hosting and database;
• content delivery and DDoS protection (Cloudflare);
• OAuth sign-in providers you choose to use (Google, GitHub, Discord).

We may also disclose information to comply with the law or to protect our rights and users.

Our providers may process data in countries other than yours. Where personal data is transferred internationally, we rely on appropriate safeguards (such as Standard Contractual Clauses) as required by applicable law.

We keep personal data only as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements. When no longer needed, data is securely deleted or anonymized. You can request deletion of your account at any time (see §10).

We use industry-standard measures including password hashing, encrypted transport (HTTPS), login and IP monitoring, optional two-factor authentication, and access controls. No system is perfectly secure; in the unlikely event of a breach affecting your data, we will notify you and the relevant authorities as required by law.

Depending on where you live, you may have the right to:

• access the personal data we hold about you;
• correct inaccurate data;
• delete your data;
• restrict or object to certain processing;
• receive your data in a portable format;
• withdraw consent where processing is based on consent.

To exercise any right, email support@segfaultlabs.net. You also have the right to lodge a complaint with your local data-protection authority. We will not discriminate against you for exercising your rights.

The Services are not directed to children under 16, and we do not knowingly collect their personal data. If you believe a child has provided us information, contact us and we will delete it.

We use strictly-necessary cookies for authentication and security, and we do not use advertising cookies or third-party trackers. Our anonymous, cookieless analytics run by default; detailed, account-linked analytics are off until you opt in. You can change your choice at any time via “Analytics preferences” in the footer, and withdrawing consent stops detailed collection immediately. You can also control cookies through your browser, but some features require them.

We may update this policy from time to time. Material changes will be posted here with a new date, and where required we will notify you. Continued use of the Services after an update constitutes acceptance.

Questions or requests? Email support@segfaultlabs.net.