Privacy Policy

SpeedF1 ("we", "us", "our") operates the website speedf1.live. We are committed to protecting your personal data and respecting your privacy in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

For any privacy-related enquiries, you can contact us at: neuraloop.ai@gmail.com

When you use SpeedF1, we may collect the following categories of personal data:

• Account Information — Name, email address, profile picture, and username provided through social login (Google, Discord, or Facebook).
• Usage Data — Pages visited, features used, timestamps, and interaction patterns to improve the platform.
• Authentication Data — Session tokens and OAuth provider identifiers required to keep you signed in.

We do not collect payment information, precise geolocation, or sensitive personal data.

We process your personal data for the following purposes:

• Authentication — To create and manage your account securely via OAuth providers.
• Platform Features — To power predictions, leaderboards, and personalised content.
• Analytics — To understand how users interact with SpeedF1 and improve the experience (via PostHog).
• Communication — To respond to support requests or feedback you send us.

Legal Basis (GDPR Article 6): We process data based on (a) your consent, (b) performance of a contract (providing the service), and (c) our legitimate interest in improving the platform.

We use the following third-party services that may process your data:

• Convex — Database and backend hosting (stores user accounts and session data).
• Better Auth — Authentication framework for OAuth sign-in.
• Vercel — Website hosting and deployment.
• PostHog — Privacy-friendly product analytics.
• Google, Discord, Facebook — OAuth identity providers for social login.

Each third-party service operates under their own privacy policy and we encourage you to review them. We do not sell your data to any third party.

We retain your personal data for as long as your account is active. If you request account deletion, we will remove your personal data within 30 days, except where we are legally required to retain certain records.

If you are located in the European Economic Area (EEA) or the United Kingdom, you have the following rights:

• Right of Access — Request a copy of the personal data we hold about you.
• Right to Rectification — Request correction of inaccurate data.
• Right to Erasure — Request deletion of your personal data ("right to be forgotten").
• Right to Restrict Processing — Request that we limit how we use your data.
• Right to Data Portability — Request your data in a structured, machine-readable format.
• Right to Object — Object to processing based on legitimate interests.
• Right to Withdraw Consent — Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at neuraloop.ai@gmail.com. We will respond within 30 days as required by GDPR.

SpeedF1 uses essential cookies and browser local storage to maintain your authentication session and store user preferences. We do not use advertising or tracking cookies.

PostHog analytics uses a first-party cookie for anonymous usage tracking. You can opt out of analytics tracking at any time through your browser settings.

We implement appropriate technical and organisational measures to protect your personal data, including encrypted connections (HTTPS/TLS), secure OAuth token handling, and access controls on our backend systems. However, no method of transmission over the internet is 100% secure.

Your data may be processed on servers located outside the EEA (e.g., in the United States via Convex and Vercel). Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or the service provider's adherence to recognised data protection frameworks.

SpeedF1 is not intended for children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last updated" date. We encourage you to review this page periodically.