Privacy Policy

Last updated: April 10, 2026

1. Information We Collect

We collect the following information when you use Rupture:

  • Account data: Email address, username, and hashed password.
  • Payment data: Processed by Stripe. We do not store credit card numbers.
  • Hardware ID (HWID): Collected to bind licenses to your machine for anti reverse engineering reasons.
  • IP address: Logged for security and rate-limiting purposes.
  • Usage data: Login timestamps, download logs, and session information.

2. How We Use Your Data

  • To provide and maintain the Service.
  • To process payments and deliver license keys.
  • To bind licenses to hardware for security purposes.
  • To prevent fraud, abuse, and unauthorized access.
  • To communicate important updates about your account or products.

3. Data Storage & Security

Your data is stored on secure servers hosted on Railway (PostgreSQL database). All communications are encrypted via TLS. Passwords are hashed using bcrypt with a salt factor of 12.

While we implement industry-standard security measures, no method of electronic storage is 100% secure.

4. Third-Party Services

We use the following third-party services:

  • Stripe — Payment processing. Subject to Stripe's Privacy Policy.
  • Cloudflare R2 — Secure file storage for software downloads.
  • Railway — Hosting and database infrastructure.
  • Vercel — Website hosting.

5. Data Sharing

We do not sell, trade, or rent your personal information to third parties. Data is shared only with the service providers listed above, strictly for operational purposes.

6. Data Retention

  • Account data is retained for as long as your account is active.
  • Payment records are retained as required by law (typically 5–7 years).
  • Download logs are retained for 90 days.
  • You may request account deletion at any time by contacting support.

7. Your Rights

Under applicable data protection laws (including GDPR), you have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data ("right to be forgotten").
  • Object to processing of your data.
  • Export your data in a portable format.

To exercise any of these rights, contact ruptureservices@gmail.com.

8. Cookies

We use minimal cookies for authentication (JWT session tokens stored in local storage). We do not use tracking cookies or third-party analytics.

9. Children's Privacy

The Service is not intended for anyone under 18 years of age. We do not knowingly collect data from minors.

10. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated revision date.

11. Contact

For privacy-related inquiries, contact us at ruptureservices@gmail.com.