Privacy Policy
Last updated: February 27, 2026
1. Data Controller
Pryndex ("we", "us", "our") is the data controller responsible for the processing of your personal data.
- Company: Pryndex
- Website: pryndex.com
- Email: support@pryndex.com
2. What Data Do We Collect?
We collect the following personal data when you create an account:
- Email address — for login and account communication
- Name — for display in your profile
- Profile picture — optional, from your login provider
Additionally, your use of the platform generates the following data:
- Code submissions — code you submit to challenges
- Progress — completed challenges, XP, and level
- Achievements — earned badges and accomplishments
- Subscription information — subscription type and status (payment details are handled by Stripe)
3. Purpose of Data Processing
We process your data for the following purposes:
- To create and manage your user account
- To provide the coding education service (code execution, progress tracking)
- To manage payments and subscriptions
- To improve the platform based on anonymized usage statistics
4. Legal Basis
We process your personal data on the following legal grounds:
- Performance of a contract (GDPR Art. 6(1)(b)) — necessary to provide the service
- Consent (GDPR Art. 6(1)(a)) — for analytical cookies
- Legitimate interest (GDPR Art. 6(1)(f)) — to improve and secure the platform
5. Third Parties and Data Processors
We use the following third parties to deliver our service:
| Service | Purpose | Data |
|---|---|---|
| Clerk | Authentication and account management | Email, name, session cookies |
| Stripe | Payment processing | Payment details (handled directly by Stripe) |
| Vercel | Hosting and analytics | Anonymized usage statistics, page speed |
We do not store payment card information. All payments are processed directly by Stripe in accordance with the PCI DSS standard.
5.1 Transfers to Third Countries
Our third-party providers (Clerk, Stripe, and Vercel) are US-based companies, and your data may therefore be transferred to and processed in the United States. These transfers are protected by the following mechanisms:
- EU-US Data Privacy Framework — Clerk, Stripe, and Vercel are certified under the EU-US Data Privacy Framework, which ensures an adequate level of protection for personal data transferred to the US.
- Standard Contractual Clauses (SCCs) — Additionally, we use the European Commission's Standard Contractual Clauses as a supplementary safeguard.
You can contact us at support@pryndex.com to obtain a copy of the relevant transfer safeguards.
6. Cookies
We use the following cookies:
| Cookie | Type | Purpose | Duration |
|---|---|---|---|
__session | Essential | Clerk login session | Session |
__client_uat | Essential | Clerk client state | Session |
va | Analytics | Vercel Analytics (anonymized) | 1 year |
cookie-consent (localStorage) | Essential | Stores your cookie preference locally in the browser | Permanent (until you clear browser data) |
You can change your cookie preferences at any time via the "Cookie Settings" button at the bottom of the page. Essential cookies cannot be opted out of, as they are required for the platform to function.
7. Your Rights
You have the following rights under the GDPR:
- Right of access — you can export all your data from your profile page
- Right to rectification — you can update your information via your profile
- Right to erasure — you can delete your account via account settings. All associated data will be permanently deleted.
- Right to restriction of processing — you can request that we restrict the processing of your personal data under certain circumstances (GDPR Art. 18)
- Right to data portability — you can download your data in JSON format from the profile page
- Right to object — you can opt out of analytical cookies
- Right to withdraw consent — where processing is based on consent, you can withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing carried out prior to the withdrawal.
8. Data Retention
We retain your data for as long as your account is active. When you delete your account, all personal data and associated information will be permanently deleted within 30 days. Anonymized statistics may be retained.
9. Security
We use industry-standard security measures to protect your data, including encrypted connections (HTTPS), access controls, and regular security reviews.
10. Complaints
If you believe that we are processing your personal data in violation of data protection legislation, you have the right to lodge a complaint with a supervisory authority. You may contact your local data protection authority or reach out to us at support@pryndex.com so we can address your concerns.
11. Changes
We reserve the right to update this privacy policy. In the event of material changes, we will notify you via email or a notice on the platform.