Privacy Policy

Last updated: 2026-06-21

1. Data Controller

cliq ("we", "the platform") is responsible for processing your personal data. For any privacy-related inquiries, contact us at privacidad@cliq.gg.

2. Data We Collect

We collect the following data when you use cliq:

  • Email address — to identify you, send communications, and manage your account.
  • OAuth identifiers and tokens — when you sign in with Discord, Google, Apple, Microsoft/Xbox, or Steam, we receive a unique identifier for your account on that platform. We never store your password from any external platform.
  • Push notification token — to send you in-app notifications on mobile when you get a match or a new message.
  • Gaming profile information — in-game username, rank, platforms, and language preferences that you provide.
  • Usage data — platform interactions, searches, matches made, and reputation score.

3. How We Use Your Data

Your data is used to:

  • Create and manage your cliq account.
  • Match you with compatible players by game, rank, language, and reputation.
  • Send you notifications about matches, messages, and relevant updates.
  • Maintain the reputation system and prevent toxic behavior.
  • Improve the platform through aggregated usage analytics.
  • Comply with applicable legal obligations.

4. Third Parties and Data Processors

We share or process data with the following providers under confidentiality and data processing agreements:

  • Supabase — database and authentication. Stores your account, profile, and usage data on secure servers.
  • Resend — transactional email delivery (confirmations, email notifications).
  • Discord — OAuth sign-in and community. See their privacy policy.
  • Google — Google OAuth sign-in. See their privacy policy.
  • Apple — Sign in with Apple. See their privacy policy.
  • Microsoft / Xbox — Microsoft account OAuth sign-in. See their privacy policy.
  • Steam (Valve) — Steam OAuth sign-in. See their privacy policy.

We do not sell your personal data to third parties.

5. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete or anonymize your personal data within 30 days, unless a legal obligation requires us to retain it longer (e.g., accounting records). OAuth tokens are deleted immediately upon sign-out or disconnection of the linked account.

6. Your Rights

Under the GDPR (Article 17), LGPD, and CCPA, you have the following rights (ARCO+):

  • Access — request a copy of the data we hold about you.
  • Rectification — correct inaccurate or incomplete data.
  • Erasure / Deletion — request deletion of your data ("right to be forgotten", GDPR Art. 17; "Right to Delete", CCPA).
  • Objection and portability — object to certain processing and receive your data in a portable format.

To exercise any of these rights, email us at privacidad@cliq.gg from the address associated with your account. We will respond within 30 days.

7. Security

We apply appropriate technical and organizational measures to protect your data: encryption in transit (TLS), encryption at rest, role-based access control, and periodic security audits. No system is 100% secure. In the event of a data breach affecting your data, we will notify you in accordance with applicable law.

8. Changes to This Policy

We may update this policy periodically. When we make material changes, we will notify you by email or via a prominent notice on the platform, at least 15 days in advance. The "Last updated" date at the top of this document indicates when it was last revised.

9. Contact

For any privacy-related questions, data rights requests, or complaints:

privacidad@cliq.gg