Privacy Policy
Last updated July 2026
This Privacy Policy explains what information BloxSolve collects, how we use it, and the choices you have. We keep data collection to the minimum needed to run the Service.
1. Information we collect
- Account data. Your email address, which is your account identity. When you sign in with Discord or Google we receive your verified email and a provider account identifier used to link your account, and for Discord we also store your username. We do not store account passwords.
- Billing data. When you buy credits, our payment provider processes the transaction. We store the invoice identifier, the amount, the purchase email, and the credits applied. We do not receive or store full card numbers.
- Usage data. We record per-key metadata needed to operate and bill the Service, such as solve counts, timestamps, request outcomes (solved or failed), and the challenge flow (login or signup). We do not log the proxies you send, the challenge blobs you submit, or the contents of the tokens we return beyond what is needed to complete a request.
- Technical data. Standard server logs (such as IP address and request time) used for security, abuse prevention, and diagnostics.
2. How we use information
- to provide, maintain, and improve the Service;
- to authenticate you and provision your API key and balance;
- to process payments and credit your account;
- to monitor for fraud, abuse, and security incidents;
- to respond to support requests and comply with legal obligations.
3. Payment processing
Payments are handled by our third-party payment provider, which acts as merchant of record. Their handling of your payment information is governed by their own privacy policy. We receive only the transaction details needed to credit your account.
4. Sharing
We do not sell your personal data. We share information only with service providers that help us operate the Service (such as hosting and payment processing), or when required by law, or to protect the rights, safety, and security of BloxSolve and its users.
5. Data retention
We keep account, billing, and usage records for as long as your account is active and as needed to meet legal, accounting, and security obligations. You may request deletion of your account, subject to records we are required to retain.
6. Security
Sign-in is handled by Discord or Google, or by your API key, so we do not store account passwords. API keys are stored using a lookup hash, and, where enabled, encrypted at rest so they can be re-displayed only to their owner. No method of transmission or storage is completely secure, but we take reasonable measures to protect your data.
7. Your choices
You can access your account data by signing in. You may request correction or deletion of your data, or unlink a connected sign-in provider, by contacting us. Depending on your location, you may have additional rights under applicable data-protection laws.
8. Children
The Service is not directed to children and is intended for users who meet the eligibility requirements in our Terms of Service.
9. Changes
We may update this Privacy Policy from time to time. Material changes will be reflected by updating the “Last updated” date above.
10. Contact
For privacy questions or requests, reach us through our contact page.