Privacy Policy

Thank you for choosing to be part of our community at Loophole Labs, Inc. ("Company", "we", "us", "our"). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about this privacy notice, or our practices with regards to your personal information, please contact us at [email protected].

When you visit our website https://loopholelabs.io (the "Website"), and more generally, use any of our services (the "Services", which include the Website), we appreciate that you are trusting us with your personal information. We take your privacy very seriously. In this privacy notice, we seek to explain to you in the clearest way possible what information we collect, how we use it and what rights you have in relation to it. We hope you take some time to read through it carefully, as it is important. If there are any terms in this privacy notice that you do not agree with, please discontinue use of our Services immediately.

This privacy notice applies to all information collected through our Services (which, as described above, includes our Website), as well as any related services, sales, marketing, or events.

What information do we collect?
How do we use your information?
Will your information be shared with anyone?
Who will your information be shared with?
Do we use cookies and other tracking technologies?
How do we handle your social logins?
Is your information transferred internationally?
How long do we keep your information?
How do we keep your information safe?
Do we collect information from minors?
What are your privacy rights?
Controls for Do-Not-Track Features
Do California residents have specific privacy rights?
Do we make updates to this notice?
How can you contact us about this notice?
How can you review, update, or delete the data we collect from you?

1. What information do we collect?

Personal information you disclose to us

We collect personal information that you voluntarily provide when you register on the Website, express interest in our products or Services, participate in activities on the Website, or contact us. This may include:

Names, phone numbers, email addresses, mailing addresses, usernames, passwords, contact preferences, authentication data, billing information, and similar details.
Payment data (e.g., credit card number, security code)—all stored by Stripe.
Social media login data if you choose to register via third-party platforms.

Information automatically collected

We automatically gather information such as:

IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, usage patterns, and other technical data.
Log data: timestamps, pages viewed, searches, features used, crash reports.
Device data: device and application IDs, configuration, ISP, etc.
Location data, either precise or approximate, depending on your device settings.

2. How do we use your information?

We process your information based on legitimate business interests, contractual necessity, legal obligations, or your consent. Uses include:

Facilitating account creation and logins (including social logins).
Posting testimonials (with your consent), requesting feedback, enabling user communications, managing accounts.
Sending administrative info, protecting services (e.g., fraud detection), enforcing policies.
Responding to legal requests, fulfilling orders and services, administering contests.
Delivering and supporting services, responding to inquiries, and marketing (with opt-out options).
Serving targeted advertising and personalized content.

3. Will your information be shared with anyone?

We share your information:

With consent, to fulfill contracts, for legitimate interests, or when legally required.
During business transfers (e.g., mergers, acquisitions).
With vendors, consultants, and service providers performing tasks on our behalf under contractual restrictions.
With third-party advertisers for personalized advertising purposes.
With affiliates and business partners for promotions or offerings.

4. Who will your information be shared with?

Specifically:

Advertising, marketing, and lead generation via Google AdSense.
Social login services: Google, GitHub, Twitter, Facebook, Stripe.
Cloud computing: Digital Ocean, AWS, Google Cloud.
Content: Adobe Edge Web Fonts.
Billing: Stripe.
Retargeting: Google Analytics Remarketing.
Analytics: Google Analytics, Google Analytics for Firebase.
Performance monitoring: Firebase Crash Reporting and Performance Monitoring.
Website testing: Firebase Remote Config.

5. Do we use cookies and other tracking technologies?

Yes. We use cookies, web beacons, and similar tools to collect and store information; details are outlined in our Cookie Notice.

If you use social login (e.g., Facebook, Twitter):

We receive perfil data such as name, email address, friends list, profile picture, depending on the provider.
We use this information only as described in this policy or on the Website.
We don’t control how third-party platforms use your data—please review their privacy policies.

7. Is your information transferred internationally?

Possibly. Our servers are located in Canada and the U.S., and your data may be transferred, stored, or processed there or other countries where we operate or engage third parties. If you're in the EEA, note that data protection laws may differ, but we apply necessary safeguards.

8. How long do we keep your information?

We retain your data only as long as needed to fulfill purposes outlined in this notice, unless legally required otherwise. Typically, no longer than three months after account termination. Afterwards, we delete or anonymize it, or store it securely (e.g., backups) until deletion is feasible.

9. How do we keep your information safe?

We implement technical and organizational measures to protect your personal information. However, no method of online transmission or storage is completely secure, and we cannot guarantee absolute protection against unauthorized access.

10. Do we collect information from minors?

No, we do not knowingly collect data from individuals under 18. If discovered, we will promptly delete the data and deactivate the account. If you become aware of any such data, please contact us.

11. What are your privacy rights?

Depending on your location (e.g., EEA):

You may have the right to access, correct, delete, restrict or object to processing, and data portability.
You can withdraw consent where processing is based on it, without affecting prior lawful processing.
EEA residents may complain to local data protection authorities. Swiss authorities info is also available.
To exercise rights, contact us using the details below.

12. Controls for Do-Not-Track Features

We currently do not respond to DNT browser signals or similar mechanisms. If a standard is adopted in the future, we will update this notice accordingly.

13. Do California residents have specific privacy rights?

Yes. Under the California "Shine The Light" law:

You can request, once per year for free, details about personal data disclosed for direct marketing, and third parties with whom data was shared.
If under 18 and have an account, you can request removal of publicly posted data. We will make it non-public, though complete removal (like from backups) may not be feasible.

You can review or change account information or terminate your account via settings or by contacting us.
Upon request, we will deactivate or delete your account and information, though some data may be retained for fraud prevention, investigation, legal compliance, or backups.
To request access, updates or deletion, contact us at [email protected]. We will respond within 30 days.

Table of Contents