This policy explains what personal data raceRival processes, why we process it, and your rights under EU GDPR.
Account identity data, competition participation data, and information we process when you connect third-party activity or fitness accounts (for example sports watch brands, training apps, or similar services you authorize): activity metadata, and optional performance or location stream data used for analysis features. Which providers you can link may change over time; each connection is subject to that provider's terms and the permissions you grant.
We process data to provide core platform functionality, secure accounts, and deliver requested analytics. Some processing is contract-based; optional monetized aggregated analytics requires explicit consent.
Aggregated third-party analytics sharing is disabled by default and requires explicit opt-in in Settings. You may withdraw consent at any time. Withdrawal stops future inclusion.
We retain personal data only as long as needed for service delivery, legal compliance, and fraud prevention. Deleted account records are anonymized where retention is required.
You can access, rectify, erase, and restrict processing of your data, and withdraw optional consent from Settings.
Last updated: 2026-05-12. For contractual terms, see Terms & Conditions.