Privacy Policy

Last Updated: January 23, 2025

1. Introduction

Welcome to W Key Club ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web application. By using W Key Club, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

When you sign in with Google OAuth, we collect:

Email Address: Used for account identification and authentication
User ID: A unique identifier for your account
Profile Information: Basic profile data provided by Google (name, profile picture if available)

2.2 Usage Data

We automatically collect certain information about your use of our service:

Click Data: Number of W key clicks and timestamps
Session Data: Login/logout times and session duration
Real-time Activity: Live clicking activity shared through websockets
Device Information: Browser type, IP address, and device identifiers

2.3 Local Storage

We store the following information locally in your browser:

Authentication tokens
Personal click statistics
User preferences and settings

3. How We Use Your Information

3.1 Service Provision

Authenticate and verify your identity
Track and display your personal clicking statistics
Enable real-time interaction with other users
Maintain and improve our service

3.2 Analytics and Improvement

Analyze usage patterns to improve user experience
Monitor application performance and reliability
Generate aggregated, non-personal statistics

            Important: We do not sell, trade, or rent your personal information to third parties. Your clicking data is used solely for providing the service and improving user experience.
        

4. Data Storage and Security

4.1 Data Storage

Server Storage: Click statistics and user data are stored securely on our Xano backend
Local Storage: Temporary data stored in your browser for performance
Authentication: OAuth tokens are handled securely through Google's systems

4.2 Security Measures

HTTPS encryption for all data transmission
Secure token-based authentication
Regular security updates and monitoring
Limited data retention periods

5. Data Sharing and Disclosure

5.1 Public Information

The following information may be visible to other users:

Real-time clicking activity (anonymous during active sessions)
Aggregated statistics (total clicks without personal identification)

5.2 Third-Party Services

We use the following third-party services:

Google OAuth: For secure authentication (governed by Google's Privacy Policy)
Xano: For backend data storage and API services
WebSocket Services: For real-time communication

6. Your Rights and Choices

6.1 Account Control

Access: View your personal statistics through the trophy icon
Logout: End your session and clear local data
Data Deletion: Contact us to request account and data deletion

6.2 Browser Controls

Clear local storage and cookies
Disable JavaScript (will limit functionality)
Use private/incognito browsing mode

7. Data Retention

Active Accounts: Data retained while account is active and for 30 days after last login
Click Statistics: Personal statistics retained for 1 year
Authentication Data: Tokens expire and are renewed automatically
Logs: Server logs retained for 90 days for security and performance monitoring

8. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

9. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. Changes are effective immediately upon posting.

10. International Users

Our services are hosted and operated in the United States. If you are accessing our service from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located.

11. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

Application: W Key Club
Website: www.wkeyclub.com
Support: support@wkeyclub.com

We will respond to privacy-related inquiries within 30 days.

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

Right to know what personal information we collect and how it's used
Right to delete personal information we have collected
Right to opt-out of the sale of personal information (we do not sell personal information)
Right to non-discrimination for exercising your privacy rights

13. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

Right of access to your personal data
Right to rectification of inaccurate data
Right to erasure of your data
Right to restrict processing of your data
Right to data portability
Right to object to processing

            Legal Basis for Processing: We process your data based on your consent for authentication and legitimate interest for service improvement and analytics.
        