Privacy Policy - LeetDecode

Last updated: February 2026

1. Information We Collect

When you sign in via Google or GitHub, we receive your name, email address, and profile picture from the OAuth provider. We also collect:

Code submissions and execution results
Problem progress and starred problems
Session data (IP address prefix, user agent) for security

2. How We Use Your Information

We use your information to:

Provide and maintain the Service
Display your profile and submission history
Protect against abuse and unauthorized access
Improve the Service

3. Data Storage

Your data is stored in PostgreSQL (user data, submissions) and Redis (sessions, cache). Data is hosted on AWS infrastructure. We use encryption for sensitive tokens.

4. Data Sharing

We do not sell your personal information. We may share data with:

Third-party code execution services (Judge0) — only the code you submit, without personal identifiers
Cloud infrastructure providers (AWS) for hosting
Authentication providers (Supabase) for sign-in

5. Cookies

We use a session cookie (sid) to maintain your authentication state. This cookie is HTTP-only, secure, and has a 24-hour lifetime.

6. Your Rights

You may:

Update your profile information at any time
Request deletion of your account by contacting us
Sign out to clear your session

7. Security

We implement security measures including CSRF protection, rate limiting, session fingerprinting, and encrypted token storage. However, no system is 100% secure.

8. Changes to This Policy

We may update this policy from time to time. We will notify users of significant changes.

9. Contact

For privacy-related questions, please reach out via our GitHub repository.