Privacy Policy

Last updated: February 11, 2026

Introduction

Race RGB ("we", "us", or "our") operates the racergb.app website and the Race RGB Chrome extension. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service, including the Chrome extension.

Information We Collect

Account Information: When you create an account, we collect your email address and password (stored securely using industry-standard hashing).

Payment Information: For season pass purchases, we use Polar to process payments. We do not store your credit card details or payment information on our servers.

Smart Light Configuration: We store your Philips Hue, LIFX, and Govee light settings locally in your browser (via localStorage) and, for Hue and Govee, securely on our servers to enable server-side light dispatch.

Authentication Tokens: The Chrome extension stores your authentication token in chrome.storage.local to maintain your logged-in session. This data remains on your device and is not shared.

Usage Data: We collect basic usage statistics (features used, connection timestamps) to improve our service. We do not track browsing activity outside of our application.

How We Use Your Information

We use your information to:

  • Provide and maintain the Race RGB service
  • Process season pass payments
  • Sync your smart lights with live F1 race events in real-time
  • Send session reminders and important service updates
  • Improve our application based on aggregated usage patterns

Chrome Extension

The Race RGB Chrome extension:

  • Stores your authentication token locally using chrome.storage.local
  • Communicates only with racergb.app and our backend API (racergbtrtr-production.up.railway.app) to fetch race data and send light commands
  • Does not read, collect, or transmit your browsing history, bookmarks, or any data from other websites
  • Does not inject scripts into third-party websites
  • Runs a background service worker solely for polling live F1 race control data during active sessions

Data Security

We implement industry-standard security measures to protect your data:

  • All data is encrypted in transit using HTTPS/TLS
  • Passwords are hashed using bcrypt
  • Payment processing is handled by Polar (PCI DSS compliant)
  • Smart light API tokens (Hue, Govee) are stored encrypted in our database
  • JWT-based authentication with token expiration

Third-Party Services

We integrate with the following third-party services to provide our functionality:

Data Sharing

We do not sell, trade, or rent your personal information to third parties. We only share data with the third-party services listed above to the extent necessary to provide our service (e.g., sending light commands to your Hue bridge via the Philips Hue API).

Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and all associated data
  • Export your data
  • Opt out of non-essential communications

Data Retention

We retain your data only as long as necessary to provide our service. When you delete your account, all associated personal data is removed from our systems. Anonymized usage statistics may be retained for analytics purposes.

Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Email: [email protected]

Website: racergb.app

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Continued use of the service after changes constitutes acceptance of the updated policy.