Privacy Policy

Effective Date: February 15, 2026  |  Last Updated: February 15, 2026

1. Introduction

PyramidSolver ("we," "us," or "our") operates the PyramidSolver website (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website. Please read this policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the site.

2. Information We Collect

2.1 Personal Data

When you register for an account, we may collect:

  • Username (pseudonymous identifier)
  • Email address
  • Password (stored only as a cryptographic hash — we never store plaintext passwords)

2.2 Usage Data

We automatically collect certain information when you access the Service, including:

  • IP address
  • Browser type and version
  • Pages visited and time spent
  • Date and time of access
  • Referring URL

2.3 User-Generated Content

Content you voluntarily submit, including forum posts, knowledge entries, research contributions, and private messages sent to other users.

2.4 Cookies & Local Storage

We use essential session cookies for authentication and security (CSRF protection). We may use localStorage for user preferences such as cookie consent status. See our Cookie Policy for details.

3. How We Use Your Information

We use collected information for the following purposes:

  • To provide and maintain the Service
  • To manage your account and authenticate your identity
  • To enable user-to-user communication (forum, private messages)
  • To detect, prevent, and address security issues and abuse
  • To improve the Service and user experience
  • To comply with legal obligations

4. Data Sharing & Disclosure

We do not sell your personal information. We may share information only in the following circumstances:

  • Legal Requirements: If required by law, regulation, legal process, or governmental request
  • Safety: To protect the rights, property, or safety of PyramidSolver, our users, or the public
  • Service Providers: With trusted third-party providers who assist in operating our Service, subject to confidentiality obligations
  • Consent: With your explicit consent

5. Data Security

We implement industry-standard security measures to protect your data, including:

  • Passwords stored using strong cryptographic hashing (PBKDF2 with SHA-256)
  • CSRF protection on all state-changing requests
  • HTTP security headers (Content-Security-Policy, X-Frame-Options, etc.)
  • Rate limiting on authentication endpoints
  • Input sanitization and output encoding to prevent injection attacks
  • Secure session management with HttpOnly, SameSite cookie flags

While we strive to use commercially acceptable means of protecting your information, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. You may request account deletion by contacting us. Upon deletion, we will remove your personal data within 30 days, except where retention is required by law.

7. Your Rights

7.1 For All Users

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Withdraw consent at any time

7.2 For EU/EEA Residents (GDPR)

Under the General Data Protection Regulation, you have additional rights including:

  • Right to data portability
  • Right to restriction of processing
  • Right to object to processing
  • Right to lodge a complaint with a supervisory authority

7.3 For California Residents (CCPA)

Under the California Consumer Privacy Act, you have the right to:

  • Know what personal information we collect about you
  • Request deletion of your personal information
  • Opt-out of the sale of personal information (we do not sell personal data)
  • Non-discrimination for exercising your privacy rights

7.4 International Users

If you access the Service from outside the United States, your data may be transferred to and processed in the United States. By using the Service, you consent to this transfer.

8. Children's Privacy

The Service is not intended for individuals under the age of 13 (or 16 in the EU/EEA). We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal data, we will take steps to delete such information.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. Continued use of the Service after changes constitutes acceptance of the revised policy.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at:

Email: privacy@pyramidsolver.com