Privacy Policy

Topcoder (“we,” “us,” “our”) operates the Topcoder macOS desktop application (the “App”) and the website located at topcoder.app (the “Website,” and together with the App, the “Service”). This Privacy Policy explains how we collect, use, disclose, retain, and safeguard your personal information when you use our Service.

By downloading, installing, or using the App, or by visiting the Website, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.

We encourage you to read this Privacy Policy in its entirety. If you have any questions or concerns, please contact us at support@topcoder.app.

1.Information We Collect

1.1 Personal Information You Provide Directly

When you create an account or interact with our Service, we may collect the following personal information that you voluntarily provide:

• Account Information: Email address, display name, and a unique user identifier (UID) generated by Firebase Authentication.
• Authentication Credentials: Encrypted password managed through Firebase Authentication. We do not have access to your plaintext password.
• Payment Information: When you purchase a plan, payment processing is handled entirely by Stripe, Inc. We do not receive, store, or have access to your full credit card number, debit card number, or bank account details.
• Support Communications: Any information you provide when contacting us for customer support.

1.2 Information Collected Automatically

• Usage Data: Feature usage counts, session metadata (start and end times), demo usage count, credits remaining, and plan type.
• Device Information: Operating system version, application version, device model.
• Analytics Data: Anonymized usage analytics and crash reports. These do not contain PII.
• Purchase History: Records of plan purchases, credit top-ups, and transaction timestamps.

1.3 Screen Capture, Audio, and Transcript Data

• Screenshots: Screen captures are transmitted to our backend server for AI processing. We may retain screenshots for quality assurance and model training purposes.
• Audio Recordings: Audio data is streamed to Deepgram for real-time transcription. We may retain audio recordings for quality assurance and training purposes.
• Transcripts: Generated transcripts may be retained for service improvement, quality assurance, and training purposes.

1.4 Information We Do Not Collect

• We do not collect precise geolocation data.
• We do not collect biometric identifiers.
• We do not access your contacts, calendar, or other personal data beyond what is described herein.
• We do not sell your personal information to third parties.

2.How We Collect Information

2.1 Directly from You

We collect information that you provide directly when you create an account, purchase a plan, configure settings, or contact our support team.

2.2 Automatically Through the Application

The App automatically collects screen captures when you invoke screenshot analysis, audio when live transcription is enabled, session timing metadata, and anonymized usage analytics.

2.3 From Third-Party Service Providers

• Firebase (Google): Authentication tokens, user identifiers, and account status.
• Stripe: Payment confirmation, subscription status, and transaction identifiers.

3.Purpose and Legal Basis for Processing

We process your personal information for providing and operating the Service, processing payments, communicating with you, improving the Service, ensuring security, and complying with legal obligations.

4.How We Use Your Information

• To Provide the Service: Process screen captures through AI models, transcribe audio, generate interview assistance, manage your account.
• To Process Transactions: Manage billing, process purchases through Stripe, track your credit balance.
• To Communicate: Send service-related notifications, respond to support inquiries.
• To Improve the Service: Analyze anonymized usage patterns and crash reports.
• To Ensure Security: Detect, prevent, and respond to fraud, abuse, and technical issues.
• To Comply with Legal Obligations: Fulfill legal and regulatory obligations.

5.Screen Capture and Audio Recording

5.1 Screen Capture

Screenshots are transmitted over TLS/HTTPS to our backend on Fly.io and forwarded to OpenAI's API for analysis. We may retain screenshots for quality assurance, service improvement, and training purposes.

5.2 Audio Recording

Audio is streamed to Deepgram for real-time transcription. We may retain audio recordings for quality assurance and training purposes.

5.3 User Consent and Control

Screen capture and audio recording require explicit macOS system permissions. You have full control over when these features are active and can revoke permissions at any time.

6.AI Processing and Third-Party AI Services

Topcoder uses OpenAI for screenshot analysis and code solution generation. Audio is transcribed by Deepgram. Data sent to these services is subject to their respective privacy policies. As of the effective date, OpenAI states that API data is not used to train its models.

7.Local Data Storage

Certain data is stored locally on your macOS device including Firebase refresh tokens (macOS Keychain) and user preferences (UserDefaults). You can delete all local data by uninstalling the app.

8.Data Sharing and Third-Party Service Providers

We do not sell, rent, or trade your personal information. We share data only with: OpenAI (screenshot analysis), Deepgram (audio transcription), Stripe (payment processing), Firebase/Google (authentication and data storage), and Fly.io (backend hosting).

9.Data Retention

Account information is retained for the duration of your account and deleted within 30 days of deletion request. Purchase history is retained up to 7 years for tax compliance. Screenshots, audio recordings, and transcripts may be retained for quality assurance and training purposes and are deleted when no longer needed for these purposes.

10.Data Security

We implement encryption in transit (TLS 1.2+), encryption at rest (macOS Keychain AES-256), transient processing of sensitive data, secure authentication via Firebase, and API security with rate limiting and input validation.

11.Your Rights and Choices

You have the right to access, correct, delete, and port your personal information. To exercise these rights, contact us at support@topcoder.app. We will respond within 30 days.

12.California Residents: CCPA/CPRA Rights

We do not sell or share your personal information for cross-context behavioral advertising. California residents have rights to know, delete, correct, and opt-out under the CCPA/CPRA.

13.European and International Users: GDPR-Aligned Protections

We extend GDPR-aligned data protection rights to all users. We adhere to principles of lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, and integrity.

14.International Data Transfers

Our Service is operated from the United States. Data may be transferred to the US and other jurisdictions where our service providers operate. We implement appropriate safeguards including standard contractual clauses.

15.Children's Privacy

The Service is not intended for individuals under 18. We do not knowingly collect personal information from children.

16.Cookie Policy

Our Website may use essential and analytics cookies. The macOS desktop application does not use cookies.

17.Third-Party Links

The Service may contain links to third-party websites. This Privacy Policy does not apply to third-party services.

18.Data Breach Notification

In the event of a data breach, we will notify affected users without undue delay and within 72 hours where feasible.

19.Changes to This Privacy Policy

We may update this Privacy Policy from time to time. For material changes, we will provide prominent notice at least 14 days before changes take effect.

20.Contact Information