What we collect
Account data: email address, display name, home spot, and the disciplines you ride. You provide all of this when you sign up.
Session logs: the wind, gear, and notes you record in your Rider Log. This is yours — you can export or delete it at any time.
Usage data: which pages load, which features you use. We use this to improve KiteKin, never to sell your behaviour.
What we never do
We never sell personal data to third parties. Full stop.
We never embed third-party trackers (Google Analytics, Facebook Pixel, etc.). Our analytics are first-party and aggregate.
We never share your session log with schools, brands, or other riders without your explicit opt-in.
How we store data
Data is hosted in EU data centres (Frankfurt). Encryption at rest and in transit (TLS 1.3).
Magic-link tokens expire after 15 minutes. Sessions expire after 30 days of inactivity.
Backups are encrypted and rotated weekly. Restore points retained for 30 days.
Your rights
GDPR applies to all KiteKin users worldwide, not just EU residents. You have the right to access, export, correct, and delete your data.
Email [email protected] to exercise any of these rights. We respond within 14 days.
You can also delete your account directly from the Profile settings — that wipes your data within 30 days.
Questions? Email us.