Privacy Policy

The Crash Out Challenge ("we", "us") operates thecrashoutchallenge.com. We are the data controller for personal information processed through the Service.

• Account data: name, email, password hash, role.
• Team & participation data: team name, business affiliation, challenge submissions (videos, photos), votes.
• Sponsor data: company name, contact info, billing details, deliverable history.
• Lead data: email and contact info submitted via inquiry, contact, and registration forms.
• Usage data: log files, IP address, browser type, pages visited.
• Cookies: see our Cookie Notice.

To operate the Service, process sponsorships and payments, deliver participant content, send transactional and account emails, prevent fraud, and improve the platform. We do not sell your personal data.

We rely on: contract performance (running your account / sponsorship), legitimate interests (security, product improvement), consent (marketing emails, optional cookies), and legal obligation (tax, accounting).

We share data with vetted processors strictly to operate the Service: hosting and database (Lovable Cloud), email delivery, payment processing (PayPal), and analytics. All processors are bound by contract and process data on our instructions.

Some processors are located outside the EEA/UK. Where required, transfers are protected by Standard Contractual Clauses or equivalent safeguards.

We retain personal data only as long as needed for the purposes described, or as required by law (e.g., financial records for 7 years). Account data is deleted within 30 days of account closure unless retention is legally required.

If you are in the EEA, UK, or California, you have rights to access, correct, delete, restrict, port, and object to processing of your personal data, and to withdraw consent. Exercise any right by emailing privacy@thecrashoutchallenge.com. You may also lodge a complaint with your local supervisory authority.

We use encryption in transit (TLS), encryption at rest, role-based access control, and row-level security on our database. No system is 100% secure; we will notify affected users and authorities of material breaches as required by law.

The Service is not directed to children under 18 and we do not knowingly collect data from minors.

We will post updates to this policy here and notify you of material changes by email or in-product notice.

Privacy questions: privacy@thecrashoutchallenge.com.