1. Overview
This Privacy Policy explains how RoAuth ("we," "us") collects, uses, stores, and shares information when you use our website, dashboard, authentication API, and related services (the "Service"). By using the Service, you acknowledge this Policy.
2. Information we collect
Account & dashboard
- Email address and authentication credentials (stored hashed)
- Subscription status, billing references, and plan metadata
- Project settings, Discord channel IDs, and admin configuration
Script authentication & executions
- License keys (stored and displayed in masked form where applicable)
- Hardware identifiers (HWID) submitted by loaders for key binding
- IP address, country (e.g. from CDN headers), executor label, and timestamps
- Discord user IDs linked to keys, when provided
- Script bodies and metadata you upload; obfuscated copies served to clients
Technical & usage
- Browser local storage (e.g. session preferences, legal acceptance, selected project)
- Server logs (requests, errors, redacted admin paths)
- Cookies used for dashboard session authentication
3. How we use information
- Provide and secure script authentication, loaders, and the dashboard
- Enforce HWID locks, bans, subscriptions, and rate limits
- Send execution alerts to Discord channels you configure
- Operate live execution feeds and operational analytics in your dashboard
- Process payments and subscription extensions
- Prevent abuse, debug issues, and improve reliability
- Comply with legal obligations
5. Retention
We retain account and project data while your account is active and as needed for billing, security, and legal compliance. Execution logs may be pruned per project or system retention settings. You may request deletion of your account subject to legal and operational requirements.
6. Security
We use industry-standard measures including TLS in transit, access controls, hashed passwords, and signed authentication flows. No method of transmission or storage is 100% secure; you are responsible for safeguarding your admin tokens, API keys, and loader secrets.
7. Your choices
- Update account and project settings in the dashboard
- Clear browser local storage (may reset preferences and require re-acceptance of legal terms)
- Contact us to access, correct, or delete account data where applicable
8. Children
The Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe we have, contact us so we can delete it.
9. International users
If you access the Service from outside your home country, your information may be processed in jurisdictions where we or our providers operate.
10. Changes
We may update this Policy. The "Last updated" date will change, and material updates may require renewed acceptance in the dashboard.
11. Contact
Privacy questions: reach us via the contact options on roauth.co.