Blundr

Privacy Policy

Last updated: May 25, 2026

Overview

Blundr (“Blundr”, “we”, “us”) is a chess training and social product available on the web at www.blundr.co and on iOS. This policy explains what personal information we collect, how we use it, who we share it with, and the choices you have. It applies to anyone who creates a Blundr account, plays games, or sends us a support request.

We try to collect as little as possible: just enough to run the features you sign up for. We never sell personal information.

Information we collect

The data we collect falls into a few specific categories:

  • Account information. Email address, a username you choose, and a hashed password. If you sign up for Pro on the web, you pass through Stripe Checkout; if you sign up from inside the iOS app, the purchase is handled by Apple as an In-App Purchase (see “Third-party services” below). In both cases we never see your card number or Apple Account credentials.
  • Profile content. If you opt into Date Mode, the optional photo(s) and short answers you add to your dating profile. You can delete these any time from your profile screen.
  • Game data. Every move, evaluation, drill attempt, tactic, AI coach question, and game review you generate while using Blundr. This is core to the product — we use it to train the AI coach's analysis on your weaknesses.
  • Communications. In-game and dating chat messages you send to other users (only after both sides explicitly accept chat), plus reports you submit about other users.
  • Technical data. Device type, operating system, crash logs, IP address, and a session token kept on your device so you stay signed in. We do not use third-party analytics or advertising trackers.

How we use information

  • To run your account and let you sign in across devices.
  • To deliver the features you asked for (AI coaching, post-game reviews, matchmaking, friends, Date Mode, chat, payments).
  • To moderate the platform — investigate reports, enforce account bans / chat mutes, and detect abuse.
  • To send transactional email (account verification, password reset, subscription receipts). We don't send marketing email.
  • To improve Blundr. Aggregate usage trends help us decide which features to invest in; individual game data stays linked to your account and is never shared.

Third-party services

We use a small number of vetted providers to run Blundr. We share only the data each one needs to do its job, and they are contractually required to protect it.

  • Stripe — handles card payments and subscription management for Blundr Pro purchased on the web. Their privacy policy: stripe.com/privacy.
  • Apple (App Store / StoreKit) — if you subscribe to Blundr Pro from inside the iOS app, payment is processed by Apple as an In-App Purchase. Apple shares with us only the anonymous receipt data needed to verify your purchase and unlock Pro on your account; we never receive your Apple Account credentials or your payment method. Apple's privacy policy: apple.com/legal/privacy.
  • RevenueCat — receives the App Store receipt for iOS Pro subscriptions on our behalf and forwards entitlement state (active / inactive, renewal / expiration date) to our servers, so we know whether your account should have Pro unlocked. We send RevenueCat your Blundr user ID and your App Store purchase receipt; we do not send your email address or any payment details. Their privacy policy: revenuecat.com/privacy.
  • Fly.io — hosts our API servers (no analytics, just request handling).
  • Vercel — hosts the web app static assets.
  • Neon — managed PostgreSQL database.
  • OpenAI / Anthropic — large-language-model providers that power the AI coach. Game positions and your in-context coach prompts are sent to them. We do not send your email, password, or payment data. Their data-processing terms prohibit training on our customers' content.

What we do NOT do

  • We do not sell your personal information.
  • We do not share your data with advertisers or data brokers.
  • We do not run third-party advertising trackers.
  • We do not access your device's contacts or location.

How we protect your data

All traffic to Blundr is encrypted in transit via TLS. Passwords are hashed with bcrypt; we never store them in clear text. The database is encrypted at rest by our managed Postgres provider. Access to production data is restricted to a small number of named operators with audit logs.

Your rights and choices

  • Access & export. Email support@blundr.co to request a copy of the data we hold about you.
  • Correction. You can edit your profile, photos, and dating answers from your account screen at any time.
  • Deletion. You can permanently delete your account from the web at Profile → Danger Zone → Delete account or in the iOS app at Profile → Danger Zone → Delete account. We immediately scrub your email, display name, profile picture, dating profile and photos, and password, and revoke every active session. Game records you played against other users are retained in anonymised form so opponents' chess histories aren't broken. We retain only what we're required to keep for legal or accounting reasons (e.g. payment receipts) and finalise removal within 30 days. If you'd rather not self-serve, you can also email support@blundr.co and we'll handle the deletion for you.
  • Region-specific rights. If you're in the EU / UK (GDPR) or California (CCPA), the rights above already cover access, deletion, correction, and the right to object. We treat every user the same regardless of region.

Children

Blundr is not directed at children under 13 (or under 16 in the EU / UK). We do not knowingly collect personal information from children. If you believe a child has signed up, contact us and we will close the account and delete the data.

Changes to this policy

When we make material changes we'll update the “Last updated” date at the top of this page and, where appropriate, notify you in-app or by email before the change takes effect.

Contact

Questions about this policy or your data? Email support@blundr.co.