Back to Documentation
Legal Document
Privacy Policy
How RoShield collects, uses, and protects your personal data.
Last updated: March 16, 2026
01 Introduction
This Privacy Policy applies to RoShield ("we," "us," or "our"), a software project developed and maintained by Oğuz Emre Yılmaz, an individual developer. It explains how we handle your personal data.
This policy should be read alongside our Terms of Service, which together form the complete agreement governing your use of our services. Those documents additionally cover user obligations, IP rights, limitation of liability, dispute resolution, and service modifications.
02 Information We Collect
RoShield acts as the data controller for all personal information collected through our services.
Technical & Security Metadata
Automatically collected when you sign up, sign in, or interact with our services:
- Network information: Connection-related data including your IP address and inferred country/region.
- Device & browser: General information about the browser, operating system, and device type you use.
- Session data: Encrypted tokens and security signals used to protect your account.
- Activity logs: Records of significant actions taken on the platform for security and auditing purposes.
03 Data Security & Encryption
- Password protection: All passwords are securely hashed using a strong one-way algorithm and are never stored in plain text.
- Encryption: Sensitive data is protected using industry-standard encryption, both in transit and at rest.
- Access controls: Strict access policies prevent unauthorized access to internal systems.
- Regular audits: Security systems are periodically reviewed and updated.
04 Legal Basis for Processing
- Contractual necessity: Processing is required to deliver the services you've agreed to use.
- Legitimate interests: We log activity to maintain platform security, prevent fraud, and improve our services.
- Legal compliance: Certain records must be retained to satisfy applicable laws and regulations.
- Consent: By using our services, you explicitly consent to the data collection practices described in this policy.
05 Activity Logging & Data Retention
All actions on the platform are automatically logged for security, troubleshooting, and service improvement. No separate consent is required as logging is essential to safe operation.
Account data
Kept while your account is active. Deletion requests are processed within 30 days.
Security & activity logs
Records of platform activity retained for security and auditing purposes.
Legal obligations
Data tied to disputes, investigations, or regulatory requirements.
06 How We Use Your Information
- Service provision: To operate the platform and deliver its features.
- Security: To protect groups from administrative abuse and safeguard accounts.
- Support: To respond to inquiries and resolve technical issues.
- Analysis: To understand usage patterns and improve the service.
- Payments: To process and manage subscription transactions.
07 Sharing of Information
RoShield does not sell or rent personal data to third parties. Data may be shared only in the following limited circumstances:
- Legal obligations: When required by applicable law or a valid legal request.
- Service providers: Third-party providers who assist in operating our services and are contractually bound to protect your data. This includes:
- Hostinger: Used as our web hosting provider.
- Rabisu: Used as our VPS/VDS provider.
- LemonSqueezy: Used as our payment provider. In certain cases, user email addresses are shared with LemonSqueezy for billing, subscription management, and transaction purposes.
- Cloudinary: Used solely to store and serve user-uploaded image files (profile photos and banners). No personally identifiable information beyond the image files themselves is shared.
- FastCron: Used to schedule and execute automated background tasks. In the course of operating these tasks, FastCron may have access to account-related data such as usernames, email addresses, and user IDs, among other information necessary for task execution.
- OAuth integrations: When you use RoShield OAuth to access a third-party service, information is shared only with your explicit authorization and strictly within the permissions requested by that service.
08 Your Rights
You have the right to access your personal data and request confirmation of whether and how we process it. You also have the right to deletion — requesting that your data be deleted or anonymized, subject to legal retention requirements. To exercise either right, contact us using the details in Section 11.
09 Changes to This Policy
We may update this Privacy Policy at any time. When changes are made, the "Last updated" date above will be revised. Your continued use of our services constitutes acceptance of the revised policy. We are not obligated to provide advance notice of changes, so we encourage you to review this page periodically.
10 Jurisdiction
This Privacy Policy shall be governed by applicable laws and regulations.
11 Contact
For questions or requests regarding this Privacy Policy: