Last updated: March 14, 2026
This Privacy Policy explains what information ChessLoft collects, how it is used, and your rights regarding that information. By using ChessLoft you agree to the practices described here.
Authentication is handled by Clerk. When you sign in, ChessLoft receives your user ID and, if provided, your name and email address from Clerk. We store your user ID to associate your data with your account.
If you connect a Chess.com account, we store your Chess.com username and the timestamp of your last game import. If you connect a Lichess account, we store your Lichess username and an OAuth access token (used solely to fetch your games via the Lichess API).
When you sync your games, ChessLoft fetches PGN game records from Chess.com or Lichess and stores them in your account. We analyze these games to compute opening statistics and suggest repertoires. This data is linked to your account and is not shared with other users.
Repertoires you create—including moves, annotations, and settings—are stored and associated with your account. Repertoires you mark as public are visible to all ChessLoft users.
We may collect technical information such as browser type, pages visited, and error logs to diagnose issues and improve the service. This data is not sold or used for advertising.
We do not sell your personal information. We do not use your data to serve targeted advertisements.
Sign-in is handled by Clerk. Clerk may collect information as described in their Privacy Policy.
Your data is stored and processed using Convex, a serverless backend platform. Data is subject to Convex's data handling practices.
When you connect these platforms, ChessLoft fetches game data on your behalf using their public APIs. We access only data you have authorized. Your credentials for these platforms are never stored beyond what is required (Lichess OAuth token; Chess.com requires no credentials).
Your data is retained as long as your account is active. You can disconnect chess platform integrations at any time from your account settings, which removes stored usernames and access tokens. To request deletion of your account and associated data, contact us.
We use industry-standard practices to protect your data, including encrypted connections (HTTPS) and secure storage. No system is perfectly secure; we cannot guarantee absolute security but we take reasonable steps to protect your information.
ChessLoft is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us information, please contact us and we will delete it.
We may update this Privacy Policy from time to time. Continued use of ChessLoft after changes are posted constitutes your acceptance of the updated policy.