Continental ID

Privacy Policy

This dashboard is built to manage your Continental ID account, not to profile you for advertising. We collect the account, security, and device information needed to sign you in, protect your account, and let you control what is visible to other people.

Return to Dashboard Terms of Service Contact Support
Last updated April 4, 2026
What this covers The Continental ID dashboard, account management flows, sign-in sessions, and related profile settings.
Core approach Short-lived access tokens stay in memory, refresh sessions use secure cookies, and local browser storage is limited to interface preferences.
Authentication first

We use your email, username, password, passkeys, session data, and security history to verify access and detect suspicious activity.

Visibility controls

You decide whether your profile is public, whether it is searchable, and which profile fields can appear publicly.

User controls

You can review active sessions, export your account data, update preferences, and permanently delete your account from the dashboard.

Collection

Information we collect

  • Account identity details such as email address, username, display name, password hash, and verification state.
  • Profile information you choose to provide, including avatar, headline, role, organization, bio, location, website, timezone, language, and linked account references.
  • Preference settings for privacy, notifications, appearance, accessibility, and public profile visibility.
  • Security and device information such as IP address, browser or device user-agent, recent login history, known devices, active sessions, audit events, MFA enrollment details, backup code hashes, and registered passkeys.
  • OAuth and linked identity details when you connect providers such as GitHub, Google, Discord, or Microsoft.
Important Access tokens are designed to stay in browser memory only. They are not intentionally persisted to local storage.

Use

How we use your information

  • To create and maintain your account, sign you in, refresh authenticated sessions, and let you manage your profile.
  • To secure the service, including rate-limiting sign-in attempts, monitoring account activity, detecting unusual sessions, and supporting MFA and passkeys.
  • To send operational emails you request or that are necessary for account security, such as verification messages, password resets, and security alerts.
  • To apply your visibility and appearance preferences on this device and across authenticated dashboard experiences.
  • To provide account tools such as active-session review, account export, linked-provider management, and account deletion.

Browser Storage

Cookies and local storage

  • Secure authentication cookies are used to maintain refresh sessions and keep you signed in between page loads.
  • Limited local browser storage may be used for interface settings such as theme, density, reduced-motion preferences, active tab state, and cookie notice acknowledgement.
  • Browser storage is used to improve the dashboard experience, not to build advertising profiles across unrelated sites.
Your options Signing out clears active session state for this browser. You can also remove cookies and site data from your browser settings at any time.

Sharing

Sharing and third parties

  • We may use infrastructure and service providers that help operate the product, such as hosting, authentication support, and email delivery.
  • If you connect an external identity provider, we exchange the minimum information needed to complete sign-in or account linking for that provider.
  • Profile information that is marked public may be visible to other people according to your visibility settings.
  • We may disclose information if reasonably necessary to investigate abuse, protect the service, or comply with legal obligations.

Protection

Security and retention

  • The product is designed around hardened session handling, refresh-token invalidation, sign-in throttling, and device or session tracking for account protection.
  • Sensitive security material such as passwords is stored as hashes, and backup codes are stored in hardened form rather than plain text.
  • Security histories such as recent logins, audit events, known devices, and active sessions are capped so they do not grow without limit.
  • Information is retained for as long as it is needed to operate the account, enforce security controls, or satisfy legal and operational requirements.

Controls

Your controls and choices

  • Update your profile information and control whether your profile is public or searchable.
  • Choose which profile fields can appear publicly, including whether linked accounts or personal details are exposed.
  • Review and revoke active sessions, rotate credentials, enable or disable MFA, and manage passkeys.
  • Export your account data from the dashboard when you want a copy of the information associated with your account.
  • Permanently delete your account from the dashboard if you no longer want to use the service.

Updates

Policy changes

  • We may update this policy when the product, legal requirements, or security practices change.
  • When we make material changes, we may update the effective date, update the hosted policy page, and take additional steps that are appropriate for the change.
  • Your continued use of the service after the updated policy becomes effective means the revised policy applies going forward.

Contact

Questions about privacy

If you have a question about this policy, account data, or a privacy-related request, contact continental.auth@gmail.com.

Terms governing use of the service are available on the Terms of Service page.