← Back to Highpoints

Privacy Policy

Last updated: 3 July 2026 · highpoints.org

This policy describes how Highpoints (“we”, “us”) handles information when you use highpoints.org and related services.

Who we are

Highpoints is operated at highpoints.org. For privacy questions contact kier@highpoints.org.

What we collect

How we use data

Legal basis (EEA/UK)

Where GDPR applies, we rely on: contract (providing the service you signed up for), legitimate interests (security, analytics, abuse prevention), and legal obligation (tax/accounting where required).

Sharing

We do not sell your personal data. We share data only with service providers needed to run Highpoints (hosting, payments, analytics) under their own privacy terms, or when required by law.

Retention

Account data is kept while your account exists. Payment records are kept as long as needed for tax and dispute purposes. Session tokens expire automatically. You may ask us to delete your account by email.

Security

Passwords are stored hashed. Map data files require a valid logged-in session with access. No method of transmission over the internet is 100% secure.

Your rights

Depending on where you live, you may have rights to access, correct, delete, or restrict use of your data, or to object to certain processing. Contact kier@highpoints.org. You may also lodge a complaint with your local data protection authority.

Children

Highpoints is not directed at children under 16. We do not knowingly collect data from children.

Changes

We may update this policy. The “Last updated” date at the top will change when we do. Continued use after changes means you accept the updated policy.

Contact

kier@highpoints.org