Privacy Policy — RayZense

Legal

Privacy Policy

Effective date: April 2, 2026  ·  Terms of Service

RayZense ("we," "us," or "our") operates the RayZense website at rayzense.com and the RayZense desktop application (collectively, the "Service"). This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information.

By using the Service, you agree to the collection and use of information as described here. If you do not agree, please do not use the Service.

01

Information We Collect

Information you provide directly

  • Waitlist registration: email address, preferred game (CS2, VALORANT, or both), and optional region.
  • Account registration: email address, username, and password (stored as a cryptographic hash).
  • Communications: any messages or feedback you send us.

Information collected automatically by the desktop application

RayZense processes aim and input data entirely on your device. Specifically, the application reads:

  • OS-level mouse input events (position, movement delta, click timing).
  • Screen capture frames — processed locally to estimate crosshair placement relative to on-screen targets.
  • Session metadata: game title, map (if detectable), session start/end timestamps, and aggregate aim metrics (e.g., mean flick overshoot, time-to-first-shot).

On-device processing: Raw pixel data and raw input streams are never transmitted to our servers. Only derived, aggregated metrics are synced for your personal dashboard.

We do not read game memory, inject code into game processes, or create in-game overlays. Our capture method is limited to OS-level APIs.

Technical information

  • IP address, browser type, and operating system version (collected in server logs).
  • Pages visited and time spent on the website (via first-party analytics only; no third-party tracking scripts by default).

02

Riot Games & Player Data (Opt-In)

Opt-in required. RayZense uses the Riot Games API solely to enrich your own account dashboard. We will never display, share, or make searchable another player's Riot account data without that player's explicit, prior consent.

To enable Riot Games features (VALORANT match history, rank, etc.) you must:

  1. Explicitly sign in to RayZense using Riot Sign-On (RSO) — "Sign in with Riot."
  2. Grant permission on the Riot OAuth consent screen before any data is retrieved.

If you have not completed this opt-in flow, your Riot account information will not be retrieved, stored, or displayed — to you or to anyone else.

What Riot data we access (with your consent)

  • Game name and tag line (display identifier).
  • Rank and competitive tier.
  • Recent match history and aggregate performance stats.

What we do not access

  • Payment information, purchase history, or real-money transactions.
  • Private messages or friend lists.
  • Account credentials or passwords.

Riot Games data is used only to populate your own RayZense dashboard. It is never sold, shared with third parties, or used to build profiles on players who have not opted in.

RayZense is not endorsed or sponsored by Riot Games. Riot Games, VALORANT, and Legends of Runeterra are trademarks or registered trademarks of Riot Games, Inc.

03

How We Use Your Data

  • To provide the Service: deliver your aim metrics dashboard, sensitivity recommendations, and personalised drill suggestions.
  • Waitlist communications: notify you when early-access invitations are available.
  • Product updates: occasional emails about new features or important changes. You can unsubscribe at any time.
  • Security and fraud prevention: detect abuse and protect the integrity of the Service.
  • Aggregate research: anonymised, non-identifiable aggregate statistics may be used to improve our aim analysis models. Individual data is never used outside your account.

We do not use your data for advertising, and we do not sell your data.

04

Data Sharing

We do not sell, rent, or trade your personal information. We may share data only in these limited circumstances:

  • Service providers: trusted sub-processors (e.g., hosting, transactional email) who process data only on our behalf under a data processing agreement.
  • Legal obligations: if required by applicable law, court order, or valid government request.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, with notice provided to you.
  • Consent: any other sharing only with your explicit prior consent.

Player-specific Riot Games data is never made visible to other users unless that player has independently completed the RSO opt-in process.

05

Data Retention

  • Waitlist signups: retained until you unsubscribe or request deletion, or until the waitlist closes.
  • Account data & aim session metrics: retained for the lifetime of your account. You may delete your account and all associated data at any time from account settings.
  • Riot API tokens: OAuth access tokens are short-lived (per Riot's token expiry) and are not stored beyond the active session.
  • Server logs: retained for up to 90 days for security and debugging purposes.

06

Security

We implement industry-standard safeguards including HTTPS/TLS in transit, bcrypt password hashing, and access controls on production systems. No method of transmission or storage is 100% secure; however, we take reasonable steps to protect your information and will notify affected users of any breach as required by applicable law.

07

Cookies

We use a minimal set of cookies:

  • Session cookie: a secure, HttpOnly cookie that keeps you logged in. Expires when you sign out or after 30 days of inactivity.
  • CSRF token: a security token included in all state-changing requests to prevent cross-site request forgery.

We do not use third-party advertising cookies or tracking pixels. If we ever introduce optional analytics cookies, you will be given a clear choice before they are set.

08

Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: request a copy of the personal data we hold about you.
  • Correction: ask us to correct inaccurate or incomplete data.
  • Deletion: request deletion of your data ("right to be forgotten").
  • Portability: receive your data in a structured, machine-readable format.
  • Opt-out: unsubscribe from marketing emails using the link in any email, or by contacting us.
  • Revoke Riot consent: disconnect your Riot account from RayZense at any time from account settings. We will delete all Riot-sourced data within 30 days.

To exercise any of these rights, email us at privacy@rayzense.com. We will respond within 30 days (or sooner, as required by law).

09

Children's Privacy

RayZense is not directed at children under 13 years of age (or under 16 where required by local law). We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us and we will delete it promptly.

10

Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be announced by email (to registered users) and by posting a notice on our website at least 14 days before the change takes effect. The "Effective date" at the top of this page will always reflect the most recent revision.

11

Contact Us

If you have questions or concerns about this Privacy Policy, please contact: