Privacy Policy

Instalock is built to collect as little data about you as possible. This page explains exactly what is collected, why, and how long it is kept.

What Instalock Collects

• Riot account identifiers. Your PUUID, game name, tag line, and region — the minimum required to display your own stats and identify players in your matches.
• Session tokens. A short-lived token from Riot's authentication server that lets Instalock read your own match and store data. Expires automatically and is discarded when you log out.
• Cached stats. Your recent match history, rank, and store data are cached server-side so the dashboard loads fast. This cache clears on its own.
• Basic server logs. Standard HTTP access logs (IP, user agent, timestamp) used for rate limiting and debugging. Retained for 30 days.

What Instalock Does Not Collect

• Your Riot account password. Instalock never sees it because Riot Mobile QR authentication never exposes it.
• Your email address.
• Payment information. There is nothing to pay for.
• Device fingerprints or cross-site tracking cookies.
• Personal data about players in your matches beyond what your Valorant client already receives.

Cookies

Instalock uses a single HTTP-only session cookie to keep you signed in. No third-party tracking cookies. No analytics cookies unless you explicitly opt in on a future setting.

Third Parties

Instalock communicates with Riot Games' official authentication and game data APIs. That is the only third party involved in running the core product.

Your Rights

You can sign out at any time, which invalidates your session immediately. If you want your cached stats deleted from Instalock's servers, send a message on Discord or X — the data will be cleared.

Changes

If this policy changes materially, the "Last updated" date at the top will change and a notice will appear on the homepage.

Contact

Reach out on the Instalock Discord for any privacy question.