Privacy Policy

When you create an account, we collect your name, email address, and a securely hashed version of your password. If you sign in with Google, we receive your Google account name, email, and profile picture.

We also store your TOTP (time-based one-time password) secret in encrypted form to enable two-factor authentication.

When you take a test, we record your answers, time spent per question, and your final score.

• To authenticate you and secure your account with two-factor authentication.
• To save your test attempts and display your performance history.
• To improve our question bank and platform features.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

We use HttpOnly session cookies to keep you logged in. These cookies cannot be accessed by JavaScript and are not used for tracking. See our Cookie Policy for details.

Passwords are hashed using bcrypt. TOTP secrets are stored encrypted. We use HTTPS for all communications. JWT access tokens expire after 15 minutes.

We retain your account data for as long as your account is active. You may request deletion of your account and all associated data by contacting us at support@repeatermock.com.

Repeater Mock is not directed at children under 13. If we learn we have collected data from a child under 13, we will delete it immediately.

We may update this policy occasionally. We will post the updated policy on this page with a new effective date.

Questions about this policy? Email us at privacy@repeatermock.com.