Privacy Policy
Effective date: 19 May 2026
Garmin Badge Database ("we", "us", or "our") operates garminbadges.com. This Privacy Policy explains what information we collect, how we use it, and your rights in relation to it.
1. Information we collect
Account information
When you create an account we collect:
Email address — used to identify your account and send transactional emails (welcome, password reset, email verification).
Name — used as your display name until you set a username.
Profile picture — if you sign in with Google we may receive your Google profile picture. You can also upload your own avatar.
Badge and challenge data
When you sync using the Chrome extension or Python script, we receive badge and challenge data from your Garmin Connect account. This includes earned badge records, challenge progress, and associated dates. We store this data to power your public profile, the leaderboard, and your personal challenge tracking.
Usage data
We do not use analytics services or track individual page views. Standard web server logs (IP address, browser, timestamps) may be retained for up to 30 days for security and debugging purposes.
2. How we use your information
To create and manage your account.
To display your public profile and badge statistics.
To power the leaderboard and community features.
To send transactional emails (welcome, password reset, email verification). We do not send marketing emails.
To provide calendar subscription feeds for your badges and challenges.
3. Public information
Your username, profile picture, earned badge list (including repeat counts), and challenge progress are visible to anyone who visits your profile page. You can hide individual badges from your public profile via the Dashboard. You can also make your username non-identifiable by setting a pseudonymous username.
4. Third-party services
Google Sign-In
If you choose to sign in with Google, we receive your name, email address, and profile picture from Google. We do not receive access to your Google account beyond what is required for authentication. Google's privacy policy is available at policies.google.com/privacy.
Garmin Connect
The sync tool fetches data from Garmin Connect using your existing browser session. We do not store your Garmin credentials. Garmin's privacy policy is available at garmin.com.
5. Data storage and security
Your data is stored on servers in the European Union. We use HTTPS for all data in transit. Passwords are hashed using bcrypt and are never stored in plain text. API keys are long random tokens — treat them like a password and regenerate them from the Dashboard if you believe one has been compromised.
6. Your rights
Access — you can view all data associated with your account via your profile and Dashboard.
Correction — you can update your username, name, email, and profile picture at any time.
Deletion — you can permanently delete your account and all associated data from the Dashboard. Deletion is immediate and irreversible.
Portability — your badge data originates from Garmin Connect and can be re-synced at any time.
If you are located in the European Economic Area, you have additional rights under the GDPR including the right to lodge a complaint with a supervisory authority.
7. Cookies and local storage
We do not use advertising or tracking cookies. We store your authentication token in your browser's local storage so you stay logged in between visits. This token is cleared when you sign out.
8. Children's privacy
Garmin Badge Database is not directed at children under 13. We do not knowingly collect personal information from children.
9. Changes to this policy
We may update this Privacy Policy from time to time. We will update the effective date at the top of this page when we do. Continued use of the service after changes constitutes acceptance of the updated policy.
10. Contact
If you have questions about this Privacy Policy or your data, please use the contact form or email us at info@garminbadges.com.