Skip to main content

Privacy Policy

Last updated: May 20, 2026

This Privacy Policy describes how SDS Nexus, LLC dba PowerIRL ("we", "us", or "our") collects, uses, and shares personal information through our websites located at powerirl.co, pwrirl.com, and dashboard.pwrirl.com, our mobile applications, and the streaming infrastructure, tools, and services we provide (collectively, the "Service"). Any capitalized terms not defined in this Privacy Policy have the meanings assigned to them in our Terms of Service.

Your Privacy

At PowerIRL, we are committed to protecting your privacy in accordance with all applicable laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the California Privacy Rights Act (CPRA). We are committed to data minimization and only collect what is reasonably necessary to operate, secure, and improve our streaming infrastructure services. This Privacy Policy outlines what we collect, how we use it, how long we keep it, who we share it with, and what choices you have.

Definitions

  • Personal Data: Information about a living individual that can identify them, either directly or in combination with other information.
  • Usage Data: Automatically collected data generated through the use of the Service or its infrastructure, such as visit duration, browser type, or session timestamps.
  • Streaming Data: Data generated through your use of our streaming infrastructure, including stream keys, connection parameters, ingest endpoints, server assignments, and streaming session metadata.
  • Stream Session Telemetry: Diagnostic measurements collected during a stream, including bitrate samples, codec, resolution, framerate, reconnect counts, FFmpeg restart counts, and error log excerpts.
  • Network Identifier: Network-level identifiers such as IP address, Internet Service Provider (ISP), Autonomous System Number (ASN), and mobile carrier when derivable from connection information.
  • Approximate Location: Country, region, and approximate city derived from a Network Identifier. We do not collect precise GPS coordinates from streaming traffic.
  • Cookies: Small files stored on your device that help us authenticate sessions, remember preferences, and analyze traffic.
  • Data Controller: The entity that determines the purpose and means of processing personal data. PowerIRL acts as the Data Controller for your data.
  • Data Processor (Sub-Processor): Any third-party service we engage to process data on our behalf (e.g., payment processors, hosting providers, analytics vendors).
  • Data Subject: The individual whose Personal Data is being processed.
  • User: The person using our Service, equivalent to the Data Subject.

Information We Collect

We collect several categories of information to deliver, operate, and improve the Service.

Account & Subscription Data

When you register for an account or subscribe to our services, we collect:

  • Name
  • Email address
  • Mailing address (when required for billing)
  • State, Province, ZIP/Postal code, City
  • Payment information (processed and stored by Stripe; we do not store full card numbers)
  • Account credentials (passwords are stored only as hashes)
  • OAuth identifiers and access tokens you authorize (e.g., Twitch, YouTube, Kick, Discord, Google) for the scopes you grant
  • Consent records and version tracking

Streaming Configuration Data

When you configure our streaming services, we collect and store:

  • SRT, SRTLA, RTMP, and RTMPS stream keys and connection parameters
  • Destination platform information (e.g., Twitch, YouTube, Kick, Facebook) and RTMP endpoints you choose to forward to
  • Stream destination credentials, which are encrypted at rest
  • Ingest backend and region selection
  • Multistream and adaptive bitrate configuration you save with us
  • OBS/streaming software configuration stored within your dashboard profile

Stream Session Telemetry

For each streaming session, we capture diagnostic measurements to operate the Service, detect issues, and help support you. This includes:

  • Session start/stop timestamps and total duration
  • Stream protocol used (SRT, SRTLA, RTMP, RTMPS) and the ingest endpoint that received the publish
  • Bitrate samples, including minimum, maximum, average, and percentile statistics
  • Video codec, resolution, and framerate; audio codec, sample rate, and channel count
  • Reconnection counts, FFmpeg or relay restart counts, and end-of-stream reason
  • Error log excerpts from our streaming relay processes (e.g., FFmpeg stderr buffers)
  • Streaming client software identification and version, when reported by the client during connection (e.g., OBS Studio, Streamlabs, Larix, PowerIRL applications, custom encoders)
  • Per-destination forwarding statistics including bytes transmitted and forwarding errors
  • Cross-server pull and republish telemetry when your stream is relayed between PowerIRL backends

Network & Diagnostic Data

When you connect to our Service we automatically collect:

  • IP address used to connect to our services
  • Approximate geographic location derived from your IP (country, region, and approximate city)
  • Internet Service Provider, Autonomous System Number (ASN), and mobile carrier where derivable from your IP address. Some of this derivation may rely on third-party IP intelligence databases and may not be active for all sessions today
  • Browser type and version, operating system, and device type / device identifiers when available
  • Connection-type indicators (e.g., cellular versus broadband, when classifiable)
  • Crash reports, diagnostic logs, and error events generated by our services

GPU Compute & Cloud OBS Session Data

When you use our cloud OBS, GPU streaming pods, or dedicated server plans, we additionally collect:

  • Pod identifier, GPU type, host region, host city, and host country
  • Remote desktop session logs and connection metadata
  • Resource usage metrics (GPU utilization, memory, network bandwidth)
  • Audit logs of pod actions (deploy, terminate, restart, reassign) and the source initiating each action
  • Failure-reason and termination-source attribution for support and reliability investigations

Mobile Application Data

When you use a PowerIRL mobile application, we may collect (and the app will disclose on first launch and in app-store privacy disclosures):

  • App version, OS name and version, and device model or device family
  • Crash reports and performance diagnostics
  • Push notification tokens, if you opt in to notifications
  • Locale and language preferences
  • Additional device-derived identifiers as disclosed by the app at the time of collection

If a mobile app collects categories beyond those listed in this Privacy Policy, the app's in-product disclosure and app-store Privacy Nutrition Label or Data Safety section will describe them.

Website Usage Data

When you visit our website we collect:

  • Pages visited and time spent on each page
  • Referrer and entry/exit URLs
  • Click events and feature-interaction telemetry
  • Performance and error telemetry from the browser

Cookies & Tracking Technologies

We use cookies, beacons, tags, and scripts to support and improve our Service. You may configure your browser to refuse cookies, but this may limit your use of some features. We use the following categories of cookies:

  • Essential Cookies: Required for the Service to function (authentication, session management, security).
  • Preference Cookies: Used to remember your settings and preferences (e.g., theme, layout, consent state).
  • Analytics Cookies: Used to understand how visitors interact with our Service (e.g., Google Analytics). You may opt out of Google Analytics via Google's opt-out add-on.

What We Do NOT Collect Or Do

  • We do not record or retain copies of your live stream video or audio content. Stream content passes through our infrastructure but is not stored.
  • We do not sell your personal information to any third party.
  • We do not use your data to build advertising profiles or to target you with third-party advertising.
  • We do not share your stream telemetry with platform partners (e.g., Twitch, YouTube, Kick) beyond what is necessary to forward your live stream to those platforms at your direction.
  • We do not access the contents of your stream key or destination credentials except as required to deliver your stream and maintain the Service.
  • We do not collect precise GPS location from streaming traffic.

How We Use Your Data

We use your data for purposes including:

  • Provisioning and maintaining your streaming infrastructure
  • Routing, relaying, and forwarding your live stream to the destinations you configure
  • Processing subscription payments and managing billing
  • Operating and maintaining our Service, including capacity planning and reliability engineering
  • Detecting, investigating, and resolving technical issues
  • Detecting and preventing abuse, fraud, and violations of our Terms of Service or Acceptable Use Policy
  • Providing customer support, including the ability to look up historical sessions when you contact us
  • Improving Service performance and feature quality through aggregated analytics
  • Sending notifications about changes to your account or service
  • Providing updates, promotions, and offers, unless you opt out
  • Complying with legal obligations and responding to valid legal requests

Retention of Data

We retain different categories of data for different periods, reflecting the purpose of collection and applicable legal obligations. Our default retention schedule:

  • Account information (name, email, billing details): retained for the lifetime of your account, plus up to seven (7) years thereafter for tax, accounting, and legal-record purposes.
  • Stream Session Telemetry (bitrate, codec, reconnects, errors, per-destination stats): retained for up to ninety (90) days in identifiable form for troubleshooting and support, after which we aggregate or de-identify.
  • Raw IP addresses: retained for up to ninety (90) days in identifiable form. After 90 days, raw IPs are truncated, replaced with derived country/ISP fields, or deleted.
  • Network Identifiers and Approximate Location: retained for up to one (1) year in aggregated form for analytics; not retained in identifiable form beyond 90 days.
  • GPU pod and remote desktop session logs: retained for up to ninety (90) days.
  • Aggregate analytics (counts, distributions, rollups that do not identify any individual): retained indefinitely.
  • Consent records and version tracking: retained for as long as you have an active account, plus three (3) years for legal-record purposes.
  • Backup archives: data within encrypted backup archives may persist up to an additional ninety (90) days beyond deletion from the production database before backup rotation expires.

Upon account deletion, your Personal Data will be removed from active systems within thirty (30) days, except where retention is required by law or for the purposes listed above. We may retain data longer where required to comply with legal obligations, resolve disputes, or enforce our agreements.

Transfer of Data

PowerIRL is headquartered in the United States and uses data centers and infrastructure providers in multiple countries (including the United States, Canada, the United Kingdom, France, Germany, Singapore, and others). Your data may be transferred to and stored on servers outside of your jurisdiction, where privacy laws may differ.

Where required by law, we use appropriate safeguards for international transfers, including Standard Contractual Clauses with sub-processors located outside the EEA/UK. By submitting your information to the Service, you consent to this transfer.

Disclosure of Data

Sub-Processors and Service Providers

We share data with the Sub-Processors listed below. They are contractually bound to use your data only to deliver services to PowerIRL.

Business Transactions

If PowerIRL is involved in a merger, acquisition, asset sale, or financing, your data may be transferred. We will notify you before your data is subject to a new Privacy Policy.

Law Enforcement

We may disclose your data if required by law, subpoena, court order, or in response to other valid legal requests, including to protect the rights, property, or safety of PowerIRL, our users, or others.

Security of Data

We use commercially reasonable safeguards to protect your data, including:

  • TLS/SSL encryption for data in transit
  • Row-Level Security policies in our database to restrict data access
  • Encryption of sensitive credentials (e.g., destination stream credentials) at rest
  • Role-based access controls on infrastructure and administrative tools
  • Multi-factor authentication and least-privilege practices for staff
  • Regular monitoring, logging, and review of security-relevant events

No method of electronic transmission or storage is completely secure. While we strive to protect your information, we cannot guarantee absolute security.

Legal Basis for Processing Under GDPR

If you are located in the European Economic Area, United Kingdom, or another jurisdiction with similar laws, PowerIRL processes your data under the following legal bases:

  • Performance of a contract (delivering the streaming subscription you purchased)
  • Your consent (where required, for example for non-essential cookies or marketing)
  • Our legitimate interests in operating, securing, and improving the Service, where not overridden by your rights
  • Compliance with legal obligations
  • Performance of payment processing

Your Data Protection Rights (GDPR)

If you reside in the EEA, United Kingdom, or another jurisdiction that grants similar rights, you may request to:

  • Access the Personal Data we hold about you
  • Correct inaccurate data
  • Delete your data, subject to legal exceptions
  • Object to processing or request restriction of processing
  • Receive your data in a portable format
  • Withdraw consent at any time (without affecting prior lawful processing)
  • Lodge a complaint with your local Data Protection Authority

To exercise these rights, contact us via Discord or by writing to the contact address below. We may need to verify your identity before fulfilling a request and will respond within thirty (30) days.

California Privacy Rights (CCPA / CPRA)

If you are a California resident, you have the right to:

  • Request the categories and specific pieces of personal information collected
  • Request deletion of your personal information
  • Request correction of inaccurate personal information
  • Opt out of the "sale" or "sharing" of personal information
  • Limit the use of sensitive personal information
  • Be free from discrimination for exercising your rights

PowerIRL does not sell or share your personal information for cross-context behavioral advertising. Requests will be addressed within forty-five (45) days, extendable by an additional 45 days where reasonably necessary. To exercise these rights, contact us using the information below.

Sub-Processors

We engage the following Sub-Processors to operate the Service. Each has access only to the data necessary to perform their role and is contractually bound by confidentiality and data-protection obligations.

  • Stripe (United States): payment processing and billing. PCI-DSS compliant; full card details are stored by Stripe, not by PowerIRL.
  • Supabase (United States): database, authentication, file storage, and realtime services. Stores account, configuration, telemetry, and consent data.
  • Cloudflare (United States): DNS, content delivery, TLS, DDoS protection, and edge security. Processes connection metadata.
  • OVH Cloud (France / global): cloud server infrastructure for our ingest backends, PowerStream backends, and dashboard hosting (via Coolify on OVH).
  • Vultr (United States / global): proxy network infrastructure for SRT/SRTLA ingest proxies and RTMP/RTMPS PowerStream proxies.
  • OCTA Computer: peer-to-peer GPU marketplace used to host certain streaming pods. Pod host country and city may be visible based on availability.
  • RunPod (United States): GPU rental infrastructure used for certain plans.
  • Google Analytics (United States): aggregated website analytics. You may opt out using the Google Analytics Opt-out browser add-on.
  • Discord (United States): community and support server, and optional OAuth login. We receive only information you authorize.
  • Twitch / YouTube / Kick / Facebook / and similar platforms: when you forward a stream to one of these platforms, your stream content and the destination credentials you provide are transmitted to that platform under its own privacy policy and terms.
  • IP-intelligence providers: we may use IP-to-ASN/ISP/geolocation lookup providers (such as MaxMind) to derive Network Identifier and Approximate Location from your IP address. These lookups may be performed locally against an offline database where supported.
  • Transactional email providers: used to send account, billing, and service notifications.
  • Crash and error monitoring providers: used to collect diagnostic crash and error reports from our applications.

We update this list as our Sub-Processors change. If you require an up-to-date list at any time, please contact us using the information below.

Links to Other Sites

Our Service may contain links to third-party sites. We are not responsible for the content or privacy practices of those sites. Please review their privacy policies before using their services.

Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect information from minors. If you believe a child has provided us with data, please contact us and we will delete it promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date and, where appropriate, you will be notified via email or by prominent notice on our Service.

Please review this page periodically for updates. Changes are effective once posted.

Contact Us

If you have any questions about this Privacy Policy or wish to exercise any of the rights described above, you can contact us through our Discord server at discord.gg/KtfrPhdEvx or by writing to SDS Nexus, LLC dba PowerIRL, 30 N Gould St Ste R, Sheridan, WY 82801, USA.