Datenschutzerklärung
1. Introduction
- This Privacy Policy explains how we collect, use, store, and protect your data when you use our website and services. We are committed to protecting your privacy and handling your data in accordance with the General Data Protection Regulation (GDPR) and applicable EU laws.
- By using our website, you agree to the practices described in this Privacy Policy.
2. Data We Collect
- We only collect the minimum amount of data necessary to operate our services.
- The data we may collect includes:
- Discord account information provided via OAuth authentication:
- Discord User ID
- Username
- Avatar
- Product ownership records
- Reviews and ratings (optional and publicly visible)
- Administrative and moderation logs (for audit and enforcement purposes)
3. Data We Do NOT Collect
- We explicitly do not collect or store the following data:
- Email addresses
- Passwords (authentication is handled exclusively via Discord OAuth)
- Payment information (payments are not processed or stored in our system)
- IP addresses (not explicitly logged)
- Tracking cookies or analytics data
- Personal identifiable information outside of Discord-provided data
4. How We Use Your Data
- We use the collected data solely for legitimate operational purposes, including:
- Providing access to purchased products
- Managing product ownership and licenses
- Roblox game whitelisting (where applicable)
- Displaying product reviews and ratings
- Moderation, blacklist enforcement, and rule compliance
- Maintaining an internal administrative audit trail
- We do not sell, rent, or use your data for advertising or marketing purposes.
5. Third-Party Services
- We rely on the following trusted third parties to operate our services:
- Discord – User authentication via OAuth
- Cloudflare – Hosting, security, and proxy services
- Bloxlink (optional) – Roblox to Discord account linking
- These third parties process data in accordance with their own privacy policies and applicable data protection laws.
6. Data Retention
- We retain data only for as long as necessary:
- Product ownership records: Permanent, unless revoked by an administrator
- Reviews: Permanent, until deleted by the user or an administrator
- Sessions: Stored only until logout
- Download links: Valid for 5 minutes
- Blacklist records: Permanent, unless manually removed
- Logs: Retention depends on server and PM2 configuration
7. Your Rights Under GDPR
- As a user located in the European Union, you have the right to:
- Request access to your personal data (e.g. which products you own)
- Request deletion of your reviews
- Request deletion of your account (handled manually by an administrator)
- All requests must be submitted via our official Discord server.
8. Data Security
- We take reasonable technical and organizational measures to protect your data, including:
- Secure session cookies (httpOnly and secure in production)
- Authentication handled via Discord OAuth (no password storage)
- Locally managed database under our responsibility
- File uploads stored securely in a dedicated /uploads directory
- Regular backups of critical data
- Despite these measures, no system can be guaranteed to be 100% secure.
9. Children’s Privacy
- We do not knowingly collect personal data from users under the age of 13.
- Roblox’s Terms of Service require users to be 13 years or older, or to have parental consent. If you believe that a minor has provided us with data, please contact us immediately via Discord.
10. Changes to This Privacy Policy
- We reserve the right to update or modify this Privacy Policy at any time. Any changes will be published on this page. Continued use of our website after changes have been made constitutes acceptance of the updated policy.
11. Contact Information
- For any questions, requests, or concerns regarding this Privacy Policy or your data:
- Discord Server: https://discord.gg/QGjdcCr2XW
All communication regarding privacy matters is handled exclusively via Discord.