Privacy Policy
Last Updated:
This policy complies with GDPR, CCPA, and international data protection regulations.
⚖️ This privacy policy is legally binding and forms part of our Terms of Service. By using our services, you acknowledge you have read and agree to this policy.
Legal Compliance Notice
This policy complies with international data protection laws
Data Controller Information
Krigsgaldr Project Private Server operates as a Data Controller for the purposes of GDPR and similar regulations. This service is provided as a fan project for educational and entertainment purposes.
Legal Basis for Processing (GDPR Art. 6):
- Performance of contract (account services)
- Legitimate interests (security, fraud prevention)
- Legal compliance
Data Protection Principles:
- Lawfulness, fairness, and transparency
- Purpose limitation
- Data minimization
Information We Collect & Legal Basis
| Data Type | Purpose | Legal Basis | Retention Period |
|---|---|---|---|
| Account Information (email, username) | Account creation, authentication, communication | Contract Performance | Until account deletion + 30 days |
| IP Address & Connection Logs | Security, fraud prevention, legal compliance | Legitimate Interest | 90 days |
| Gameplay Data | Service provision, bug fixing, balance | Contract Performance | Indefinite (anonymized after 2 years) |
| Support Communications | Customer service, issue resolution | Contract Performance | 2 years |
| Cookies & Technical Data | Website functionality, analytics | Consent/Legitimate Interest | As per cookie policy |
Data We Do NOT Collect (GDPR/CCPA Compliance):
GDPR Data Subject Rights (EU/EEA)
Under GDPR, EU/EEA residents have the following rights:
Right to Access (Art. 15)
Request a copy of your personal data we hold.
Right to Rectification (Art. 16)
Request correction of inaccurate data.
Right to Erasure (Art. 17)
Request deletion of your data ("Right to be Forgotten").
Right to Restrict Processing (Art. 18)
Request limitation of data processing under certain conditions.
GDPR Contact: EU residents may contact their local supervisory authority or our Data Protection Officer via support channels.
CCPA & International Rights
California Consumer Privacy Act (CCPA):
California residents have additional rights under CCPA:
- Right to know what personal information is collected
- Right to delete personal information
- Right to opt-out of sale of personal information
- Right to non-discrimination for exercising rights
International Data Transfers:
As a global service, data may be transferred internationally. We implement Standard Contractual Clauses (SCCs) and adequate safeguards for such transfers.
• Data may be processed in jurisdictions with different privacy laws
• We ensure equivalent protection through contractual measures
• By using our services, you consent to international data transfer
Data Sharing & Legal Disclosures
Third-Party Processors
We engage trusted service providers for:
- Hosting and infrastructure
- Payment processing (external)
- Security and fraud prevention
Legal Requirements
We may disclose data when required by law:
- Court orders or legal processes
- Government or law enforcement requests
- Protection of rights, property, or safety
Business Transfers
In case of merger, acquisition, or asset sale:
- User data may be transferred
- Users will be notified of any change
- New privacy policy will apply
No Sale of Personal Information
We do not sell, rent, or trade personal information to third parties for monetary or other valuable consideration, as defined by CCPA and similar regulations.
Security Measures & Data Protection
Technical & Organizational Measures:
SSL/TLS encryption for data in transit, AES-256 for data at rest
Role-based access, multi-factor authentication for staff
Compliance & Monitoring:
Quarterly security assessments and vulnerability scanning
72-hour breach notification as required by GDPR Article 33
Limitation of Liability - Aligned with TOS
As stated in our Terms of Service, we implement significant security measures but do not guarantee absolute security. In the event of unauthorized access despite our security measures, our liability is limited as per our TOS Section 6.
Cookies & Tracking Technologies
Cookie Consent (GDPR/CCPA Compliance):
We use cookies and similar technologies as described below. By using our website, you consent to cookies as per our cookie banner and privacy preferences center.
| Cookie Type | Purpose | Legal Basis | Duration |
|---|---|---|---|
| Essential Cookies | Session management, security | Legitimate Interest | Session |
| Preference Cookies | Remember settings, preferences | Consent/Legitimate Interest | 30 days |
| Analytics Cookies | Website improvement, usage statistics | Consent/Legitimate Interest | 90 days |
Cookie Management:
- Browser settings control
- Privacy preference center
- Opt-out mechanisms available
Do Not Track & Global Opt-Out:
We honor "Do Not Track" signals. For global privacy control signals, we provide mechanisms to opt-out of non-essential tracking.
• CCPA: Right to opt-out of "sale" of personal information
• GDPR: Withdraw consent at any time
• International: Respect regional privacy preferences
Children's Privacy (COPPA/GDPR-K)
Age Restrictions & Parental Consent
Our services are not directed to children under the age of 13 (16 in the EU). We do not knowingly collect personal information from children.
COPPA (US):
No collection from children under 13 without parental consent
GDPR-K (EU):
No collection from children under 16 without parental consent
Parental Rights: Parents/guardians may contact us to review, delete, or restrict collection of their child's information.
Policy Updates & Contact Information
This privacy policy may be updated periodically to reflect legal changes or operational practices.
Policy Updates
We will notify users of material changes via website notice or email.
Data Protection Officer
Contact via support ticket for GDPR/CCPA requests
Support Channels
Website contact form or community Discord
Legal Disclaimers - Aligned with TOS
This privacy policy forms an integral part of our Terms of Service. All disclaimers and limitations of liability in our TOS apply to this privacy policy. As stated in TOS Section 6, we provide services "as is" and make no warranties regarding absolute privacy or security.