No personally idenifiable information is used to browse our site as a guest nor do we do any tracking beyond standard Google analytics. (which are anonymized)
The following data is collected upon successful registration of our website:
• IP address - for abuse purposes
• Email address - for abuse/contact purposes. We do not send any unsolicited email and you must opt in upon registration to receive any communications this way.
• PayPal email address - for anti fraud/abuse reasons. To ensure that the PayPal account used to donate belongs to you and/or you have permission to use it we store the email address of the account used.
• Password - This is used to authenticate you to the platform. We use industry best practices to store your password (bcrypt) in a secure fashion.
We do not sell or distribute ANY of your information to 3rd parties in any way. We may use your information internally for abuse purposes to determine if you are misusing our platform or services in ways that violate our policies. For example, if you are ban evading, we will cross-reference your data to existing information in our database to determine that.
Cookies may be disabled at your preference if needed, we do not enforce the use of them, but you will not remain logged in between sessions.
We use industry best practices/standards to protect your data from unauthorized access/loss/theft/unauthozied destruction. Our staff is kept up to date and made aware of all security/privacy policies and changes.
We use full TLS/SSL with high cipher suites (TLS 1.2+) and encryption on all forms that accept personally identifiable information. Furthermore, all sensitive information (such as passwords) is stored using salted bcrypt which is widely considered one of the best hashing algorithms available today.
Additionally, our server uses various security mechanisms (such as firewalls/WAF's) to prevent unauthorized access.
Regardless of any measures in place, we cannot 100% guarantee that your personal information cannot be viewed/access/used by other parties in the event of a security breach or failure. No system is 100% flawless.
In the event of a breach, we will notify the appropriate authorities within 72 hours and take proper steps to notify the affected user(s) of said breach.
We send emails only if a user has opted into our service and confirmed they want to receive said emails. You may opt-out at any time by accessing the user control panel or emailing firstname.lastname@example.org
Any requests to review or change your personal information on our platform/service should be sent to email@example.com. Though, you may login any time to your user control panel to view your own information and everything we have collected.