← Back to Home

Privacy Policy

Last Updated: April 19, 2026

1. Information We Collect

When you use Crit-Fumble Gaming, we collect the following types of information:

  • Account Information: Email address, display name/handle, and authentication credentials
  • Discord Information: Discord user ID and username when you sign in or use Discord Activities
  • Platform Content: Campaign data, character sheets, world-building content, chat messages, dice rolls, and journal entries you create
  • Uploaded Files: Images (avatars, character portraits, campaign art — converted to WebP), private documents, and ROM files stored in your personal storage quota. Files are stored in DigitalOcean Spaces.
  • Technical Data: IP address, browser type, device information, and session analytics used to operate and improve the service
  • Payment Data: We do not store payment card details. Stripe retains payment records; we store only a Stripe customer ID and your transaction history within the platform.

We do not collect or store your real name.The "display name" on your profile is a handle or username of your choosing — we never ask for, require, or store your legal name on the platform. If you make payments, Stripe processes and holds any identity information required for financial compliance on their infrastructure; we retain only a Stripe customer ID.

2. How We Use Your Information

We use the information we collect to:

  • Provide and maintain the Crit-Fumble Gaming service
  • Enable Discord Activity features and integration
  • Authenticate your account and prevent fraud
  • Store and sync your campaigns, characters, and world-building content
  • Improve our services and develop new features
  • Send you service-related announcements and updates

3. Data Storage and Security

Your data is stored securely using industry-standard encryption and security practices:

  • Account and payment data is stored with secure PostgreSQL databases
  • Campaign and RPG data is stored on secure DigitalOcean infrastructure
  • All data transmission uses HTTPS encryption
  • We implement appropriate technical and organizational measures to protect your data

4. Third-Party Services

Crit-Fumble Gaming integrates with the following third-party services that may receive or process your data:

  • Discord: OAuth sign-in, Activities, and voice channels. Discord receives your Discord user ID and username when you authenticate. All session voice and video happens inside Discord — we do not host our own voice infrastructure.
  • Stripe: Payment processing. Stripe handles all payment card data and any identity verification required for payouts. We never see or store your card details — only a Stripe customer ID.
  • Deepgram: Live speech-to-text for the optional Transcription feature. When a GM enables transcription for a session, audio captured by our Discord bot is streamed to Deepgram in real-time and the resulting transcript text is stored in your session chat history. Deepgram does not retain the streamed audio after processing. Transcription is opt-in per session and requires consent from every recorded speaker.
  • DigitalOcean: Cloud hosting, managed database, and object storage (Spaces) for your uploaded files. Your data physically resides on DigitalOcean infrastructure.
  • Umami (self-hosted): Privacy-friendly product analytics for page views and aggregate usage patterns. We run our own Umami instance — analytics data does not leave our infrastructure. No personally identifying information is collected.
  • Sentry: Application error and performance monitoring. We have opted out of personal information collection (sendDefaultPii: false); only stack traces, request paths, and error metadata are sent to Sentry.

Each service operates under its own privacy policy. Sign-in uses Discord OAuth — you authenticate with Discord, Discord returns a user ID and basic profile, and we never see or store your Discord password.

5. Data Sharing

We do not sell your personal information. We may share your information only in the following circumstances:

  • With your explicit consent
  • To comply with legal obligations or valid legal requests
  • To protect the safety of our users or the public
  • With service providers who assist in operating our platform (under strict confidentiality agreements)

Storytellers and GMscan only access session chat, campaign notes, and related content within campaigns where they have a Storyteller or GM role. They cannot read content from campaigns they aren't part of.

Platform admin staff retain broader access for moderation, dispute resolution, and responding to conduct reports. This access is limited to what is necessary for those purposes and is governed by our Community Guidelines.

6. Your Rights and Data Ownership

You own your data. All creative content, campaign data, characters, lore, and other works you create onCrit-Fumble Gaming belong to you. We store it to provide the service — we do not claim any ownership or rights over it.

You have the right to:

  • Access, update, or delete your personal information at any time
  • Export everything — download a full JSON dump of all your profile data, campaigns, characters, messages, transaction history, and all uploaded files via your Account → Privacy & Data page
  • License, share, or publish your content under any terms you choose — no permission required from us
  • Clear specific data categories (chat messages, dice rolls, journal entries, AI usage logs, spectator follows) individually at any time, from your Privacy & Data page
  • Delete your account entirely — all personal information is permanently wiped. Your financial transaction history is retained for legal and audit compliance (with your ID anonymised in all non-financial contexts). Account deletion is self-service from your Privacy & Data page
  • Opt out of non-essential communications at any time

All of these actions are available directly in your account settings — no need to contact us. If you need assistance, message an admin on our Discord server.

7. Cookies, Storage, and Tracking

We try to keep client-side storage minimal. Here's the full picture of what we use and why:

  • Session cookie (essential): An encrypted Auth.js session token (cookie name __Secure-authjs.session-token in production) that keeps you logged in. This is required for the platform to function.
  • Self-hosted analytics: When configured, our self-hosted Umami analytics records aggregate page views and event counts. No third-party domains are involved and no personally identifying information is collected.
  • Error monitoring: Our Sentry integration sends application errors and performance traces. We have explicitly disabled personal-information collection (sendDefaultPii: false).
  • Browser local storage (UI state only, never transmitted): Banner-dismissal flags (e.g. cfg-platform-beta-dismissed, cfg-foundry-beta-dismissed), window positions, dock preferences, and similar UI preferences. None of this data is sent to our servers.
  • Third-party tokens you bring (BYOK):If you connect external accounts like D&D Beyond, Cypher Tools, or TaleSpire via "bring your own key", those tokens are stored only in your browser's local storage and used to call the third party directly. They are never transmitted to our servers.

You can clear cookies and local storage at any time through your browser settings. Doing so will sign you out and reset UI preferences.

8. Data Retention

We keep your data only as long as needed to operate the platform or meet legal obligations:

  • Active accounts: Account, campaign, character, and chat data is retained while your account is active.
  • Self-deleted accounts: When you delete your account, personal information is permanently wiped immediately. Financial transaction history is anonymised and retained for legal and audit compliance per §6.
  • Suspended/banned accounts: Account and associated data are retained for 90 days from the date of suspension, then permanently deleted. This window gives you time to appeal or request a data export before deletion.
  • Admin audit logs: Internal audit-log entries (records of administrative actions taken on the platform) are retained for 90 days, then automatically purged.
  • Voice and video: Discord hosts all live voice — we do not proxy or intercept it. If the GM enables Voice Recording for a session, audio from speakers who opt in is captured by our Discord bot, mixed into a single MP3, and stored in object storage so participants can download it. If Transcription is also enabled, the captured audio is additionally streamed to Deepgram (which does not retain it) and the resulting transcript text is stored in your session chat history. Recordings and transcripts live with the rest of your session data and can be deleted from your session view at any time.
  • Conduct records: See §10 — minimal records of suspension/ban events are retained for platform safety and are not deleted on account deletion.

9. Age Requirement

Crit-Fumble Gaming is an 18+ platform. You must be at least 18 years old to register or use this service. We do not knowingly collect personal information from anyone under 18. If you believe we have collected information from a minor, please message an admin on our Discord server and we will remove the account and all associated data.

10. Conduct Records

When an account is suspended or permanently banned for a conduct violation, we retain a minimal record of the violation and the enforcement action taken. This is kept solely for platform safety — to prevent ban evasion and protect the community — and is not used for any other purpose.

Conduct records are not included in your data export and are not deleted when you delete your account, as their purpose is specifically to record that the account should not be re-admitted. If you believe a conduct record about you is inaccurate, message an admin on our Discord server.

11. Community Guidelines and This Policy

This Privacy Policy should be read alongside our Community Guidelines and Terms of Service. The Guidelines describe how we expect users to handle each other's personal information on the platform (e.g. no sharing of real-world identifying details). This Policy describes how we, as the platform operator, handle yours.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date.

13. Contact

Questions about this Privacy Policy or our data practices? Message an admin on our Discord server.