Privacy Policy
Your Data, Your Control
We believe your data belongs to you. LdDrako's Den collects the minimum data needed to provide our services, encrypts everything with industry-standard encryption, and gives you full control over your profile visibility. We don't sell data and we don't track you across sites.
Why This Matters
The Problem
Many gaming platforms collect excessive data, track users across sites, and sell information to advertisers. Players have little visibility into what happens with their personal data and few options to control it.
Our Solution
LdDrako's Den takes the opposite approach. We use OAuth-only authentication so we never store passwords. Data at rest is encrypted with AES-256-GCM. We comply with GDPR, CCPA, LGPD, and PIPEDA. You get 8 granular profile visibility settings and full account deletion with a 30-day recovery window.
Key Benefits
Everything you need to succeed
Minimal Collection
We only store your User ID, display name, and email from Discord OAuth. No passwords stored, no payment information collected directly, no unnecessary personal data.
Strong Encryption
AES-256-GCM encryption for data at rest, SHA256 hashing for sensitive fields, and signed file URLs that expire in 5-15 minutes. Industry-standard security throughout.
Global Compliance
Fully compliant with GDPR (EU), CCPA (California), LGPD (Brazil), and PIPEDA (Canada). Your rights are respected regardless of where you live.
Full Control
Eight granular profile visibility settings let you control exactly what others see. Full account deletion available anytime with a 30-day recovery window before permanent erasure.
How It Works
Get started in just a few simple steps
Sign In with OAuth
Authentication happens through Discord OAuth. We never see or store your password. Your identity is verified by Discord directly.
Manage Your Visibility
Use the Settings page to control your profile visibility. Choose what information is public, what's visible to community members only, and what's completely private.
Delete Anytime
Request full account deletion from Settings. Your data enters a 30-day soft-delete recovery window, then is permanently and irreversibly erased from all systems.
Frequently Asked Questions
Got questions? We've got answers.
What data do you collect?
User ID, display name, and email from Discord OAuth, plus platform usage data like listings created and contracts posted. We do not collect passwords, payment card details, or browsing history outside the platform.
Do you sell my data?
No. We never sell, share with advertisers, or trade user data. Your information is used solely to provide platform features and is never monetized.
What third-party services do you use?
Firebase (authentication and file storage by Google), Discord (OAuth and bot integration), YouTube and Twitch (content embedding), and ip-api.com (anonymous geolocation for analytics).
How do I delete my account?
Use the account deletion option in Settings. Your data enters a 30-day recovery window where you can restore your account, then is permanently erased from all databases, caches, and backups.
Do you use cookies?
Only strictly necessary cookies for authentication state. We do not use advertising cookies, cross-site tracking cookies, or third-party analytics cookies.
Your Privacy Matters
We built this platform with privacy as a core principle, not an afterthought. Sign in knowing your data is protected by encryption, minimal collection, and full transparency.