Privacy Policy — Mythmaker

Draft. Baseline template, not legal advice. Confirm the sub-processor list (LLM provider, email provider, hosting, payment provider) and your data-protection obligations before launch.

1. What we collect

Account data: your email address and display name.
Campaign data: the campaigns, scenes, and journal text you create.
Usage data: metering records of AI usage used to calculate credit balances.
Payment data: handled by our payment processor; we do not store full card details.

2. How we use it

To operate the Service: authenticate you, run and store your campaigns, meter and bill usage, send transactional email (verification, password reset), and maintain security.

3. Sub-processors

We share data only as needed with service providers that help us run Mythmaker — for example AI model providers (to generate narrative), email delivery, hosting/database, and payment processing. We do not sell your personal data.

4. AI processing

Text you submit during play is sent to our AI model provider to generate responses. Do not submit sensitive personal information as part of gameplay.

5. Retention

We keep your account and campaign data until you delete it or close your account. You can delete campaigns at any time; deletion is irreversible.

6. Your rights

Depending on your jurisdiction, you may have rights to access, correct, export, or delete your personal data. Contact us to exercise them.

7. Security

We use industry-standard measures (encrypted transport, hashed passwords, access controls). No system is perfectly secure.

8. Contact

Privacy questions: privacy@mythmakerpg.com.