Who we are

This is a personal chess web application. If you have questions about your data, you can reach us at the contact details provided at the bottom of this page.

What data we collect

• Account information — your name and email address, provided when you sign in via Google or email/password. This is handled by Auth0.
• Game data — your chess games, moves, and game history, stored in our database and linked to your account.
• Payment information — if you purchase a Premium membership, your payment is processed by Stripe. We do not store your card details.

Why we collect it

• To identify you and keep your games associated with your account
• To enable gameplay features (game history, AI opponent, online multiplayer)
• To process one-time Premium payments

The legal basis for processing is contract performance — the data is necessary to provide the service you signed up for.

Third-party services

• Auth0 — handles authentication and stores your account credentials. Auth0 is GDPR-compliant and processes data under a Data Processing Agreement.
• MongoDB Atlas — stores your game data in the EU (Frankfurt region). MongoDB operates under a GDPR-compliant DPA.
• Stripe — processes payments. Stripe is PCI-DSS certified and GDPR-compliant.
• Cloudflare Pages — serves the frontend. Cloudflare may collect standard web traffic data (IP addresses, request logs).

Data retention

Your account and game data is retained for as long as your account exists. If you request account deletion, your data will be removed from our database and from Auth0 within 30 days.

Your rights (GDPR)

If you are located in the EU/EEA, you have the right to:

• Access — request a copy of the data we hold about you
• Rectification — request correction of inaccurate data
• Erasure — request deletion of your account and all associated data
• Portability — request your data in a machine-readable format
• Object — object to processing in certain circumstances

To exercise any of these rights, contact us using the details below.

Cookies & local storage

This application does not use tracking or advertising cookies. Your authentication session is stored in your browser's localStorage — this is strictly necessary for the app to function and does not require your consent. Auth0 and Stripe may set cookies on their own domains during the sign-in and payment flows.

Contact

For any privacy-related questions or data requests, please contact: privacy@example.com

Please replace this email with your actual contact address before going live.