Darkwood

Privacy Policy

Last updated: September 15, 2025

1. Scope

This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use the Darkwood in-site messaging service (the “Service”).

2. Information We Collect

  • Account info: username, chosen mock domain (e.g., @gta5), display name, password hash, and any profile fields you provide.
  • Service data: messages you send and receive within the Service, recipients/senders (stored as user IDs), timestamps, read/delete flags, and thread relations.
  • Technical data: IP address, device/browser info, and basic logs for security, abuse prevention, and diagnostics.
  • Cookies and similar: session cookies to keep you logged in and protect against CSRF and session hijacking.

3. How We Use Information

  • Provide, maintain, and improve the Service (including routing, storing, and displaying messages).
  • Secure the Service, prevent abuse, and investigate violations of our Terms.
  • Communicate with you about updates, support, and policy changes.
  • Comply with legal obligations and enforce our rights.

4. Legal Bases (EEA/UK where applicable)

  • Contract: to provide the Service you requested.
  • Legitimate interests: to keep the Service secure and functional.
  • Consent: where required (e.g., certain optional features).
  • Legal obligation: to comply with applicable law.

5. Sharing & Disclosure

We do not sell your personal information. We may share information:

  • With service providers who process data on our behalf under appropriate confidentiality and security obligations.
  • When required by law, regulation, legal process, or to protect users, the public, or the Service.
  • In connection with a business transfer (e.g., merger or acquisition), subject to this Policy.

6. Data Retention

We retain account information and messages for as long as your account is active or as needed to provide the Service. You may delete individual messages for yourself; deletion does not remove copies from the other participant’s inbox or from backups retained for a limited time for security and continuity.

7. Your Choices & Rights

  • Access & update: You can view and update your profile info and mock email in Settings.
  • Password control: You can change your password in Settings.
  • Deletion: You may request account deletion; some logs and backups may be retained for a limited period to meet legal or security obligations.
  • Cookies: You can control cookies via your browser; disabling essential cookies may affect functionality.
  • Regional rights: Depending on your location, you may have additional rights (e.g., access, correction, portability, objection). We will honor requests as required by law.

8. Children’s Privacy

The Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If we learn we have such information, we will take reasonable steps to delete it.

9. Security

We implement reasonable technical and organizational measures to protect information (e.g., hashed passwords, session protections, access controls). No system is 100% secure; you are responsible for safeguarding your credentials.

10. International Transfers

Information may be processed in locations where we or our service providers operate. We take steps to protect your information in accordance with this Policy wherever it is processed.

11. Changes to This Policy

We may update this Policy from time to time. If changes are material, we will provide reasonable notice (e.g., site notice). Your continued use of the Service after changes take effect indicates acceptance.

12. Contact

Questions about privacy? Reach us through the site’s support channel.