Privacy Policy

Last updated: May 21, 2026

1. Information We Collect

We collect the following information when you use ScoreM8:

  • Account Information: Username, email address, and avatar when you register or sign in via Google, Discord, or Steam.
  • Profile Information: Your game ratings, reviews, and taste preferences.
  • Steam Library Data: If you connect your Steam account, we import your owned games to personalize recommendations.
  • Usage Data: Pages visited, features used, and interaction patterns.
  • Technical Data: IP address, browser type, and device information for analytics and security.

2. How We Use Your Information

We use your information to:

  • Provide personalized game recommendations
  • Operate and improve the Service
  • Send transactional emails (account notifications, not marketing)
  • Detect and prevent abuse or fraud
  • Comply with legal obligations

3. Data Sharing

We do not sell your personal data. We may share data with:

  • Service Providers: Email delivery (Mailgun), hosting (Hetzner), and authentication providers (Google, Discord, Steam) — only as necessary to provide the Service.
  • Legal Requirements: If required by law or to protect our rights.

4. Data Retention

We retain your account data for as long as your account is active. You can request deletion of your account and associated data at any time by contacting us. Usage logs are retained for 12 months.

5. Your Rights

Under GDPR (General Data Protection Regulation), you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Delete your data ("right to be forgotten")
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

To exercise these rights, contact us at [email protected].

6. Cookies

We use essential cookies for session management and authentication. We do not use tracking cookies or third-party advertising cookies. You can control cookie settings in your browser.

7. Third-Party Links

The Service may contain links to external websites (e.g., Steam, OpenCritic). We are not responsible for the privacy practices of these third parties.

8. Data Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit (TLS) and secure password hashing. However, no method of transmission is 100% secure.

9. International Transfers

Your data is stored on servers in Germany (Hetzner). If you access the Service from outside the EU, your data is processed in Germany in accordance with GDPR.

10. Children's Privacy

The Service is not directed at children under 13. We do not knowingly collect data from children. If you believe a child has provided us with data, please contact us.

11. Changes to This Policy

We may update this policy. Material changes will be notified via email or a notice on the platform.

12. Contact

For privacy-related inquiries, contact us at:

[email protected]