Privacy Policy
1. Scope and Handling of Personal Data
This privacy policy informs users about the processing of personal data when using this website. The legal regulations for data protection are based on the European General Data Protection Regulation (GDPR). In addition, the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG) apply.
Responsible for this website is the following operator:
Dominik Fuhrmann
Brunnenstrasse 18
72116 Moessingen
Germany
2. Personal Data
Personal data includes all information that relates to an identified or identifiable natural person. This includes, for example, name, address, email address, and date of birth. These data are collected and processed in accordance with legal data protection regulations only to the extent necessary for the provision and use of our website and our services.
3. Collection and Processing of Access Data by the Web Host
Our web host (Hostinger International Ltd) collects the following data to provide us with statistical evaluations of user behavior on our website:
- IP address
- Used URL
- Country of access
- Time of the request
- Transferred data volume
- Used browser
- Operating system
This data is processed by Hostinger to create statistics that help us better understand user behavior and optimize our website. We do not use this data directly on our website and do not store it ourselves.
4. Collection and Processing of Personal Data by Us
We collect and process various personal data to enable you to use our website securely and efficiently. The following sections explain what data we collect and how we process it:
4.1 User Account and Identification
- Email Address: Your email address is required for creating and managing your user account. It enables login and use of the website and serves for communication, such as notifications about account activities, important information, or support requests. Your email address is not visible to other users.
- Password: Your password is used for authentication during login and protects your account from unauthorized access. We use advanced security procedures to ensure that your passwords are stored in an encrypted form and are not in plaintext in the event of a data breach. We never store or share passwords in a readable format.
- Two-Factor Authentication (2FA): To enhance the security of your account, we offer optional two-factor authentication. During login, a verification code is sent to your registered email address. This code must be entered to access your account. This additional security mechanism protects your account from unauthorized access even if your password is compromised.
- Username: The username is used for identification and communication with other users. It is visible to all logged-in users of the website.
- Profile Picture: The profile picture represents you visually while using our services and in communication with other users. It is visible to all logged-in users of the website.
- User ID: A technical identifier that internally identifies you and enables the use of our services. This identifier is not visible to you or other users.
- Preferred Language: Your preferred language is used for automatically displaying the website and email communication in the corresponding language.
4.2 Account Management and Security Measures
- Registration Date: We store the date on which registration was started to ensure that it is completed within 24 hours. If the registration is successfully completed, the date is deleted. If registration is not completed within 24 hours, all user data is deleted.
- Last Login Date: With each login, the date of the last login is updated. This helps us monitor usage frequency and identify inactive accounts.
- Inactivity Management: If the date of the last login for an account is one year (365 days) old, it is marked as inactive, and the user is notified. The account remains accessible, but a 'To Be Deleted' date is set, which is three years (1,095 days) after the last login. This date indicates when the account will be permanently deleted if it remains inactive.
- Activity Restoration: If the user logs in again within the three-year period, the account is considered active again. The 'To Be Deleted' date and inactivity status are reset, and the account can continue to be used without restrictions.
- Email Change Date: When an email address is changed, we store the date of the request and a unique token. Within 24 hours, the user can enter a new email address, after which a new token for verification is created. After successful verification, the date and token are deleted, and the new email address replaces the old one. If the change is not completed within 24 hours, the date, token, and new email address are deleted, and the old email address remains.
- Username Change Date: Similarly to the email change, we store the date and a unique token when a username change is requested. This request is also valid for 24 hours. Within this period, the user can enter a new username. Upon successful change, the date and token are deleted, and the new username is saved. If the change is not completed within 24 hours, the date and token remain, and the old username remains unchanged.
- Logged-In Devices: We store the session IDs of all logged-in devices of a user, saved as cookies, to ensure that after a password change, all sessions on all of the user's devices are logged out. This is for the security of the user account and protects against unauthorized access.
4.3 Support and Feedback
- Contact Form: In the contact form, you can provide the subject and a description of your issue, as well as optionally an email address for follow-up. This data is used to process your requests and provide feedback.
- Feedback Form: Our feedback form allows you to provide anonymous feedback. The form does not collect any personal data and is completely anonymous. Your feedback is transmitted and evaluated without linking to your identification data, so your identity cannot be traced.
4.4 Usage Behavior
- Creation of Elements: We store which user created which worlds and elements on our website. This information is also used for publicly visible user statistics.
- Last Editing of Elements: We store which user last edited an element (e.g., articles, books, maps, etc.), as well as the time of the last edit. This allows us to track changes to worlds and elements and monitor co-editing.
4.5 Cookies
- Technically Necessary Cookies: We use only one technically necessary cookie in the form of a PHP session ID for session management. This session ID becomes invalid 4 hours after the last interaction with the website. No additional cookies are used for marketing or tracking purposes. Our focus is solely on providing a secure and efficient user experience for our users.
4.6 Content Review
- Content Review: To ensure that content complies with legal regulations and does not contain copyright violations or inappropriate content, we reserve the right to review user-generated content at any time and without prior notice to users. This is particularly true in the case of reported violations or reports. Affected content is reviewed and analyzed by our administrators.
5. Data Disclosure
We do not disclose personal data to third parties unless required by law or necessary.
6. User Rights
Users have the right to request information free of charge about the personal data stored about them. Additionally, they have the right to rectify inaccurate data, restrict processing, and delete their personal data, provided there is no legal obligation to retain it.
7. Consent and Withdrawal
By using this website and providing their data, users consent to the processing of their personal data in accordance with this privacy policy. This consent can be withdrawn at any time with effect for the future. Withdrawal may result in the inability to use the services. To withdraw consent, you can delete your account in the account settings or contact us directly:
inf@worldbuilding-wiki.com
8. Security
We implement technical and organizational measures to protect your personal data from loss, misuse, and unauthorized access.
9. Contact
For questions regarding the collection, processing, or use of your personal data, for information, corrections, blocking, or deletion of data, as well as revocation of consent given, please contact:
info@worldbuilding-wiki.com
10. Changes to the Privacy Policy
We reserve the right to change this privacy policy at any time with effect for the future. An up-to-date version is always available on this website.
11. External Links
Our website may contain links to other websites that are not operated by us. If you click on an external link, you will be directed to the respective third-party website. We have no control over the content and practices of these websites and therefore assume no responsibility or liability for their privacy policies. We recommend that you read the privacy policies of each website you visit, especially if you enter personal data.