Arzolath

Data Protection

Privacy Policy

This policy explains what information may be collected, stored, and used across Arzolath websites, games, creator tools, Dashboard, and related support or community services.

Last Updated

April 23, 2026

Policy Details

The sections below explain scope, data categories, portal-specific storage, third-party providers, retention, and your rights.

1. Scope

This Privacy Policy applies to Arzolath-operated websites, downloadable products, creator tools, customer-facing account services, support communication, and related online services.

This includes, for example:

  • https://arzolath.com and related pages
  • Games and software products distributed by Arzolath
  • Dashboard, used to connect storefront accounts and verify ownership
  • Support or business communication by email or forms
  • Linked community or social integrations such as Discord and X

2. Technical and Usage Data

Depending on the service, technical and operational data may be collected for security, fraud prevention, debugging, analytics, and service reliability.

  • IP address
  • Browser and device type
  • Operating system
  • Language and regional settings
  • Referring page or source
  • Timestamps of requests and sign-ins
  • Error logs, crash data, and rate-limit events

3. Information You Provide Directly

You may voluntarily provide information when contacting Arzolath, making a purchase, requesting support, joining a community space, or using account features.

  • Email address
  • Optional nickname used for portal display
  • Display name or username
  • Messages, attachments, and support details
  • Order-related information you choose to share
  • Any information submitted through forms, email, Discord, or future social integrations

4. Portal Account Data

When you use Dashboard, information is stored to operate your Dashboard account and link it to supported providers.

  • Portal user record and internal account identifier
  • Nickname and notification email if you add or update them in your portal profile
  • Connected provider name, provider user ID, username, display name, and email if supplied by the provider
  • Provider avatar or profile image URL if supplied by the provider
  • Login timestamps, account connection timestamps, and sync timestamps
  • Session, CSRF, and rate-limit related security records

The portal does not ask for or store your provider password. Authentication happens directly with the provider you choose.

5. Provider Tokens and Purchase Sync

When you connect a provider to the portal, OAuth or API credentials may be stored so the portal can verify your identity and sync ownership data.

  • Access tokens and, where available, refresh tokens
  • Provider-specific account metadata returned during sign-in
  • Purchase or ownership records needed to determine whether you own a supported product
  • Platform, purchase date, license type, status, price, and related verification metadata

Product presentation in the portal may use current product images and metadata defined by Arzolath configuration rather than historical images stored at purchase time.

6. Discord and X

When Discord or X accounts are linked, the portal may collect and store the categories of data needed to operate those integrations.

  • Platform user ID
  • Username, display name, handle, or discriminator
  • Email address if the provider shares it
  • Avatar URL and basic public profile metadata
  • Connection timestamps and related tokens needed for the integration

Portal login and account connection flows use provider-hosted authentication rather than asking for your password directly.

7. How Data Is Used

  • Provide and maintain websites, games, tools, and portal features
  • Authenticate users and keep accounts secure
  • Verify ownership or entitlement for supported products
  • Operate customer support and respond to inquiries
  • Send support-related email notices about ticket creation, replies, reopening, or closure
  • Investigate abuse, fraud, errors, and technical failures
  • Improve service quality, usability, and stability
  • Comply with legal obligations and enforce terms

Personal data is not sold.

8. Legal Basis for Processing

Where GDPR or similar laws apply, processing may rely on one or more of the following bases:

  • Performance of a contract or requested service
  • Legitimate interests in operating, securing, and improving services
  • Consent, where a feature requires it
  • Compliance with legal obligations

9. Sharing and Third Parties

Information may be shared only as needed with service providers and platforms that support operation of the services.

  • Hosting and infrastructure providers
  • Payment, storefront, and distribution platforms such as Steam, itch.io, or Gumroad
  • Social or community providers such as Discord and X
  • Professional advisers or authorities when required by law

Third-party services handle their own data under their own privacy policies.

10. Retention and Security

Data is retained only as long as reasonably necessary for account operation, purchase verification, fraud prevention, legal compliance, and support history.

If you add a notification email in the portal profile, it may be used to send support workflow notices so you know when a ticket is opened, answered, reopened, or closed.

Reasonable technical and organizational safeguards are used to reduce the risk of unauthorized access, misuse, disclosure, alteration, or loss. No system can guarantee absolute security.

11. Cookies and Similar Technologies

Cookies, local session storage, or similar technologies may be used in Dashboard for sign-in state, CSRF protection, account security, and related preferences.

The cookie message is shown in Dashboard, where required session cookies must be accepted before signing in.

If all cookies are rejected, cookie-dependent sections such as Dashboard cannot be used properly.

If Arzolath later adds non-essential analytics, advertising, or similar third-party tracking technologies, this policy and the related consent flow may be updated.

You can usually control cookies through your browser settings, though some features may stop working correctly if they are disabled.

12. Your Rights

Depending on your jurisdiction, you may have the right to request access, correction, deletion, restriction, objection, or portability for personal data.

To make a request, contact privacy@arzolath.com. Reasonable verification may be required before processing a request.

13. Changes and Contact

This Privacy Policy may be updated from time to time. The latest version will be posted on this page with a revised update date.

For privacy questions, contact:

Email: privacy@arzolath.com
Website: https://arzolath.com