We collect information when you use Draco Arts services—device context, gameplay signals, and optional contact details—so experiences remain secure and reliable.

• Device specifics such as hardware model, OS version, locale, network and carrier for optimisation.
• Session analytics including pages visited, game activity, IP ranges, interactions, and load performance.
• Opt-in contact signals (email, push tokens) gathered only through your OS-level consent prompts.

Data powers the features you rely on—from matchmaking to support—and ensures updates reach the right players at the right time.

• Operate, maintain, and enhance Draco Arts experiences.
• Provide services, confirmations, invoices, and safety notifications.
• Respond to requests, run contests and rewards, and personalise content.
• Combine first-party insights to improve support and live operations.

We share information with trusted partners under strict contracts for service delivery, compliance, and community protection—never for selling personal data.

• Trusted vendors and processors acting under signed agreements.
• Regulatory disclosures required by law, compliance, or legal process.
• Protection of Draco Arts users, IP, and infrastructure when misuse is detected.
• Corporate transactions such as mergers or acquisitions with equivalent safeguards.
• Explicit consent-led sharing for optional features or social integrations.
• Aggregated or de-identified reporting that cannot re-identify players.

Data lifecycle

1. Collect

   Encrypted ingestion pipelines capture gameplay and support data with automated PII redaction and consent logging.

2. Protect

   Zero-trust policies, anomaly detection, and continuous patching safeguard every service environment end-to-end.

3. Retain

   Analytics data retained up to 24 months, server logs 30 days, and immediate deletion once verified requests succeed.

4. Respond

   Privacy desk answers export or erasure requests inside 24 hours, with secure identity checks protecting accounts.