Privacy Policy

Last updated: April 29, 2026

Operator information must be completed before public submission: TODO_OPERATOR_NAME, TODO_CONTACT_EMAIL, and any legally required business address.

Who We Are

This privacy policy is provided by TODO_OPERATOR_NAME, the operator of Adler40. Contact: TODO_CONTACT_EMAIL.

Adler40 is a Discord Embedded App that lets people in the same Discord activity instance play a multiplayer card game together.

Data We Receive

Data Received From Discord

Adler40 receives data from Discord through the Discord Embedded App SDK and the authorization scopes needed for gameplay and activity status:

• identify: Discord user ID, username, display name, and avatar metadata.
• guilds: context needed by the Discord Embedded App SDK for the current activity.
• rpc.activities.write: permission to update the user's Discord activity presence.

Discord also provides the current Embedded App activity context, such as guild, channel, instance, locale, and connected participant information when available through the Discord Embedded App SDK.

Additional Data Processed By Adler40

• Gameplay data: room name, game seat, selected role, connection status, in-game moves, score, and round state.
• Presence data: Rich Presence state derived from the current room and game session.
• Technical data: IP address, user agent, timestamps, requested URLs, errors, and server logs needed to operate the service.
• Local fallback test data: room, username, and generated local user ID stored in the browser when Adler40 is opened outside Discord for local testing.

How We Use Data

• Authenticate the user with Discord and place the user into the correct room.
• Create or resume the user's game seat and synchronize multiplayer game state.
• Show the user's display name/avatar in the game lobby and table.
• Update Discord Rich Presence for the running activity.
• Operate, secure, debug, provide support for, and improve the service.

Service Providers And Data Sharing

We do not sell Discord API data. We do not share Discord API data with advertising networks, data brokers, analytics providers, or unrelated monetization services.

Data may be processed by infrastructure providers that host or route Adler40, including the Kubernetes/Knative runtime infrastructure configured for this proof of concept and DNS/CDN/network providers used for the public Adler40 domains. These providers process data only as needed to operate, secure, and deliver the app.

Discord receives activity updates when Rich Presence is set through the Discord SDK.

Cookies And Local Storage

Adler40 does not use advertising cookies or analytics cookies. The production Discord Embedded App relies on Discord authentication and game-session traffic.

When Adler40 is opened outside Discord for local testing, the browser may store a local room name, local display name, and generated local user ID in local storage so the same browser can rejoin the same test room.

Data Retention

Adler40 does not store gameplay or Discord user data long term. Room and gameplay data is processed only for the duration of the game session so the app can provide the multiplayer game.

When a room is empty, the room data is deleted no later than 6 hours after the room becomes empty. This 6-hour window gives the infrastructure enough buffer for shutdown, cleanup, and delayed background deletion.

Operational logs are retained only as long as needed for security, debugging, abuse prevention, and compliance needs. If the app stops operating, data that is no longer needed will be deleted.

User Choices And Deletion Requests

Users can stop using the app at any time by leaving the Discord activity. To request access, correction, or deletion of data associated with this app, contact TODO_CONTACT_EMAIL and include the Discord user ID relevant to the request.

Legal Disclosure

We may disclose data if required by law, to comply with legal process, to enforce our terms or policies, to investigate abuse or security issues, or to protect the rights, safety, and security of users, Adler40, Discord, or others.

Security

The app uses HTTPS public endpoints, Discord OAuth through the Embedded App SDK, scoped backend services, and Kubernetes service permissions limited to room orchestration. We use reasonable technical and organizational measures to protect data from unauthorized access.

Children

Adler40 is intended only for adults who are at least 18 years old. The app is not directed to minors, and minors may not use the app.

Changes

We may update this policy when the app changes. Material changes should be reflected here before the changed app is submitted for Discord review or released.

Back to app | Terms | Support