Privacy Policy

Last updated: May 12, 2026 · Effective immediately

This is the privacy policy for Mapsworn, a free browser-based MMO at mapsworn.com and play.mapsworn.com ("the Service"). We try to keep it short and plain-English.

What we collect

Your email address — required to sign up. It's the only personal identifier we store. We use it to send your magic-link login emails and (optionally) the onboarding email sequence.
A hero name you choose — public, visible to other players and on the leaderboard.
Gameplay data — your character's level, gold, kills, kingdom, flags, achievements. Stored on our server in SQLite so you can play across devices.
Approximate GPS location while you play — used in-session only to position your character on the real-world map. We do NOT store your GPS coordinates server-side; only the lat/lng of where you currently stand is broadcast (rounded) to other nearby players for visibility.
An auth token — saved in your browser's localStorage. This is what keeps you logged in between sessions.
Basic logs — error and abuse logs (e.g. rate-limit kicks) kept on the server for up to 14 days for security purposes.

What we do NOT collect

No analytics / tracking pixels / Google Analytics on the game
No advertising IDs
No third-party trackers
No persistent GPS history (we do not record where you've walked)
No payment info (the game is free)
No social media tokens

How we use your data

To run the game (your hero needs a name + position).
To send you magic-link login emails (via Resend, our email service provider).
To show your name + stats on the public leaderboard at /leaders (you can opt out by deleting your account).
To send up to 3 onboarding emails after signup (welcome, day-3 tips, day-7 reactivation). No further emails after that.

Third parties

Resend (resend.com) — handles outbound email delivery. Your email address is shared with Resend for the purpose of sending you a magic link.
Cloudflare — provides DNS + DDoS protection + CDN edge caching. Standard web hosting.
OpenStreetMap / CARTO — provides the map tiles your game world is overlaid on. They may see your map-view requests but not your account identity.

Your rights

Right to access — email us at [email protected] and we'll send you everything we have on you.
Right to deletion — in-game: Settings → ⚠ DELETE ACCOUNT (permanent). Sends an email confirmation, then wipes your profile, flags, kingdom membership, and email record from our database. We send a confirmation email that the deletion was processed.
Right to portability — email us, we'll send your save data as JSON.
Right to correction — email us with what's wrong.

Data retention

Active accounts — kept indefinitely until you delete them or 365+ days of inactivity (after which we may purge for storage hygiene; we will email you 14 days before that happens).
Deleted accounts — purged from the live database immediately. Backups (hourly snapshots, 7-day retention) age out within 7 days.
Server logs — 14 days.

Children

Mapsworn is not directed at children under 13. We do not knowingly collect data from children under 13. If you think we have, email us and we'll delete it.

Security

Your data is stored on a single self-hosted server with SQLite (WAL mode), accessible only via this game. All traffic to/from the server is encrypted with HTTPS (TLS via Cloudflare). We do not store passwords (passwordless magic-link auth). Tokens are random and stored encrypted in your browser's localStorage.

Changes

If we materially change this policy, we'll email account holders. Last update is shown at the top of this page.

Contact

Questions? Email [email protected].