Skip to main content

Privacy Policy

Last updated: May 2026

1. Who We Are

Retro Adventure Forge (“we”, “us”, “our”) operates the platform at retroadventureforge.com. We are the data controller for personal data collected through this Service. Contact: [email protected].

2. Information We Collect

Account data: email address, display name, username, password (hashed — never stored in plain text), and any profile information you choose to add.

Content data: adventures, scenes, choices, and images you create or publish on the platform.

Play data: save slots, scene visits, and playtest feedback associated with your account.

AI generation logs: when you use AI generation, we store a hash of your prompt (not the prompt itself), the provider used, scene counts, estimated cost, and generation status. We do not store the raw text of your prompts in our database.

API keys: if you add your own AI provider API keys, they are encrypted with AES-256-GCM before storage. Only the last 4 characters are stored in plaintext for display. Keys are never logged or returned to your browser after saving.

Payment data: subscription and billing information is handled by Stripe. We store only a Stripe customer ID — no card numbers or full payment details.

Usage data: play counts, session cookies, and server logs (including IP addresses) necessary to operate the Service.

3. How We Use Your Information

We use your data to: operate and improve the Service; authenticate your account; process payments; send transactional emails (account verification, password reset, important notices); display your public profile if you opt in; enforce our Terms of Service; and comply with legal obligations.

Legal basis (GDPR): contract performance (account and subscription services); legitimate interests (platform security, fraud prevention, abuse monitoring); legal obligation (compliance with applicable law); and consent where indicated.

We do not sell your personal information to third parties. We do not use your data for advertising.

4. AI Providers — Data Sharing

When you use AI story generation, your prompt text is transmitted to the AI provider you select to generate content. This constitutes a transfer of personal data to a third-party processor. The providers we use are:

  • OpenAI (GPT-4o, DALL-E 3) — operated by OpenAI, LLC, San Francisco, CA. Your prompts are subject to OpenAI's Privacy Policy. OpenAI may use API inputs to improve their models unless you opt out via their API settings.
  • Google Gemini — operated by Google LLC. Your prompts are subject to Google's Privacy Policy and the Gemini API terms.
  • Anthropic (Claude) — operated by Anthropic, PBC, San Francisco, CA. Your prompts are subject to Anthropic's Privacy Policy.
  • Ollama (self-hosted) — if configured, requests are sent to a self-hosted Ollama instance. No data leaves your infrastructure for this provider.

If you provide your own API key for a provider, your requests are sent directly under your account with that provider and are subject to their terms. We do not intercept or log the content of those requests beyond the prompt hash described above.

We recommend reviewing each provider's data use policies before generating content containing sensitive personal information.

5. Cookies and Session Data

We use a single session cookie (__raf_session) to keep you logged in. This cookie is essential for the Service to function and does not require consent under most regulations. We do not use tracking, advertising, or analytics cookies. We use two analytics tools for aggregate traffic measurement: Matomo Analytics (self-hosted at stats.fasthosting.network, IP-anonymised) and Cloudflare Web Analytics (privacy-preserving, no cookies, no cross-site tracking). Neither tool shares data with third parties or builds individual user profiles.

6. Data Processors and Infrastructure

Your data is processed by the following third-party services acting as data processors on our behalf:

  • Cloudflare — database (D1), object storage (R2), key-value store (KV), CDN, and DNS. Data may be stored across Cloudflare's global infrastructure. See Cloudflare's Privacy Policy.
  • Stripe — payment processing. See Stripe's Privacy Policy.
  • Brevo (formerly Sendinblue) — transactional email delivery (account verification, password reset). Your email address is shared with Brevo for this purpose. See Brevo's Privacy Policy.

7. Age Verification

Certain content is restricted to adults (18+). When you request access to age-restricted content, we record a verification timestamp in your account record. We do not collect identity documents — age verification is self-declared.

8. Children's Privacy

The Service is not directed at children under 13. We do not knowingly collect personal data from children under 13. If we become aware that a user is under 13, we will delete their account and associated data. If you believe a child under 13 has created an account, please contact us at [email protected].

9. Data Retention

We retain your account data for as long as your account is active. AI generation logs are retained for 12 months for platform safety and compliance purposes, after which they are deleted. Server logs are retained for 30 days. If you delete your account, your personal data is deleted within 30 days, except where we are required to retain it by law (e.g., financial records) or for legitimate safety purposes (e.g., records of banned accounts).

Your API keys are permanently deleted when your account is deleted.

10. International Data Transfers

We are based in the United States. If you are located in the European Economic Area, United Kingdom, or other regions with data transfer restrictions, your data may be transferred to and processed in the United States and other countries where our processors operate. We rely on standard contractual clauses and processor agreements to protect such transfers.

11. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: request a copy of the personal data we hold about you
  • Correction: request correction of inaccurate data
  • Deletion: request deletion of your data (you can also delete your account directly from profile settings)
  • Portability: request your data in a portable format
  • Objection: object to processing based on legitimate interests
  • Restriction: request that we restrict processing of your data

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

12. Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify affected users by email without undue delay and no later than 72 hours after becoming aware, where required by applicable law.

13. Changes

We may update this Privacy Policy at any time. Material changes will be notified by email to registered users at least 14 days before taking effect. Continued use after changes constitutes acceptance.

14. Contact

Privacy questions or requests: [email protected].

RETURN TO MAIN MENU