Privacy Policy
Aethermoor — last updated 2026-05-27. Pre-launch draft. Will be reviewed by legal counsel before payment processing or third-party ads go live.
Aethermoor is an indie incremental game made by one developer. This policy describes the personal data we collect, why we collect it, where it's stored, and how to ask us to delete it. We do not sell personal data. We do not use third-party analytics. We do not embed ad networks at the time of this writing.
1. What we collect
- Account info (only if you sign in): email address and an opaque user identifier, both stored by Clerk, our authentication provider. We store the same identifier in our database to link your save data and purchases to your account.
- Game save data (always, if you play): the encoded snapshot of your in-game progress. Stored locally on your device; mirrored to our database only if you sign in. The save blob is opaque to us — we don't read its contents server-side.
- Purchases / entitlements (only if you buy something): the SKU you purchased, the receipt id from the payment processor, and the time the grant was issued. No card numbers ever touch our servers. UPDATE: 19.D will add Stripe as the web payment processor.
- Telemetry events (only if you accept the consent banner, or if your jurisdiction does not require a banner and you have not opted out): a small set of anonymous events describing major game milestones. See the next section for the exact list.
2. Telemetry events we record
We only record events from this fixed allow-list. Each event is a name plus optional non-identifying properties. We never include save contents, chat input, or anything you've typed.
session_start— once per page load. Properties: channel, build profile, whether you're signed in.page_view— once per page load, including the marketing and information pages. Property: the URL path only (e.g./faq). No personal data.prestige_calibration,prestige_fork,prestige_singularity,prestige_substrate— fired on each successful prestige action. No properties.narrative_awakening— fired when you advance to the next story world. Property: the numeric stage index only.iap_view,iap_attempt,iap_success— store funnel. SKU and approximate price. UPDATE: wired in 19.D.ad_request,ad_granted— rewarded-ad funnel. Slot name only. UPDATE: wired in 19.D (web) and 19.F (mobile).consent_accepted— recorded if you accept the banner. We do not record a corresponding "declined" event.
3. Where it's stored
Our backend runs on Vercel (United States). The database is Vercel Postgres (Neon-backed, US region by default). Clerk handles authentication and stores account credentials under their own privacy policy.
Your save data is also stored locally on your device in browser localStorage. We use localStorage for save state and for a small "deviceId" string that lets us correlate anonymous events from the same device. We do not use cookies.
4. Who can access your data
Only you and the one developer who maintains this project. We do not share data with third parties. We do not embed third-party trackers, analytics tools, or ad networks at the time of this writing.
5. Do Not Track and Global Privacy Control
We honor the DNT request header and the Sec-GPC Global Privacy Control signal automatically. If your browser is sending either, we record no telemetry from your session, regardless of whether you accepted the consent banner.
6. Data deletion and access
You can clear your local save and consent state at any time by clearing your browser's site data for this site. To delete your cloud-stored save data and entitlements, or to request a copy of the data we hold about you, email zladson@hotmail.com from the address tied to your account. A self-serve "delete my account" flow is on the roadmap before public launch.
7. Children
Aethermoor is not directed at children under 13 (COPPA). We do not knowingly collect data from children under 13. If you believe a child has provided us data, contact us using the email above and we will delete it.
8. International transfers
Our infrastructure is hosted in the United States. If you visit from the European Economic Area, the United Kingdom, Switzerland, or any other jurisdiction with data-export restrictions, your data is transferred to and processed in the US under the applicable standard contractual clauses provided by our processors (Vercel, Clerk).
9. Changes
This is a pre-launch draft and will be revised before any payment processing or third-party ads go live. The "last updated" date at the top of this page reflects the current version. We will not retroactively change how previously-collected data is used.
10. Contact
Questions, deletion requests, or general comments: zladson@hotmail.com.