nn
The GM Craft Tavern – Token Maker

The GM Craft Tavern

Privacy Policy

Privacy Policy — SacredArtDesigns / The GM Craft Tavern

Controller: SacredArtDesigns (operator of the site)
Contact: [email protected]
Host: Hostinger
Last updated: August 31, 2025

1) What we collect now

  • Email address (when you request the freebie / join our list via Brevo): to deliver the freebie and send updates/newsletters. Legal basis: consent (you can withdraw anytime).
  • Technical logs (via our host): IP address, user-agent, timestamps — for security, anti-abuse, and diagnostics. Legal basis: legitimate interests.
  • Analytics/marketing trackers (optional):
    • Microsoft Clarity (behavior analytics & heatmaps) — only after consent.
    • Meta Pixel (measurement/remarketing) — only after consent.
    • PixelYourSite (WordPress plugin that deploys pixels) — only after consent.
      Legal basis: consent (before any non-essential cookie runs).

We do not currently run user accounts or a shop. If that changes, we’ll update this notice.

2) What we may collect later (future features)

Account details, purchase records, user content (e.g., images in galleries), forum posts, AI-tool prompts/images, additional analytics/ads pixels. We’ll describe each purpose and legal basis when those features launch.

3) How we use data

  • Provide and improve the Token Maker.
  • Communicate with you (freebie delivery, newsletters if you opted in).
  • Keep the site secure and prevent abuse.
  • Run analytics/measurement only if you consent.

4) Sharing & processors

We use service providers under data-processing terms: Hostinger (hosting), Brevo (email), Microsoft Clarity, Meta Platforms (Meta Pixel), and PixelYourSite (plugin). Some providers may process data outside the EEA; where they do, we rely on safeguards such as SCCs. We do not sell personal data.

5) Retention

  • Newsletter data: until you unsubscribe or we prune inactive lists.
  • Security logs: for a limited rolling period unless needed to investigate abuse.
  • Cookies/analytics data: per the tool’s retention schedule (see Cookie Policy).

6) Your rights (GDPR)

You can request access, rectification, erasure, restriction, portability, and objection (including to processing based on legitimate interests). For consent-based processing (emails, pixels), you can withdraw consent at any time. You may lodge a complaint with CNIL (France) or your local authority.

7) Children

This service is for a general audience. If you believe a child has provided personal data without appropriate permission, contact us and we will address it.

8) Security

We use TLS and standard organizational/technical measures. No method is 100% secure.

9) Changes

We will update this policy as features evolve and will post the new “last updated” date.

Contact: [email protected]