WIKILICIA

Privacy Policy

Effective date: March 13, 2026

This Privacy Policy explains how WIKILICIA collects, uses, stores, protects, and discloses personal data in connection with wikilicia.com, related APIs, account systems, and the WIKILICIA Discord bot.

1. Scope and Controller

This Policy applies to personal data processed through the Services. WIKILICIA acts as the service operator and data controller for data described here, except where another party independently controls its own data processing (for example, Discord platform data).

2. Personal Data We Collect

Account and identity information

  • Discord ID, username, global display name, avatar, and banner (if available).
  • Email address from Discord OAuth when available.
  • WIKILICIA internal user ID and account timestamps.
  • Optional profile fields you provide, such as pronouns and profile visibility status.

Session and security information

  • Session cookies, login timestamps, and session lifecycle metadata.
  • Basic request diagnostics, error telemetry, and rate-limit/security events.

Bot and service interaction information

  • Data required to execute bot commands and deliver requested features.
  • Operational metadata used for abuse prevention, troubleshooting, moderation, and reliability.

Analytics and usage information

  • Page usage, feature interaction patterns, and aggregate traffic metrics.
  • Analytics tooling and behavior analysis data used to improve usability and service quality.

3. How We Use Personal Data

  • Authenticate users and operate account features.
  • Operate, improve, and secure the website, API, CMS, and Discord bot.
  • Detect abuse, enforce rules, and maintain service reliability.
  • Analyze performance and improve usability and content quality.
  • Comply with legal obligations and respond to lawful requests.

4. Legal Bases for Processing

Where required by applicable law, we process personal data under one or more legal bases, including:

  • Performance of a contract (providing requested Services).
  • Legitimate interests (service security, abuse prevention, and product improvement).
  • Consent (where required and obtained).
  • Legal compliance obligations.

5. Cookies and Similar Technologies

We use cookies and similar technologies to support authentication, account continuity, security controls, and analytics. If you disable cookies, portions of the Services (including login) may not function correctly.

Authentication cookies are configured with security-focused attributes (such as HttpOnly, Secure, SameSite, and scoped paths/domains where applicable).

6. Data Sharing and Disclosure

We do not sell personal data.

We may share data only where necessary to operate Services, maintain security, or comply with law. Categories of recipients may include:

  • Platform providers (for example, Discord for authentication and related platform operations).
  • Infrastructure, hosting, and analytics service providers acting under appropriate safeguards.
  • Professional advisers or authorities where required by law or valid legal process.

7. Data Retention

We retain personal data only as long as necessary for operational, security, moderation, legal, and legitimate business purposes.

Session records follow configured expiration windows. Account deletion requests are processed through the account settings flow, including any configured waiting period before permanent deletion.

8. Public Profiles and Visibility Controls

User profiles are public by default to support community discovery and sharing. Users can change profile visibility in account settings. When visibility is disabled, profile endpoints are restricted from public access.

9. International Data Transfers

Depending on your location, personal data may be processed in jurisdictions different from your own. We apply reasonable safeguards appropriate to the nature of the data and processing activity.

10. Your Rights

Depending on applicable law, you may have rights to access, correct, delete, restrict, object to processing, or request portability of your personal data. You may also withdraw consent where processing is based on consent.

You can request support by contacting us at the address below. We may need to verify identity before processing certain requests.

11. Security

We implement technical and organizational measures designed to protect personal data against unauthorized access, misuse, loss, or disclosure. No method of transmission or storage is fully guaranteed, and residual risk remains.

12. Children's Privacy

The Services are not directed to children under the minimum age permitted by applicable law. If you believe a child has provided personal data in violation of this Policy, contact us so we can review and take appropriate action.

13. Changes to This Policy

We may revise this Policy from time to time. Material changes will be reflected by updating this page and the effective date above. Continued use of the Services after changes indicates acceptance of the updated Policy.

14. Contact

Privacy questions or requests can be sent to [email protected].