Privacy policy

Essentials

NosRaids stores the minimum needed for the app to work. We don't sell data, we don't ship third-party analytics, we don't use tracking cookies. This page explains in detail what we keep and why.

What we store

When you sign in with Discord, we copy to our database:

• Your Discord ID (unique opaque identifier)
• Your Discord username and avatar (to show them in your profile)
• Your email (session only — never shown to other users)
• Your locale (es/en) for the UI language

We also keep the characters you register, the events you create or join, and your per-raid custom templates.

How we use the data

• Session: your Discord ID identifies your account across logins
• UI: your username and avatar appear in your own menu and, if you make your profile public, in events you sign up to
• Notifications: if you opt into Web Push, we send a silent message to the browser when something happens in your event
• Email: NEVER shown to other users, no newsletters

What gets shared publicly

By default, NOTHING. Your profile starts private. Your characters start private.

If you decide to make your profile public (toggle in /me/edit), raid leaders can see your display name and avatar. If you make your characters public, they can peek at them to see if they fit their events.

Third parties (subprocessors)

• Supabase — database and authentication (EU)
• Vercel — hosting (EU)
• Sentry — production error capture (sensitive data redacted before send)
• Discord — only for OAuth login and to send embeds to webhooks you configure

Your rights

• Access: contact us and we'll hand you a JSON copy of everything we have on you
• Rectification: edit your profile and characters from the UI
• Deletion: contact us and we'll wipe your account and all associated data within 7 days
• Portability: the JSON export doubles as portability format

Contact

For any request (access, deletion, complaint): direct message on Discord.