PRIVACY

Privacy Framework

Scarletor implements a minimal data collection architecture designed to balance operational requirements with user privacy. This Privacy Policy details our data practices with technical precision and complete transparency.

Data Minimization Principle

We adhere to strict data minimization protocols, collecting only information essential for platform operation. This approach reduces privacy risk while maintaining functionality. Unlike platforms that extract maximum data, we extract minimum data.

Information Collection Categories

Local Storage Data: Age verification status is stored in browser localStorage as a boolean flag. This data never transmits to our servers, remains on your device indefinitely until manually cleared, and contains zero personally identifiable information.

Technical Logs: Server infrastructure automatically records standard web server data including IP addresses, user agents, request timestamps, HTTP status codes, and referrer URLs. This data serves security monitoring and technical troubleshooting purposes exclusively.

Explicitly Not Collected: No registration data (names, emails, passwords). No payment information (cards, accounts, billing addresses). No behavioral tracking data. No advertising identifiers. No biometric information. No location data beyond what IP addresses inherently reveal.

Data Utilization

Collected data serves narrowly defined purposes:

• Security: Identifying threats, preventing abuse, maintaining platform integrity
• Performance: Optimizing loading times, identifying bottlenecks, improving responsiveness
• Compliance: Meeting legal age verification requirements
• Diagnostics: Troubleshooting technical issues, debugging errors

We do not utilize data for advertising, marketing, profiling, or commercial purposes beyond operating Scarletor. No data sales, rentals, or third-party sharing occurs.

Storage Mechanisms

localStorage implementation provides privacy advantages over traditional cookies. Data persists exclusively on user devices, never synchronizes to servers, resists cross-site tracking, and remains under complete user control through browser settings.

Users can inspect localStorage contents via browser developer tools (F12 > Application > Local Storage) or clear it through standard browser privacy controls.

Third-Party Integration

Scarletor maintains a zero third-party integration policy. No analytics platforms, advertising networks, social media widgets, or external tracking scripts operate on our platform. Games execute entirely client-side without external server communication.

Footer links to responsible gaming organizations (GambleAware, GamCare, Gambling Therapy) represent the sole external connections. Clicking these links exits our platform and subjects users to external privacy policies.

Security Infrastructure

We implement defense-in-depth security architecture including transport layer encryption (TLS 1.3), secure HTTP headers, regular security audits, access control systems, and automated threat detection. However, absolute security remains impossible; we acknowledge residual risk while minimizing it through industry best practices.

User Rights

Users maintain comprehensive control over their data:

• Access: Inspect localStorage via developer tools
• Deletion: Clear browser storage to remove all local data
• Control: Configure browser privacy settings per preference
• Opt-Out: Discontinue platform use to terminate data generation

Minor Protection

Scarletor prohibits access by individuals under 18. We do not knowingly collect data from minors. Discovery of underage access triggers immediate termination and data deletion protocols. Parents and guardians must implement technical controls (parental filters, supervised browsing) to restrict minor access to age-inappropriate content.

International Operations

Scarletor operates globally. Users accessing from non-domestic jurisdictions acknowledge that data processing may occur across borders subject to varying legal frameworks. Platform use constitutes consent to such international transfers.

Retention Policies

localStorage data persists until user-initiated deletion. Server logs maintain retention for operational necessity periods (typically 90-180 days) before automated purge cycles execute deletion.

Policy Modifications

We reserve rights to update this Privacy Policy. Changes take effect upon publication with updated "Last Modified" timestamps. Significant modifications trigger prominent platform notifications. Continued use post-modification constitutes acceptance of revised terms.

Last Updated: October 2025