Privacy Policy

This privacy policy explains how Remote Duel Brotherhood ("RDB", "we", "us") collects, uses and protects your personal data when you use our tournament platform.

What Data We Collect

We collect the following information when you use our platform:

• Account information - your name, email address, and Discord username (provided during registration)
• IP addresses - logged automatically for security and ban enforcement purposes
• Deck submissions - the decklists you submit for tournaments
• Match results - win/loss records, scores, and game outcomes
• Tournament participation - which events you sign up for and your standings

Why We Collect It

Your data is used for the following purposes:

• Platform functionality - running your account, letting you sign up for events and submit decks
• Tournament management - pairings, standings, brackets, and tiebreaker calculations
• Leaderboard and statistics - ELO ratings, win rates, archetype tracking, and meta analysis
• Security - IP-based bans, fraud prevention, and protecting the integrity of tournaments

Legal Basis (GDPR)

We process your data under the following legal bases as defined by the General Data Protection Regulation (GDPR):

• Consent (Art. 6(1)(a)) - when you create an account, you consent to the processing of the personal data you provide
• Legitimate interest (Art. 6(1)(f)) - IP address logging and security measures are based on our legitimate interest in maintaining a safe and fair platform

How Long We Store Data

• Account data - stored as long as your account exists. If you delete your account, your personal data is removed
• IP addresses in audit logs - retained for a maximum of 12 months, then automatically deleted
• Tournament and match data - stored indefinitely as part of the public tournament record (standings, results, deck usage statistics)

Third Parties

We use the YGOProDeck API to display card images and card data on the platform. When card images are loaded, your browser makes requests directly to YGOProDeck's servers.

We do not sell, rent, or share your personal data with any other third parties.

Your Rights

Under the GDPR, you have the right to:

• Access - request a copy of the personal data we hold about you
• Rectification - ask us to correct inaccurate data
• Deletion - ask us to delete your personal data
• Portability - request your data in a structured, machine-readable format

To exercise any of these rights, please contact us at the address below.

Cookies

We only use essential session cookies to keep you logged in and to protect against cross-site request forgery (CSRF). We do not use any tracking cookies, analytics cookies, or advertising cookies.

Contact

If you have any questions about this privacy policy or want to exercise your data rights, you can reach us at:

info@secweb.me