DepthCoreSign in

Legal · Privacy

Privacy Policy

Last updated: April 13, 2026

Short version: we collect what we need to run your account and route your game traffic. We never see your card number — Stripe handles payments. We don’t sell your data, we don’t run ads, we don’t track you across the web. You can email us any time to see, correct or delete what we hold.

This page explains what DepthCore Desenvolvimento Ltda (“DepthCore”) does with your personal data when you use our website or our service. We follow the Brazilian General Data Protection Law (LGPD, Law 13.709/2018). If you are in the EU or UK, we also honor the rights given to you by the GDPR.

Who is responsible for your data

Company
DepthCore Desenvolvimento Ltda
CNPJ
66.158.308/0001-78
Address
R. Beethoven, 2053, Santa Catarina, Caxias do Sul/RS, CEP 95032-670, Brazil
Write to us
contact@deepthcore.com

What we collect and why

We only ask for what we actually need. Everything below has a clear purpose — nothing is collected “just in case”.

Things you give us

  • Your account — the email and username you sign up with, and the password you choose. Passwords are scrambled before they reach our database, so not even our team can read them.
  • Your payment — when you subscribe, Stripe takes the card details directly. We never see your card number or security code. We do keep the basic billing info Stripe sends back (your name, email, country) so receipts and invoices match.
  • Your messages — anything you write to us by email when you ask for help.

Things we notice automatically

  • Visit data — your IP, the browser and device you used, and the pages you opened. Every website sees this; we use it for security and to fix bugs.
  • Game session data — while the client is running, we measure latency, jitter and packet loss for your session so we can pick a better route and show your stats in the dashboard. We don’t record what you do in the game itself.
  • One cookie — the one that keeps you signed in. No ad cookies, no cross-site tracking.

Why the law lets us do this

Under the LGPD, every use of your data needs a reason. Here are ours:

  • Running your account and charging your subscription — this is the contract you have with us (LGPD art. 7, V).
  • Keeping records the tax office requires — receipts and invoices fall under Brazilian tax and consumer law (LGPD art. 7, II).
  • Preventing fraud and keeping the service stable — the standard “legitimate interest” basis (LGPD art. 7, IX).
  • Marketing email — only if you ask for it. Your consent, which you can withdraw any time (LGPD art. 7, I).

Who else touches your data

A short list of trusted companies we rely on to run the service. Each one signs an agreement that binds them to protect your data:

  • Stripe — handles all payments. They see your card details; we never do.
  • Vercel — hosts the website and the API.
  • Turso — hosts the database that keeps your account records.
  • Resend — sends transactional emails, like receipts and password resets.

We don’t sell your data. We don’t share it with advertisers. If a court or regulator sends a valid order, we hand over the minimum the law requires — nothing more.

Sending data outside Brazil

Some of the providers above run their servers outside Brazil. That’s normal for internet services. When we transfer your data abroad we use the safeguards the LGPD allows (art. 33), including contracts that hold the provider to the same standard.

How long we keep things

  • Your account — for as long as you use it, and up to 60 days after you delete it (that’s how long our backups roll over).
  • Receipts and invoices — five years after the end of the tax year, which Brazilian tax law requires.
  • Server logs — up to six months, for security and debugging.
  • Support conversations — up to two years after our last reply, so we can look things up if you write again.

Your rights — what you can ask us to do

You can write to us any time and ask us to:

  • show you everything we hold about you;
  • fix anything that’s wrong;
  • delete data we don’t actually need, or all of it when you close your account;
  • send your data to another service in a readable format (portability);
  • tell you which outside companies we shared your data with;
  • take back any consent you gave, any time.

Send those requests to contact@deepthcore.com. We reply within fifteen days. If we get it wrong, you can also complain to the ANPD, the Brazilian data protection authority. (These rights come from LGPD art. 18.)

How we protect your data

All traffic to and from the site runs over an encrypted connection. Passwords are one-way scrambled before they hit the database. Access to account records is limited to the people who need it to run the service. If something goes wrong and your data is put at real risk, we’ll tell you, and we’ll tell the ANPD, without waiting — the LGPD requires that and so do we.

No online service can promise perfect security. What we promise is to take it seriously and to be honest with you when something breaks.

Kids

The service isn’t made for kids under 13, and not for any minor without a parent involved. If you believe we accidentally collected data from a child, write to us and we’ll delete it.

When this page changes

We update this page when our practices or the law change. The “Last updated” date at the top always reflects the current version. If the change is big enough to matter to you, we email.