Introduction
SphereServer.eu (“SphereServer,” “we,” “us,” or “our”) operates as a community-driven wiki and script-sharing platform for Sphere emulator development.
This Privacy Policy explains how we collect, use, and protect personal data in accordance with the General Data Protection Regulation (GDPR – Regulation (EU) 2016/679) and applicable EU data protection laws.
By using our Services, you acknowledge this Privacy Policy.
Personal Data We Collect
We collect only data necessary to operate the platform.
Account Registration (Standard Registration)
When creating a local account, we collect:
Username
Email address
Encrypted password hash
Registration date/time
IP address at registration
Login via OAuth (Google, Facebook, GitHub)
Users may choose to log in using third-party authentication providers:
Google LLC
Meta Platforms, Inc. (Facebook)
GitHub, Inc.
When you log in using OAuth, we may receive the following data from the provider:
Your public profile name
Email address
Provider-specific user ID
Authentication token (used only for login verification)
We do not receive your password for these services.
Purpose of OAuth Data
OAuth data is used solely to:
Authenticate your identity
Create or link your SphereServer.eu account
Allow secure login
We do not post to your social accounts.
We do not access your contacts.
We do not access private data beyond basic identity information.
Legal Basis (GDPR Art. 6)
Processing OAuth data is based on:
Art. 6(1)(b) – Performance of a contract (providing account access)
Art. 6(1)(f) – Legitimate interest in secure authentication
User-Generated Content
When you:
Edit wiki pages
Upload scripts
Post comments
We store:
Submitted content
Associated username
Timestamp
IP address (for abuse prevention)
Wiki edit histories are retained for transparency and security.
Technical Log Data
When visiting the site, servers may log:
IP address
Browser type/version
Date and time of request
Pages accessed
This data is used exclusively for:
Security
Abuse prevention
System integrity
We do not perform behavioral tracking or profiling.
Cookies Policy
SphereServer.eu uses only strictly necessary cookies.
We do not use:
Analytics cookies
Marketing cookies
Tracking cookies
Advertising cookies
Necessary Cookies
Necessary cookies are used for:
User login sessions
OAuth authentication state
Session security
CSRF protection
Without these cookies, account login would not function.
Legal Basis
Under EU ePrivacy rules, strictly necessary cookies do not require consent when essential for providing a service explicitly requested by the user (e.g., logging into an account).
OAuth and Cookies
When using Google, Facebook, or GitHub login:
Temporary authentication cookies may be set during the login process.
These are required for secure identity verification.
They are not used for tracking or advertising.
Third-party providers may set their own cookies according to their privacy policies when you interact with their login systems.
We encourage users to review:
Google Privacy Policy
Facebook Privacy Policy
GitHub Privacy Statement
Data Retention
We retain data only as long as necessary.
Account data: retained while account is active.
Wiki contributions: retained indefinitely for documentation integrity.
Log data: retained for a limited security period.
Account Deletion by Users
Users may delete their own accounts directly from their account settings page.
When an account is deleted:
Personal account data is permanently removed or anonymized.
OAuth connections are revoked.
Email address is deleted.
Authentication tokens are invalidated.
Treatment of Contributions After Deletion
Because SphereServer.eu operates as a collaborative wiki:
Public contributions may remain in the edit history.
Your username may be replaced with an anonymized identifier.
We will not display your email or personal data publicly.
If additional erasure is legally required, you may contact us.
Legal basis for retaining anonymized contributions:
Art. 6(1)(f) – Legitimate interest in maintaining documentation integrity.
Data Sharing
We do not sell personal data.
We do not share data for advertising.
Data may be shared only:
With hosting providers under data processing agreements.
With OAuth providers during authentication.
If legally required by court or law enforcement.
International Data Transfers
OAuth providers such as Google, Meta (Facebook), and GitHub may process data outside the EU.
Where transfers occur, appropriate safeguards are applied, including:
Standard Contractual Clauses (SCCs)
EU adequacy decisions where applicable
Data Security
We implement:
HTTPS encryption
Secure OAuth implementation
Password hashing
Restricted server access
Monitoring for abuse
No system is completely secure, but we take reasonable measures to protect data.
Your GDPR Rights
You have the right to:
Access your personal data (Art. 15)
Rectify inaccurate data (Art. 16)
Erase your data (Art. 17)
Restrict processing (Art. 18)
Data portability (Art. 20)
Object to processing (Art. 21)
You may exercise most rights directly via your account settings or by contacting: admin@sphereserver.eu
Right to Lodge a Complaint
You may lodge a complaint with your local EU Data Protection Authority if you believe your rights have been violated.
Children’s Privacy
SphereServer.eu is not intended for children under 16.
We do not knowingly collect data from minors without parental consent.
Automated Decision-Making
We do not use:
Automated profiling
Automated decision-making with legal or significant effects
Changes to This Privacy Policy
We may update this Privacy Policy.
Changes take effect upon publication on sphereserver.eu.
Contact
If you have questions or concerns about Privacy Policy, please contact us at the following email address: admin@sphereserver.eu