PxPlace is operated by Wraith (wth.gg), the data controller for the purposes of UK GDPR. This policy explains what I collect, why, what the lawful basis is, and your rights. I try to collect the minimum needed to run PxPlace.
What I Collect
- OAuth identity: when you log in I request only the minimum needed to identify you: a stable user ID, your display name or username, and (where the platform provides one) an avatar. From Google and Microsoft I also receive your email so you can be contacted about your account. I never request access to your posts, friends, contacts, messages, repositories, games, or any other data on these platforms. Not every provider is enabled on every deployment; only those shown on the login dialog are available.
- Your handle: the unique public name you pick during onboarding. Shown next to every pixel you place. Visible to anyone who inspects one of your pixels.
- Per-account visibility: for each linked OAuth provider, whether you've chosen to show that platform on your pixels (toggleable in Settings).
- Pixel placements: the coordinate, colour, timestamp, and whether the placement was free, monthly, or permanent. Each placement is linked to your internal account ID. For monthly and permanent placements, an optional public message (up to 140 characters) that you've typed in the placement form is stored alongside the pixel and shown to anyone who inspects it.
- Reports: when you report a pixel I store the reporter's account ID (so I can follow up if needed), the reason, an optional short description, the reported coordinate, and timestamps. Reports are only visible to admins.
- Purchases: Polar order ID, amount paid, and timestamp. Card details are never sent to my servers; Polar processes payment and sends a webhook confirming completion.
- Sessions: when you log in I create a session and record the device or browser you used and the IP address it came from. You can review and revoke your active sessions from Settings at any time.
- Operational data: your IP address, basic request information, and short-lived bot-challenge tokens are used to keep the service running and prevent abuse. Server logs of errors and payment events are retained for a short period.
- Cookies: I only use cookies that are strictly necessary to run the service: one to keep you signed in, and a small number of short-lived cookies used during the login flow to protect against cross-site request forgery. I do not use any analytics, tracking, or advertising cookies.
How I Use It
- To show your handle and connected platforms when other users inspect your pixels.
- To enforce the per-account accrual interval, credit balance, and pixel lock durations.
- To detect and stop abuse, including by rate-limiting per IP and per session.
- To process and audit your purchases.
- To let you review and revoke your active sessions from Settings.
Lawful Basis (UK GDPR)
- Contract: processing OAuth identity, handle, sessions, and pixel placements is necessary to provide the service you've requested.
- Contract / legal obligation: processing purchase records is necessary to fulfil the sale and to meet tax/accounting law.
- Legitimate interests: rate limiting, recording the IP and device of each session, and the bot-challenge step at login are used to keep the service available and prevent abuse. You can object via the contact route below.
Third Parties
I do not sell personal data, and I do not share it with anyone except as listed above and where strictly necessary to run the service.
Where the Data Lives
Application data is stored on servers located in the United Kingdom. Operational metadata such as IP addresses and request logs may be processed by infrastructure providers at locations outside the UK and EEA. Where transfers outside the UK take place I rely on the appropriate safeguards under UK GDPR (such as the UK International Data Transfer Agreement or adequacy regulations).
Retention
- Pixel placements and your handle: kept indefinitely so the canvas remains attributable, or until you delete your account (see below).
- Purchase records: kept for at least 6 years after the purchase to comply with UK tax law.
- Sessions: 30 days of inactivity, then expire automatically. Revoked sessions are removed immediately.
- IP rate-limit entries: a few seconds to a few hours, depending on the action.
- Server logs: rolling, typically retained for up to 30 days.
Account Deletion
You can delete your account at any time from Settings > Delete Account. When you do:
- Your handle, linked OAuth accounts, sessions, and credits are deleted immediately.
- Purchase records linked to you are deleted from PxPlace, although Polar retains its own copy for its own legal obligations.
- Pixels you placed remain on the canvas but become anonymised. Other users will see "Anonymous" instead of your handle when inspecting them. The placement timestamp, colour, and any message you attached stay, since they're part of the canvas state.
- Reports you filed are anonymised so they're no longer linked to you, but the report itself stays in the moderation log.
- Unused credits cannot be refunded.
Your Rights
Under UK GDPR you have the right to:
- Access the personal data I hold about you.
- Correct inaccurate data.
- Delete your data (the Delete Account flow exercises this for most of it; contact me for anything that the self-service flow doesn't cover).
- Restrict or object to processing based on legitimate interests.
- Receive a copy of your data in a portable format.
- Lodge a complaint with the UK Information Commissioner's Office (ico.org.uk) if you think I've handled your data unlawfully.
Children
PxPlace is not directed to children under 13. If you become aware that a child under 13 has provided personal data, contact me and I'll delete it.
Changes to This Policy
If I make material changes I'll update the "Last updated" date at the top of this page. Continued use after the change is taken as awareness of the revised policy.
Contact
Data requests, questions, or complaints: wth.gg.