Effective Date: 1 September 2025
Mythralis (“we,” “us,” “our”) is committed to protecting your privacy and safeguarding your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website, forums, and community services. We comply fully with the UK General Data Protection Regulation (UK GDPR), the EU General Data Protection Regulation (EU GDPR), and all applicable data protection legislation.
This Privacy Policy applies to all users of Mythralis, including registered members, moderators, and visitors. By creating an account or participating in the community, you agree to the terms of this policy.
We believe in data minimisation and only collect what is strictly necessary to operate and protect the community.
Account Data:
Email address (required for registration, login, password resets, account management, and moderation).
Username/display name (chosen by you).
Password (encrypted, never visible to us).
Optional Profile Data:
Avatar image, biography, or creative details such as “character name.”
Any information you choose to add to your profile is voluntary and may be visible to other members.
Community Content:
Posts, comments, artwork, writing, or roleplay contributions that you voluntarily share in public forums or private groups.
Technical Data:
We do not actively track or profile IP addresses. However, basic server logs may temporarily capture IP addresses for security and anti-abuse purposes (e.g., preventing spam or distributed denial of service attacks). These logs are short-term, not used for tracking, and automatically deleted.
We do not collect sensitive categories of data (e.g. health, political beliefs) unless you explicitly and voluntarily choose to disclose them in public forums.
Your personal data is used only for the following purposes:
Account Management: Creating and maintaining your account, allowing you to log in, and enabling password resets.
Community Participation: Allowing you to post, comment, and share in public or private forums.
Moderation: Ensuring community safety, enforcing our Code of Conduct, and, if necessary, banning accounts that violate rules.
Essential Communications: Sending you account-related notifications (e.g., ban notices, security alerts, major policy changes).
Security: Preventing abuse, fraud, and unauthorised access.
We do not sell, trade, or rent your data. We do not use your data for targeted advertising, profiling, or automated decision-making.
We process your data under the following lawful bases:
Contractual necessity: to provide you access to the Mythralis platform.
Legitimate interests: to maintain a safe, creative community (including moderation).
Consent: for optional profile information or public sharing of artwork, writing, or roleplay.
Legal Requirements: Where required by law, court order, or regulatory authority.
Community Visibility: Any profile information or posts you choose to make public are visible to other members.
Membership is only available to individuals aged 16 and above, in line with GDPR requirements.
Access to age-restricted sections of the site (e.g. mature roleplay forums) is limited to members 18 and above.
We do not knowingly collect data from children under 16. If we discover such accounts, they will be deleted.
Active accounts: We retain your email and account data for as long as your account is active.
Deleted accounts: When you delete your account, your personal data is erased within 30 days. Forum posts may remain visible, but can be anonymised upon request.
Banned accounts: For community safety, we may retain the associated email address indefinitely to prevent re-registration for abusive purposes.
Membership is only available to individuals aged 16 and above, in line with GDPR requirements.
Access to age-restricted sections of the site (e.g. mature roleplay forums) is limited to members 18 and above.
We do not knowingly collect data from children under 16. If we discover such accounts, they will be deleted.
We employ strong security measures to protect your data:
Encrypted password storage (never stored in plain text).
HTTPS encryption across the site.
Access controls limiting who can access account data.
Regular software updates and security monitoring.
No system is perfectly secure. We encourage members to use strong, unique passwords and report any suspicious activity immediately.
We use essential cookies to keep you logged in and maintain site functionality.
We do not use tracking cookies for advertising or profiling.
Any analytics we use are anonymous and aggregate only.
If we use hosting or service providers outside the UK/EU, we ensure your data is protected by legally approved safeguards such as Standard Contractual Clauses.
Under UK and EU GDPR, you have the right to:
Access your personal data.
Rectify inaccuracies.
Request deletion (“right to be forgotten”).
Restrict or object to processing.
Port your data to another service.
Withdraw consent (for optional profile information).
File a complaint with the ICO (UK) or your local EU Data Protection Authority.
To exercise your rights, contact us. We will respond within 30 days.
Please remember that anything you share in public forums or groups is visible to others. You are responsible for the content you choose to make public. If you wish to remove content, you may edit or delete your posts, or contact a moderator.
We may update this Privacy Policy from time to time. When changes are significant, we will notify members via email or site announcement. The “Effective Date” above will always reflect the latest version.
If you have questions, concerns, or requests about your data, please contact us using the contact section of this site.