Everlin UniversityEverlinUniversity|ChastiDrill

Privacy Policy

Last updated: 2026-05-12

This Privacy Policy explains what information we collect when you use ChastiDrill, how we use it, and the choices you have. We design ChastiDrill to collect as little personal information as is practical for running an adult roleplay service.

1. Information we collect

  • Account data: email, hashed password (via Supabase Auth), display name / nickname.
  • Service data: lock sessions, KeyShare links, University enrolments and task submissions (text, uploaded images), roulette configuration. This data is necessary to operate the features you choose to use.
  • Analytics events: page views, sign-ups, conversions, and similar in-app events stored in a separate analytics database. We do not sell this data.
  • Technical data: IP address (transiently, at the edge), user-agent, language, approximate locale and referrer.
  • Cookies & local storage:Supabase session cookies, the age & agreement acknowledgement (stored in localStorage), language preference. No third-party advertising cookies are set without your action.

2. How we use it

  • To provide the Service and the features you request (locks, KeyShare, University, etc.).
  • To send transactional and reminder emails you have opted into; you can unsubscribe at any time via the link in those emails.
  • To detect and prevent abuse, fraud, and underage access.
  • To compute aggregate, non-identifying product metrics.

3. Legal bases (EEA / UK users)

We process personal data under the legal bases of (a) performance of a contract with you, (b) our legitimate interest in operating, securing, and improving the Service, and (c) your consent, where consent is required (e.g. marketing emails).

4. Sharing

We do not sell your personal data. We share data only with service providers strictly necessary to run the Service:

  • Supabase (database, authentication, storage)
  • Vercel (hosting, edge logs, web analytics)
  • Email delivery providers (transactional and report emails)
  • Law enforcement, where we are required to do so by valid legal process

5. Retention

We retain account data for as long as your account exists. KeyShare links and University submissions are retained while relevant to the feature, and otherwise as needed to enforce these Terms or comply with law. You can request deletion at any time (see Section 7).

6. Security

We use industry-standard practices: TLS in transit, password hashing via Supabase Auth, row-level security on the database, and least-privilege service role access. No system is perfectly secure; if we discover a breach affecting you, we will notify you as required by applicable law.

7. Your rights

Depending on where you live, you may have the right to access, correct, export, restrict, or delete your personal data, and to object to certain processing. To exercise any of these rights, email support@chastidrill.app from the address on your account. We will respond within the time required by applicable law.

8. International transfers

The Service is hosted on infrastructure that may transfer data outside your country of residence, including to the United States and the European Union. By using the Service, you consent to such transfers.

9. Children

The Service is for adults only. We do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us with personal information, contact us immediately so we can remove it.

10. Changes

We may update this Policy from time to time. Material changes will be indicated by updating the “Last updated” date at the top of this page.

11. Contact

Privacy questions or requests: support@chastidrill.app.