Privacy Policy

We collect the following information when you use RollCall:

• Account information: email address, display name, and password (hashed).
• Profile information: bio, game systems, favourite factions, and avatar image (optional).
• Location data:postcode district (e.g. "NE1") and approximate coordinates for distance calculations. We never store or display your full postcode or exact address.
• Game activity: listings you create, games you join, ratings you give, and reports you submit.
• Technical data: IP address, browser type, and device information collected automatically for security and service improvement.

We use your data to:

• Provide and operate the RollCall platform.
• Match you with nearby players based on your postcode district.
• Calculate trust badges and reputation scores.
• Moderate content and handle reports.
• Send service-related communications (game confirmations, account notifications).
• Improve the platform through anonymised usage analytics.

We process your personal data under the following legal bases:

• Contract: processing necessary to provide you with the RollCall service.
• Legitimate interests: platform security, fraud prevention, and service improvement.
• Consent: where you opt in to optional communications or features.

We do not sell your personal data. We may share limited data with:

• Service providers:hosting (Vercel), authentication and database (Supabase), and payment processing (Stripe) — all under data processing agreements.
• Other users: your display name, postcode district, game systems, trust badge, and bio are visible on your public profile. Your email, phone number, and exact location are never shared.
• Law enforcement: if required by law or to protect the safety of our users.

We retain your account data for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where we are required by law to retain it. Anonymised game and rating data may be retained for platform statistics.

Under UK GDPR, you have the right to:

• Access the personal data we hold about you.
• Rectify inaccurate data.
• Request erasure of your data ("right to be forgotten").
• Restrict or object to processing.
• Data portability — receive your data in a machine-readable format.
• Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at privacy@rollcall.gg.

We use essential cookies to maintain your session and authentication state. We do not use advertising or tracking cookies. Third-party services we integrate with may set their own cookies as described in their respective privacy policies.

We implement appropriate technical and organisational measures to protect your data, including encryption in transit (TLS), secure password hashing, and role-based access controls. However, no system is completely secure, and we cannot guarantee absolute security.

RollCall is not intended for users under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

We may update this policy from time to time. We will notify registered users of material changes via email. The "last updated" date at the top of this page reflects the most recent revision.

For privacy-related enquiries, contact us at privacy@rollcall.gg.

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.