Privacy Policy

We collect the following types of information:

• Account Information: Email address, display name, and authentication data when you create an account via OAuth (Google, Discord, or GitHub).
• Campaign Data: All content you create within Grimoire, including NPCs, locations, factions, items, wiki pages, and other campaign materials.
• Usage Data: Information about how you interact with our service, including features used, pages visited, and session duration.
• Technical Data: IP address, browser type, device information, and other technical identifiers.
• Payment Information: When you subscribe to a paid plan, payment processing is handled by Stripe. We do not store your full credit card information.

We use your information to:

• Provide, maintain, and improve Grimoire services
• Process your subscription and payments
• Send service-related communications (account updates, security alerts)
• Respond to your support requests and inquiries
• Analyze usage patterns to improve the product
• Protect against fraud and abuse

We do not sell your personal data to third parties.

Your data is stored on secure servers with industry-standard encryption. Campaign content is stored in PostgreSQL databases with regular backups. We implement appropriate technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction.

All data transmission is encrypted using TLS/SSL protocols.

Grimoire offers integration with AI assistants via the Model Context Protocol (MCP). Connections are authorized through an OAuth 2.1 flow you control: when you click "Connect" inside an AI client (such as Claude.ai), the client opens a Grimoire consent screen where you sign in, choose a single campaign to expose, and explicitly approve the connection before any data is shared.

What the AI sees:

• Only the one campaign you selected on the consent screen — never your account-wide data, never other campaigns you own.
• Within that campaign, the AI is bound by the same visibility rules your players are. DM-only content stays hidden when a player token is in use; only Game Master tokens can read or modify campaign data.
• Read-only or write access depends on the scopes you approved (currently mcp:read and/or mcp:write).

What we transmit and store:

• The AI client receives short-lived access tokens (15-minute lifetime) and a refresh token. These are issued by Grimoire and bound to the specific campaign you approved.
• We do not store AI conversation history, prompts, or responses on our servers. Grimoire receives tool calls from the AI (e.g., "get NPC X") and returns the requested data; the AI's reasoning happens entirely on the AI provider's infrastructure under your subscription with them.
• We log audit metadata about tool calls (timestamp, tool name, campaign id) for security and debugging. We do not log the tool's response content.

Revoking access:

• You can disconnect Grimoire from your AI client at any time. The client's refresh token is revoked, and within 15 minutes the active access token expires too.
• You can revoke any specific AI client's access from your Grimoire account settings.
• If you ever suspect a token has leaked, contact us and we can revoke all currently-issued tokens for your account.

Third-party AI providers:

• When you connect an AI client (such as Claude), that provider's privacy policy governs how they process the campaign content you send them. Grimoire does not control the AI provider's data handling.
• Grimoire is a Resource Server in this exchange — we deliver data the AI client requests; we are not a party to the AI's training or telemetry on your prompts.

We retain your data for as long as your account is active. If you delete your account:

• Your campaign data will be deleted within 30 days
• Some anonymized usage data may be retained for analytics
• Backup copies may persist for up to 90 days before automatic deletion

You can export your data at any time from your account settings.

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data
• Export: Download your data in a portable format
• Objection: Object to certain processing of your data

To exercise these rights, contact us at privacy@ttrpg.bot.

We use essential cookies for authentication and session management. We use minimal analytics to understand product usage. You can control cookie settings in your browser.

Grimoire is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn we have collected such information, we will delete it promptly.

We may update this privacy policy from time to time. We will notify you of significant changes via email or in-app notification. Your continued use of Grimoire after changes constitutes acceptance of the updated policy.

For privacy-related questions or concerns, contact us at:

Email: privacy@ttrpg.bot