Privacy Policy
Last updated: March 5, 2025
Scope of This Policy
This service is operated by Bliptext. We serve an international audience. Data is processed on servers located in the United States, and our content and services are available to users worldwide.
1. Information We Collect
1.1 Account Information
- Basic profile data from your authentication provider (name, avatar)
- Email address from your authentication provider
- Account creation and modification timestamps
- Authentication provider used
Usernames and profile data are directly sourced from your authentication provider (e.g., Google, Discord). We do not allow edits to this information to preserve attribution integrity. To update your username or email, modify them via your authentication provider account.
1.2 Authentication Data
- Login timestamps and provider used
- Last login IP address for security
1.3 Content Data
- Article text content and revision history
- Specific word changes and edit positions
- Collaboration timestamps and contributor IDs
1.3 Technical Data
- IP addresses for security monitoring
- Browser/device information (user agent)
- Session tokens and authentication timestamps
2. How We Use Data
We process personal data to:
- Fulfill contractual obligations (e.g., delivering core editing functionality, maintaining revision history).
- Pursue legitimate business interests (e.g., preventing abuse through IP analysis, securing accounts).
- Comply with legal requirements (e.g., retaining logs for security investigations).
All data processing is carried out on a lawful basis (e.g., consent, contract necessity, legitimate interest as applicable under GDPR).
Lawful Basis for Processing
We process data under:
- Contractual necessity: To provide wiki editing functionality
- Legitimate interests: Security monitoring, abuse prevention
- Legal obligations: Responding to lawful requests
3. Data Retention
3.1 Active Data
- User accounts: Deleted upon request
- Article edit history: Retained indefinitely for content integrity
3.2 Technical Logs & Tokens
- IP logs: Automatically deleted after 90 days
- Session tokens: Expire as defined by our system (e.g., after 30 days of inactivity).
- Auth tokens: Expire at the configured timestamp
- Verification tokens: Retained until their designated expiration time.
4. Data Sharing
- No sale of personal information
- Anonymous aggregate statistics may be shared
5. Your Rights
You have the right to:
- Request deletion of your personal data
For EU users, additionally you may:
- Request data correction: If your authentication provider data (e.g., email) is inaccurate, update it directly via your provider.
- Access personal data: For a copy of your processed data, please contact privacy@outpoot.com.
- Delete account: Removes all personal data except anonymized edit history (required for public interest).
- File complaints with EU authorities; find yours here.
Contact privacy@outpoot.com to exercise these rights.
Public Interest
User contributions (usernames, edits) are retained indefinitely under GDPR Article 17(3)(d) for archival purposes in the public interest. Attribution integrity is critical to maintaining a trustworthy collaborative platform.
6. Content Responsibility
- All content changes are automatically verified and filtered
- Your contributions are subject to our automated moderation system
- We maintain complete edit history and regularly review changes
- Our moderators actively monitor content and revision history
Historical Content Integrity
To maintain wiki integrity, account deletion will:
- Remove all personal identifiers (email, username)
- Retain anonymized edit history via user IDs
- Preserve article creation credits
We retain this non-personal data under GDPR Article 17(3)(a) - freedom of expression/information.
7. International Data Transfers
Data is stored in the United States using GDPR-approved safeguards including Standard Contractual Clauses.
Last Updated: March 5, 2025
Contact: contact@outpoot.com