Your data

Shadow will only ever store the bare-minimum data needed for the site to function. We are not interested in knowing any more about you than absolutely necessary.

We do not and will never track you, attempt to identify or de-anonymize you, or sell any of your data to any third-party.

1. Discord ID — Used to authenticate you when logging in.
2. Discord access token — Used to retrieve information about you from Discord (see below).
3. Discord servers on Shadow — Servers you are in that the server-owner has onboarded to Shadow. We do not store your full server list.
4. Discord roles on Shadow — Roles you have that a server-owner has onboarded to Shadow. We do not store your full role list.
5. Site Data — Data you create on or otherwise contribute to the site. Images, reactions, comments, etc.

1. All Discord servers you're in — We immediately filter out any servers that are not onboarded to this website. We do nothing with nor store your server list. It is only used when 1. you log in (to sync your account), or 2. a server owner onboards a new server to Shadow that you are a member of.
2. All your roles in a Discord server — We immediately filter out any roles that are not onboarded to this website (see above). It is only used when 1. you log in (to sync your account), or 2. a server owner onboards a server you are a member of.

Shadow currently uses three third-parties:

1. Discord — Authentication and authorization are powered by Discord (account creation, login, and roles).
2. Hetzner — Our webhost. The box is in a datacenter in Ashburn, Virginia, United States.
3. Cloudflare — CDN, DNS, and DDoS protection (and some small other things).

Shadow will retain your data unless:

1. You stop using Shadow — If you do not use Shadow for 2 years (based on last login date), or
2. You delete your account — You use the 'Delete Account' button found in your account settings, or
3. Shadow shuts down — If Shadow ceases operation for any reason, all site data will be erased.

These actions are permanent and cannot be undone.

1. Encryption at rest — The primary Shadow database and all its logs are encrypted at rest using AES with a key rotated at least annually.
2. TLS — All your connections to Shadow are encrypted using TLS v1.2 or greater (proxied through Cloudflare).
3. Limited access — Shadow is operated by one person. No one else has access to the webserver, the database, or any other technical components.
4. Minimal logs — Shadow stores as few operational logs as possible (to identify and fix issues/bugs) and does not intentionally track activity on the site. Operational logs are deleted regularly.
5. Third-party Auth — Shadow does not store account passwords; that is handled by Discord.