Privacy Policy

Last updated: 18 May 2026

1. Who We Are

Conspirita is a campaign intelligence tool for Dungeon Masters, operated by Jeremy Roberts (“we”, “us”, “our”). If you have questions about this policy, contact us at jeremy.e.roberts@gmail.com.

2. Data We Collect

Account data

When you sign up, we collect your email address and a hashed password, or OAuth tokens if you sign in with Discord. We do not store your raw password.

Campaign content

Everything you create inside Conspirita — worlds, campaigns, factions, NPCs, party members, locations, relationships, and uploaded portrait images — is stored so the app can serve it back to you.

Usage data

Standard web server logs (IP address, browser type, pages visited, timestamps) are collected automatically by our hosting provider.

3. How We Use Your Data

  • To create and maintain your account
  • To store and display your campaign data
  • To send account-related emails (e.g. password reset)
  • To improve the service

We do not sell your data to third parties, use it for advertising, or share it with anyone except the sub-processors listed below.

4. AI Features

When you use the AI generation features (faction generator, NPC generator, logo generator, prose importer), the text you provide is sent to the Anthropic API to generate a response. Anthropic’s privacy policy governs how they handle that data. We recommend not including real personal information about real people in AI generation prompts.

5. Sub-processors

We rely on the following third-party services to operate Conspirita:

  • Supabase — database, authentication, and file storage
  • Vercel — application hosting and edge delivery
  • Anthropic — AI text generation (premium features only)

6. Cookies & Storage

We use cookies solely for authentication — to keep you signed in across page loads. We do not use tracking cookies or third-party analytics cookies.

7. Data Retention

Your data is retained for as long as your account exists. If you delete your account, all associated campaign data is permanently deleted from our database within 30 days. Backups may persist for a short additional period as part of normal database operations.

8. Your Rights

You may request access to, correction of, or deletion of your personal data at any time by emailing jeremy.e.roberts@gmail.com. We will respond within 30 days.

If you are located in the EEA or UK, you have additional rights under GDPR / UK GDPR including the right to data portability and the right to lodge a complaint with a supervisory authority.

9. Children

Conspirita is not directed at children under 13. We do not knowingly collect personal data from anyone under 13. If you believe we have inadvertently collected such data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this policy from time to time. When we do, we will update the “Last updated” date at the top. Continued use of Conspirita after changes constitutes acceptance of the revised policy.