GeorgiaFrontier RP

Legal

Privacy Policy

Please read carefully. Questions can be sent to legal@georgiafrp.com.

1. Data Controller

Vexoris Development
Remote
Contact: legal@georgiafrp.com

2. What Data We Collect

At registration:

  • Username, password (stored as a salted hash, never in plain text)
  • First and last name (real name — used for Shop/billing purposes only, never displayed publicly)
  • Date of birth (used to determine eligibility for game server access; not displayed publicly)
  • Email address
  • Steam username, Steam ID, and Steam avatar (self-reported, resolved from a public profile URL you provide)
  • Discord ID, username, and avatar (obtained via Discord OAuth, which you authorize during registration)
  • Your acceptance timestamps for this Privacy Policy, Terms of Service, and Subscriber Agreement

Automatically collected:

  • IP address (hashed) and browser user-agent, for session security and abuse prevention
  • Login timestamps and basic account activity (for your own account history and security)

If you connect a FiveM identifier:

  • Your FiveM license identifier and/or Cfx.re platform ID, if you choose to add them under Account → Connections

If you use our support systems:

  • Content of any support tickets, bug reports, or player reports you submit

3. Why We Process Your Data (Legal Basis)

  • Creating and managing your account — Performance of a contract (you agreeing to these Terms)
  • Verifying your age for game server access — Legitimate interest / legal obligation to restrict access appropriately
  • Discord role sync for department/staff permissions — Performance of a contract
  • Responding to support tickets — Performance of a contract
  • Preventing fraud, abuse, and enforcing our rules — Legitimate interest
  • Sending you transactional emails (verification codes, password resets) — Performance of a contract

We do not process your data for marketing purposes without separate, explicit consent.

4. Who We Share Data With

We do not sell your personal data. We share limited data with:

  • Discord Inc. and Valve Corporation (Steam) — only to the extent necessary for the OAuth/profile-resolution features you initiate yourself.
  • Turso / SQLite hosting providers — our database infrastructure.
  • Cloudflare — for image/file storage and email routing.
  • Vercel — our website hosting provider.
  • Our FiveM game server hosting provider, which is based in the United States (see Section 5).

5. International Data Transfers

Our FiveM game server infrastructure is hosted in the United States. Where your data (such as session activity or connection logs) is processed there, we rely on [Standard Contractual Clauses / the hosting provider’s Data Privacy Framework certification] to ensure it receives equivalent protection to that required under GDPR.

6. How Long We Keep Your Data

  • Account data is retained for as long as your account remains active.
  • If you delete your account, we will erase your personal data within [X days], except where we are legally required to retain limited records (e.g., for fraud prevention or dispute resolution).
  • Support ticket records are retained for [X months/years] for quality and moderation history purposes.

7. Your Rights Under GDPR

You have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate data
  • Erase your data (“right to be forgotten”), subject to legal exceptions
  • Restrict or object to certain processing
  • Data portability — receive your data in a structured, machine-readable format
  • Withdraw consent at any time, where processing is based on consent
  • Lodge a complaint with your local data protection authority

You can exercise most of these rights directly via Account → Privacy, or by contacting legal@georgiafrp.com.

8. Children’s Data

Our services are not directed at children under 16. If you are between 16 and 17, you may hold an account with limited access (see our Terms of Service). We do not knowingly collect data from anyone under 16 without appropriate consent mechanisms. If you believe a user under 16 has registered, please contact us immediately.

9. Security

We use industry-standard practices to protect your data, including password hashing (argon2id), encrypted connections (HTTPS/TLS), and access controls limiting who on our team can view sensitive information. No system is 100% secure, and we cannot guarantee absolute security.

10. Cookies

See our separate Cookie Policy for details on the cookies we use.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via the Website or Discord.

12. Contact Us

Questions about this Privacy Policy or your data: legal@georgiafrp.com