Privacy Policy

1. Introduction, Definitions

"We" refers to the server administration of the Blockania.net network and all associated components. "UUID" refers to the Unique User Identification Number assigned by Minecraft. "Protocol Version" refers to the protocol version of the Minecraft client transmitted by the user. This allows determination of which Minecraft version the user is using. "Alt Account" means an alternative account of a user which has a different UUID and username than the user's main account but is still controlled by them. "Team member" is a user of the network who has been entrusted by the server administration with special tasks related to management, enforcement of the rules, or other responsibilities. Blockania.net stores various user data. In this privacy policy, we outline which data we store, why, and in what form.

1.1. Purpose of Processing

• Provision of contractual services and fulfillment of contractual obligations.
• Communication.
• Security measures.
• Organizational and administrative procedures.
• Feedback.
• Provision of our online services and user-friendliness.
• Information technology infrastructure.

1.2. Legal Basis

Consent under Art. 6(1)(a) GDPR: The data subject has given their consent to the processing of their personal data for one or more specific purposes. Contract performance and pre-contractual requests (Art. 6(1)(b) GDPR): Processing is necessary for the performance of a contract to which the data subject is a party or to take steps at the request of the data subject prior to entering into a contract. Legitimate interests (Art. 6(1)(f) GDPR): Processing is necessary for the purposes of the legitimate interests pursued by the controller or a third party, provided that such interests are not overridden by the interests or fundamental rights and freedoms of the data subject. In addition to the GDPR, national data protection laws in Germany apply. These include, in particular, the Federal Data Protection Act (BDSG), which contains specific regulations on the right to access, deletion rights, objection rights, processing of special categories of personal data, processing for other purposes, and transfer or automated individual decision-making including profiling. State-specific data protection laws may also apply.

1.3. Security Measures

We take appropriate technical and organizational measures in accordance with legal requirements, considering the state of the art, implementation costs, the nature, scope, circumstances, and purposes of processing, as well as varying likelihood and severity of risks to the rights and freedoms of natural persons. Measures include in particular securing the confidentiality, integrity, and availability of data through physical and electronic access controls, as well as access, input, transmission, availability, and separation controls. Furthermore, we consider the protection of personal data during the development or selection of hardware, software, and procedures according to the principles of privacy by design and default. Securing online connections through TLS/SSL encryption (HTTPS): To protect user data transmitted via our online services from unauthorized access, we use TLS/SSL encryption. Secure Sockets Layer (SSL) and Transport Layer Security (TLS) are cornerstones of secure data transmission on the internet. These technologies encrypt the information exchanged between the website or app and the user's browser (or between two servers), thus protecting the data from unauthorized access. TLS, being the newer and more secure version of SSL, ensures that all data transfers meet the highest security standards. If a website is secured by an SSL/TLS certificate, this is indicated by HTTPS in the URL. This serves as an indicator to users that their data is transmitted securely and encrypted.

2. Controller

The responsible party is Paul Patrice Todte, Querstraße 23, 21502 Geesthacht, Germany Contact via email at kontakt@blockania.net

3. Data Collection

3.1. Minecraft Network (blockania.net, verify.blockania.net)

When a user first joins the network, only technically necessary data is temporarily stored (until the user leaves the server). This includes the user's UUID and protocol version. Upon confirming this privacy policy, the following user data is permanently stored:

• User's UUID
• Current Minecraft username
• User-selected language (default is English)
• User group (default is "Player")
• User's IP address for the purpose of enforcing server bans and detecting alt accounts
• First and most recent join date
• Number of coins (in-game currency)
• Playtime in seconds
• ID of the linked Discord account (default is unlinked)
• Mute points to assess the severity of past chat offenses
• List of pending friend requests
• List of current friends
• Whether the user wants to receive friend requests and private messages
• Whether the user is currently online

If a user is punished automatically or by a team member, the following data is also permanently stored for each punishment:

• Unique ID of the punishment
• UUID of the punished user
• UUID of the team member who issued the punishment
• Category of the punishment (e.g., prohibited modification, behavior, dangerous activities)
• Exact reason for the punishment
• Type of punishment (ban or mute)
• Unix timestamp of when the punishment was issued
• Unix timestamp of when the punishment expires
• Whether the punishment was lifted early, and if so, by whom and why
• If applicable, additional notes from the team member
• Punishment logs showing the history of the punishment (e.g., changes made)

If a user creates a chat log about another user, the following data is also permanently stored for each chat log:

• Public unique ID of the chat log
• Private unique ID of the chat log
• UUID of the user who created the chat log
• UUID of the user whose messages were saved
• List of messages with timestamps sent by the user since their last login
• Timestamp of when the chat log was created

Only with the private unique ID of the chat log can its data be accessed. Conversion from a public to a private ID is only possible by team members. Chat logs store messages the user sent since their last login in the public server chat or via private message (/msg and /reply). Chat logs are used to investigate chat rule violations and can only be accessed by team members or with their approval.

In some game modes, game mode-specific data may be stored. This includes settings selected by the user and statistics directly visible to the user. In some game modes, games played by the user are stored. This includes a unique game ID, UUIDs of all participants, duration and result of the game, and if applicable, the winner.

3.2. Web Panel (panel.blockania.net)

When registering in the web panel of the Blockania network, the following data is permanently stored:

• Unique account ID
• User's UUID
• User's current Minecraft name
• User's password in encrypted, non-reversible form
• If applicable, Unix timestamp until the user is excluded from applications
• If applicable, Unix timestamp until the user is excluded from submitting appeals

When submitting an application via the web panel, the following data is also permanently stored:

• Unique application ID
• UUID of the applicant
• Role applied for
• Status of the application
• List of all related messages including content, author UUID, timestamp, and message ID
• Timestamp of application submission
• Timestamp of the last update to the application

When submitting a punishment appeal via the web panel, the following data is also permanently stored:

• Unique appeal ID
• UUID of the user submitting the appeal
• Unique ID of the punishment being appealed
• User's stance on the punishment (Remorseful/Not remorseful)
• Status of the appeal
• List of all related messages including content, author UUID, timestamp, and message ID
• Timestamp of appeal submission
• Timestamp of the last update to the appeal

4. Rights of Data Subjects

Right to object: You have the right to object at any time, on grounds relating to your particular situation, to processing of personal data concerning you based on Art. 6(1)(e) or (f) GDPR. Right to withdraw consent: You have the right to withdraw your consent at any time. Right of access: You have the right to request confirmation as to whether personal data concerning you is being processed, and access to that data as well as further information and a copy of the data in accordance with legal requirements. Right to rectification: You have the right, in accordance with the law, to request completion or correction of your data. Right to erasure and restriction of processing: You have the right, subject to legal requirements, to request immediate erasure or alternatively restriction of processing. Right to data portability: You have the right to receive data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format or to request its transfer to another controller. Right to lodge a complaint: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in your country of residence, place of work, or the place of the alleged infringement, if you consider that the processing of your personal data violates the GDPR.

5. Changes to this Privacy Policy

We ask you to regularly check the content of our privacy policy. We will adapt this policy as soon as changes to our data processing activities require it. We will inform you if such changes require any action from you (e.g., renewed consent) or individual notification. If we include addresses or contact details of companies and organizations in this privacy policy, please note that addresses may change over time and we ask you to verify them before making contact.