We keep things simple: collect only what we need, never sell your data, and give you control over what we hold.
Last updated: 19 March 2026
This Privacy Policy explains how Storption (“we”, “us”, “our”) collects, uses, and protects your personal data when you use storption.com and its subdomains.
Storption is operated by an individual based in the United Kingdom and this policy is written in accordance with the UK GDPR and Data Protection Act 2018.
We collect the following categories of data when you use Storption:
Account credentials
Email address, password, date of birth
Passwords are hashed using bcrypt — they are never stored in plain text and cannot be read by anyone, including us. Date of birth is used solely to verify age eligibility.
Profile information
Username, display name, optional avatar
Used to identify you on the platform. Avatars are stored on Cloudflare R2 object storage.
Discord account
Discord username, avatar, and server (guild) memberships at time of linking
Collected only if you choose to connect your Discord account via OAuth. We store an access and refresh token to maintain the connection. You can disconnect your Discord account at any time from account settings.
Order & payment records
Items purchased, currency, promo codes used, order status, last 4 digits of payment card and card type
Full payment card details are handled exclusively by Stripe and never pass through or are stored by us. The last 4 digits and card type are provided by Stripe for display purposes only.
User-submitted content
Reviews, bug reports, suggestions, roadmap votes, support messages
Stored to operate the community and support features.
Session & security data
IP address, approximate location (city/country), browser and device type, login timestamp
Collected on each login. Used to alert you about new sign-ins and to detect suspicious activity. Sessions expire after 30 days of inactivity and can be revoked from your account settings.
Activity data
Pages visited within the site, general interaction patterns
Used only to improve the service. Not linked to advertising profiles.
We use your data only for the purposes listed below:
We do not use your data for advertising, tracking across third-party websites, or any purpose beyond operating Storption.
We share data with the following third parties only to the extent necessary to operate the Service:
Name, email, billing address (as required for payment). Card details are handled directly by Stripe and never pass through our servers.
If you link your Discord account, your Discord user ID, username, avatar, and guild memberships are retrieved via the Discord API. An OAuth refresh token is stored to maintain the link.
Your IP address and request data are processed by Vercel to serve the site. Vercel may collect anonymised performance data.
Profile avatars and other uploaded images are stored on Cloudflare R2 object storage. Cloudflare processes data in accordance with their privacy policy.
Your account and order data is stored securely on MongoDB Atlas infrastructure.
No other third parties have access to your personal data.
We retain your data for as long as your account is active, or as long as necessary to provide the Service.
Under the UK GDPR, you have the following rights regarding your personal data:
To exercise any of these rights, contact support@storption.com. We will respond within 30 days.
Storption is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe a child under 13 has created an account, please contact us at support@storption.com and we will delete the account and associated data promptly.
We may update this Privacy Policy from time to time. When we do, the “Last updated” date at the top of this page will be revised. Continued use of the Service after changes are posted constitutes your acceptance of the updated policy.
For significant changes, we will make reasonable efforts to notify you via the site or by email.
If you have any questions about this Privacy Policy or wish to exercise your data rights: