Privacy & Cookie Policy
Last updated: 12 March 2026
1. Who we are
This platform (app.artemishosting.net and corpuscommunity.com) is operated by Corpus Community (“we”, “us”, “our”), a gaming community based in England and Wales.
Corpus Community is the data controller for the personal data described in this policy. If you have any questions or wish to exercise your rights, contact us at: contact us
Age restriction
This platform is intended for users aged 16 years and over. We do not knowingly collect or process personal data from anyone under the age of 16. If you are under 16, you must not create an account or use this platform. If we become aware that personal data has been collected from a person under 16, we will delete that data promptly. If you believe we have inadvertently collected data from a minor, please contact us at contact us.
2. What personal data we collect
When you use this platform we may collect and store the following:
| Data | Source | Purpose |
|---|---|---|
| Display name & username | Discord OAuth (provided by you) | Identifying you on the platform and in unit rosters |
| Discord user ID | Discord OAuth | Linking your account to the Discord server |
| Attendance records | Recorded by unit staff | Tracking participation in unit events |
| Role preferences | Provided by you on your profile | Organising event roles and squads |
| IP address | Automatically collected | Security, abuse prevention, and server logs |
| Usage & analytics data | Automatically collected (internal only) | Understanding platform usage and improving features |
| Session token | Generated on login | Keeping you securely signed in |
We do not collect payment information, government identification, or special-category personal data as defined by UK GDPR Article 9.
3. Lawful basis for processing
Under UK GDPR we must have a lawful basis for processing your personal data. We rely on the following:
- Legitimate interests (Article 6(1)(f)) — operating the community platform, maintaining unit rosters, running events, and improving the service. We have assessed that our legitimate interests are not overridden by your rights and freedoms.
- Contract performance (Article 6(1)(b)) — providing the account and platform services you have signed up to use.
4. How we use your data
- To authenticate you and maintain a secure session
- To display your profile, rank, and qualifications to other community members
- To record and display your event attendance history
- To allocate roles in unit events based on your preferences
- To monitor and improve platform performance
- To investigate security incidents or misuse
5. Who we share your data with
We do not sell or rent your personal data. We share data only as described below:
- Discord (via OAuth) — you authenticate using your Discord account. Discord processes your data under their own privacy policy when you sign in. We receive only your Discord user ID, username, and display name.
- Hosting provider (Artemis Hosting) — the platform is hosted on servers provided by Artemis Hosting. They may have access to server-level logs including IP addresses as part of infrastructure operations.
- Unit staff — authorised staff members can view member profiles, attendance records, and role preferences within the platform for the purposes of unit management.
- Law enforcement, regulators, and government bodies — we may disclose personal data where we are required to do so by law, court order, or at the request of a competent authority. We will only disclose the minimum data necessary to comply with such a legal obligation.
We do not use third-party analytics services (e.g. Google Analytics). All analytics are processed internally.
6. How long we keep your data
Your data is retained for as long as your account is active and as long as is necessary to operate the platform and maintain unit records. Data may be removed:
- On your request (see Section 9 — Your rights)
- Automatically, after a period of 24 months of inactivity — we will delete or anonymise profiles where there has been no login or recorded activity for 24 consecutive months
- When we are legally required to delete it
7. International transfers
Where data is transferred outside the UK/EEA (for example, to Discord’s servers), we rely on appropriate safeguards such as the UK International Data Transfer Agreement (IDTA) or adequacy decisions. Discord maintains Standard Contractual Clauses for international transfers.
8. Your rights under UK GDPR
You have the following rights regarding your personal data:
- Access — request a copy of the data we hold about you
- Rectification — ask us to correct inaccurate data
- Erasure — ask us to delete your data (“right to be forgotten”)
- Restriction — ask us to limit how we process your data
- Portability — request your data in a machine-readable format
- Object — object to processing based on legitimate interests
To exercise any of these rights, email us at contact us. We will respond within one calendar month.
9. Cookies
This site uses a small number of cookies, all of which are strictly necessary for the platform to function. We do not use advertising, tracking, or analytics cookies.
| Cookie | Type | Purpose | Expires |
|---|---|---|---|
| next-auth.session-token | Strictly necessary | Maintains your authenticated session | Session / 30 days |
| next-auth.csrf-token | Strictly necessary | Protects against cross-site request forgery | Session |
| next-auth.callback-url | Strictly necessary | Redirects you to the correct page after login | Session |
Because we only use strictly necessary cookies, we are not required to obtain your consent for cookie use under UK PECR. You can disable cookies in your browser settings, but doing so will prevent you from signing in.
10. Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Access to personal data within the platform is restricted to authorised staff by role-based permissions. However, no system is completely secure and we cannot guarantee absolute security.
11. How to complain
If you have concerns about how we handle your personal data, please contact us first at contact us. If you remain unsatisfied, you have the right to lodge a complaint with the UK supervisory authority:
Information Commissioner’s Office (ICO)
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Tel: 0303 123 1113
Website: ico.org.uk
12. Changes to this policy
We may update this policy from time to time. The “Last updated” date at the top of this page will always reflect the date of the most recent revision. Where changes are significant, we will notify members via a platform announcement or Discord notification. Your continued use of the platform will be subject to the updated policy.
© 2026 Corpus Community — contact us