Skip to content

The Registrar's ledgers are still being inscribed — what is recorded here may be unmade by deeper waters. Export your investigators, lest they be devoured.

Alpha software · data loss may occur.

Privacy Policy

Last updated: 12 May 2026

Summary

The Miskatonic University Registrar is a free, open-source character-creation tool for the Call of Cthulhu 7th Edition tabletop role-playing game. The only personal data the app handles is what you provide when you sign in (with Google or Discord), plus the character sheets you create while signed in. We don't share your data with anyone.

1. Data we access from your sign-in provider

The app offers sign-in with either Google or Discord. Whichever you choose, the same minimal set of fields is read so we can recognise you across sessions:

  • Your provider account identifier (Google's sub claim, or Discord's user id)
  • Your email address and its verification status
  • Your display name
  • Your avatar / profile picture URL

Google: the app requests only the standard OpenID Connect scopes openid email profile. It does not call Gmail, Drive, Calendar, Classroom, Sheets, Contacts, or any other Google API.

Discord: the app requests only the default scopes identify email. It does not read your servers, friends list, direct messages, voice state, presence, or any other Discord data, and it does not send messages or take any action on your behalf.

2. How we use this data

  • To authenticate you when you sign in.
  • To link your Google identity to a local user record so the same person sees the same saved character sheets across sessions and devices.
  • To display your name and avatar in the application's header.

3. Sharing with third parties

We do not sell, share, or transfer your account data to any third party for their own use. Two infrastructure sub-processors are involved in delivering the site:

  • Hosting provider. Serves the canonical instance at mur.arrowed.games and stores its database. Operates under its standard data-processing agreement.
  • Google Fonts. The site's typography is loaded from fonts.googleapis.com and fonts.gstatic.com. As a side-effect of how browsers fetch external stylesheets, Google receives your IP address, User-Agent, and referring page each time a page on the site loads. No interactive data — nothing you type, no character-sheet content, no Google or Discord profile fields — is sent in those requests. Google's logging of font requests is described in their Fonts privacy FAQ.

4. Storage and protection

  • Account data is stored in a managed SQL database that is encrypted at rest.
  • All traffic between your browser and the app is served over HTTPS.
  • Authentication sessions use signed tokens whose signing key is held only on the server and is never sent to the browser.
  • Industry-standard response headers are set to mitigate clickjacking, MIME-sniffing, and referrer information leakage, and to restrict camera, microphone, and geolocation access.
  • Endpoints that write data are rate-limited.

5. Retention and deletion

Your account data is retained for as long as your account remains in use. From within the app you can archive individual character sheets at any time, which removes them from your active sheet list. Archived sheets stay in the database so that account-level deletion (below) is the authoritative path for permanent removal.

To permanently delete your entire account and all associated data — including the linked Google or Discord identity, your profile, and every character sheet you have saved (archived ones included) — email [email protected] from the email address on your account. Deletion requests are honoured within 30 days.

No AI, no analytics, no ads

Nothing you enter into the app — your Google or Discord profile fields, your character sheets, or your backstory text — is sent to any third party. The app uses no analytics services, no advertising networks, and no AI, LLM, or machine-learning providers of any kind. None of your data is shared with, sent to, or used to train any AI or machine-learning system. (The font-CDN request described in Section 3 carries only the standard browser-issued connection metadata; nothing you input is sent in it.)

Self-hosted instances

The Miskatonic University Registrar is open-source (GPL-3.0) and can be self-hosted. If you are signed in to a self-hosted deployment rather than the canonical mur.arrowed.games instance, the operator of that deployment is the data controller for your data on that instance. This policy applies only to the canonical instance.

Changes to this policy

Material changes will be reflected by updating the “Last updated” date at the top of this page. The history of changes is publicly visible in the project's Git repository.

Contact

Questions about this policy or about your data: [email protected].

See also our Licensing & Legal page.