Effective date: July 5, 2026
This Privacy Policy explains how the operator of tinytroops.io ("we," "us," "our") handles information when you visit the site and play the game (together, the "Service").
The game saves progress using your browser's localStorage โ a storage area that lives on your device and is readable only by this website in your browser. It holds things like:
This data never leaves your device. It is not transmitted to us or to anyone else. The "leaderboard" is local to your own browser. You can erase all of it at any time by clearing your browser's site data for tinytroops.io, and it is deleted automatically if you clear browsing data.
The Service is delivered as static files through Amazon Web Services (Amazon S3 and Amazon CloudFront), our hosting and content-delivery provider, with servers located in the United States and edge locations worldwide. Like virtually all websites, delivering the site to you involves the transient processing of:
We have not enabled access logging, so we do not maintain our own log files of this information. AWS may process it transiently for network delivery, security, and denial-of-service protection under its own policies (see the AWS Privacy Notice). We do not use this information to identify or profile visitors.
The only processing that occurs is what is technically necessary to deliver the website to your browser and keep it secure. We do not use personal information for marketing, profiling, or automated decision-making, and we do not sell it, share it for cross-context behavioral advertising, rent it, or disclose it to third parties except (a) our infrastructure provider as described above, or (b) if required by law, court order, or to protect our legal rights.
Where the GDPR, UK GDPR, or similar laws apply, our legal basis for the minimal processing described in Section 3 is legitimate interests (Art. 6(1)(f) GDPR): operating, delivering, and securing a website. No consent-based processing occurs because we do not use cookies, trackers, or analytics.
The Service is hosted in the United States. If you access it from outside the U.S., the technical data in Section 3 is processed in the U.S. (and at CloudFront edge locations near you). Given that we retain no personal data ourselves, no ongoing transfers of stored personal data take place.
You have the rights of access, rectification, erasure, restriction, portability, and objection, and the right to lodge a complaint with your local supervisory authority. Practical note: because we do not store personal data about you, there is generally nothing for us to produce or delete โ your game data can be deleted directly by clearing your browser's site data. You can exercise any right by contacting contact@tinytroops.io.
The categories of personal information we handle are limited to identifiers (IP address, user-agent) processed transiently to deliver the site, as described in Section 3. In the preceding 12 months we have not sold personal information, have not shared it for cross-context behavioral advertising, and have not collected sensitive personal information. California residents have the rights to know, delete, correct, limit use of sensitive personal information, and non-discrimination. Because we do not maintain personal information, requests will typically be answered by confirming we hold none. We honor Global Privacy Control signals by design โ there is no tracking to opt out of. Requests: contact@tinytroops.io. We do not respond differently to "Do Not Track" because we track no one to begin with. (Cal. Civ. Code ยง 1798.83 "Shine the Light": we disclose no personal information to third parties for their direct marketing.)
Residents of states with comprehensive privacy laws have similar rights of access, deletion, correction, portability, and opt-out of sale/targeted advertising. As above: we do not sell personal data or engage in targeted advertising, and we retain no personal data to access or delete. Contact us with any request and we will respond as required by your state's law, including its appeal process.
We apply the same minimal-data practices globally. If your local law (e.g., PIPEDA, the Australian Privacy Act, or the LGPD) grants you rights over personal information, contact us and we will honor them.
The Service is a general-audience game. We do not knowingly collect personal information from anyone, including children under 13. There are no accounts, chats, or data-entry fields that transmit information to us โ the optional leaderboard name is stored only on the child's own device. If you believe a child has somehow provided personal information to us, contact contact@tinytroops.io and we will delete it.
The site is served exclusively over HTTPS from access-controlled cloud storage. Because we do not collect or store personal data, there is effectively nothing to breach on our side and nothing to retain: we keep no databases, no user records, and no log archives. Game data on your device persists until you delete it.
The Service currently contains no third-party links other than the AWS policy referenced above. If links are added in the future, their destinations are governed by their own privacy policies.
If the game ever adds features that change what data is handled (for example, an online leaderboard, analytics, or ads), we will update this policy before those features launch and change the "Effective date" above. Material changes will be highlighted on this page.
Privacy questions or requests: contact@tinytroops.io