1. Who is responsible for your data?
The data controller for this service is the person or organisation that deployed and operates this site. If you have any privacy-related questions or wish to exercise your rights, please contact:
2. What data we collect
We collect only the data you actively provide or that is technically necessary for the service to function.
Data you provide directly:
- Display name — the name you enter when joining a session. It is visible to all other participants in your session.
- Floor speeches — the text you type and submit during the debate phase. Visible to all session participants.
- Resolution contributions — text you contribute to the shared resolution document. Visible to all session participants and attributed to your display name.
- Vote — your Yes or No vote on the resolution. Attributed to your display name and visible to all participants after the vote is complete.
Data collected automatically:
- IP address — your IP address is processed by Google (Firebase infrastructure) when your browser connects to the real-time database. This is inherent to how internet connections work.
- Technical usage data — Firebase may collect standard technical data (device type, browser, connection quality) in accordance with Google's own data practices. We do not independently access or store this data.
3. How we use your data
Your data is used exclusively to operate the real-time multiplayer simulation:
- To display your name and contributions to other players in the same session.
- To synchronise game state (speeches, resolution text, votes) across all participants in real time.
- To generate the session result (vote tally and final resolution).
We do not use your data for marketing, profiling, advertising, or any purpose unrelated to the game session you participated in.
4. Legal basis for processing (GDPR)
Under the General Data Protection Regulation (GDPR), we rely on the following legal bases:
- Contract performance — Article 6(1)(b): Processing your display name, speeches, and vote is necessary to provide the service you requested. Without this data the multiplayer simulation cannot function.
- Legitimate interests — Article 6(1)(f): Processing technical connection data (IP address) is necessary to deliver the service securely and reliably. Our legitimate interest in operating a functional web application is not overridden by your privacy interests, given the minimal nature of this processing.
- Consent — Article 6(1)(a): If you click "Accept & continue" in the cookie banner, we additionally load Google Fonts from Google's servers. This involves a direct connection between your browser and Google, transmitting your IP address. You may withdraw this consent at any time by clicking "Cookie preferences" at the bottom of the main page.
5. Third-party processors
This service relies on the following third-party processors. All game data (names, speeches, resolutions, votes) passes through these services:
| Service | Provider | Purpose | Data transferred | Privacy policy |
|---|---|---|---|---|
| Firebase Realtime Database | Google LLC | Real-time storage and synchronisation of game data | Player names, speeches, resolution text, votes, IP address | Google Privacy Policy |
| Firebase SDK (CDN) | Google LLC | Delivery of application JavaScript from Google's CDN | IP address | Google Privacy Policy |
| Google Fonts (optional) | Google LLC | Typography — loaded only if you consent | IP address, browser headers | Google Fonts Privacy FAQ |
Google LLC is headquartered in the United States. Data may be transferred to and processed in the United States and other countries where Google operates data centres. Google participates in the EU–US Data Privacy Framework and uses Standard Contractual Clauses, providing an adequate level of protection for data transferred outside the European Economic Area.
6. Data retention
Session data (player names, speeches, resolutions, votes) is stored in Firebase Realtime Database for as long as the session record exists in the database. There is no automatic deletion schedule; data persists until it is manually removed from the Firebase project by the operator.
Your cookie consent preference is stored in your browser's localStorage. It remains until you clear your browser data or reset your preferences via "Cookie preferences" on the main page.
No other personal data is stored on your device by this application.
7. Your rights under GDPR
If you are located in the European Union or European Economic Area, you have the following rights regarding your personal data:
- Right of access (Art. 15) — You may request a copy of the personal data we hold about you.
- Right to rectification (Art. 16) — You may request correction of inaccurate personal data.
- Right to erasure (Art. 17) — You may request deletion of your personal data ("right to be forgotten"), where it is no longer necessary for the purpose it was collected.
- Right to restriction of processing (Art. 18) — You may request that we restrict how your data is processed in certain circumstances.
- Right to data portability (Art. 20) — You may request your data in a structured, commonly used, machine-readable format.
- Right to object (Art. 21) — You may object to processing based on legitimate interests.
- Right to withdraw consent (Art. 7(3)) — Where processing is based on your consent (Google Fonts), you may withdraw that consent at any time by clicking "Cookie preferences" at the bottom of the main page. Withdrawal does not affect the lawfulness of processing that occurred before withdrawal.
To exercise any of these rights, contact us at [CONTACT EMAIL]. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority (DPA) — for example, the relevant supervisory authority in your EU member state.
8. Cookies and local storage
This application does not set any tracking cookies of its own. It uses browser localStorage (not cookies) solely to remember your cookie consent preference. This storage is:
- Stored only on your device and never transmitted to any server.
- Not used for tracking, advertising, or profiling.
- Cleared automatically if you clear your browser data.
- Resettable at any time via the "Cookie preferences" link at the bottom of the main page.
Third-party services (Firebase, and Google Fonts if consented) may set their own cookies or use browser storage in accordance with their own privacy policies.
9. Children's privacy
This service is not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe that a child under 16 has provided personal data through this service, please contact us at [CONTACT EMAIL] so that we can delete it promptly.
10. Changes to this policy
We may update this privacy policy from time to time to reflect changes in the service or applicable law. When we do, we will update the "Last updated" date at the top of this page. We encourage you to review this page periodically. Continued use of the service after changes constitutes acceptance of the updated policy.
11. Contact
For any privacy-related questions, requests to exercise your rights, or concerns: