Privacy Policy

Data collected about you

If you are a member of the community, you sign in with your Scratch Account. Scratch Auth provides us with the following data about you:

• Your username
• Confirmation that you have access to said username

That is all. We can not access your email address or password, your private projects, or anything else not public on Scratch. In the future, we may use your username to automatically fetch your profile picture to be displayed on this website.

If you are a member of the development team, or a staff member, you sign in with Github OAuth. With this method of signing in, we are given more information, such as:

• Your Github username
• Your Github account ID
• Your Github avatar
• APIs to fetch your followers, following, repos, and more
• Your Github display name
• When your profile was created
• If you have 2FA set up (You should)
• And more, as per the read:user scope

The only data we store (and as such the only data that we can see at all) is your username, display name, and ID. The rest is ignored on the server side, and is not sent to any database, log, or client. Again, we do not have access to your email, password, or anything private.

Cookies and local storage

Besides the data outlined above, we also use your browser's cookies and local storage to store some data about you.

The data stored in your cookies is simply the current session ID that tells us "Hey, this person is logged in already, don't make them log in again and let them access their stuff." If we did not store this, you would need to log in every time you visited this website, and even every time you navigated to another page.

The data stored in your local storage is simply the current theme. It is quite literally a simple string, either "dark" or "light". This is set when you first visit the website based off your preferred theme (set by your OS or browser), and then changes whenever you manually change the theme.

If you would like to simply check for yourself, all the code is public, and can be found via the link in the footer.

Third-Party Services

We use a few third-party services to improve your experience on this site:

• Vercel Analytics: We use Vercel Analytics to track website performance and usage patterns. This helps us understand how visitors use the site and identify areas for improvement. The data collected by Vercel Analytics is aggregated and anonymized, so no personally identifiable information (PII) is shared.
• Cloudinary: We use Cloudinary to host and serve images on the site. While this service helps ensure fast and reliable delivery of images, no personal data is stored or shared with Cloudinary.
• Neon: We use Neon to manage our database, which securely stores limited user data (like usernames, IDs, and display names), or suggestion-related data. Neon is a cloud-based database platform that prioritizes security and reliability. The data stored is minimal and strictly necessary for the functionality of the site.

These services are governed by their own privacy policies, which you can review here:

• Vercel Privacy Policy
• Cloudinary Privacy Policy
• Neon Privacy Policy

Contact Us

If you have any questions or concerns about our privacy policy, please contact us. As of now, this website is only being worked on by Jazza. As such, if you have any questions, you can email me at admin@jazza.dev.