Privacy Policy

Last updated: 1 May 2026

This Privacy Policy describes how Sunrise Anticheat (“we”, “us”, “our”) collects, uses, stores, and shares personal data when you use our websites, dashboards, APIs, and related services (collectively, the “Service”). The Service helps game server operators configure projects, distribute protected client bundles, and manage subscription tiers (including Free and Premium) and related account features.

If you do not agree with this policy, please do not use the Service.

1. Who is responsible for your data?

The data controller is the legal entity that operates Sunrise Anticheat and the Service. If we appoint a representative in the European Union, we will identify that representative in this section or in our product documentation.

For privacy-related requests, contact us using the channel published on our website or in the product (for example, a support or security contact email). Replace or supplement this with your official legal name and address when you incorporate.

2. Scope

This policy applies to:

  • Visitors to our marketing site
  • Registered users of our SaaS dashboard and related applications
  • Organization members invited to a workspace
  • Anyone who contacts us about the Service

It does not apply to third-party sites, games, or servers we do not operate. Your use of third-party games, engines, or hosting is governed by those parties’ terms and policies.

3. Data we collect

We collect data in the following categories, depending on how you use the Service.

3.1 Account and identity

  • Name or display name
  • Email address
  • Authentication identifiers (e.g. session tokens, OAuth subject IDs if you use social login)
  • Organization and project memberships, roles, and invitations

3.2 Billing and subscriptions

If you purchase Premium or other paid offerings, our payment provider processes card and billing details. We typically receive limited billing metadata (e.g. subscription status, invoice references, last four digits where applicable), not your full card number.

3.3 Product usage and configuration

To operate the Service we process data you or your team submit in the product, such as:

  • Organization and project names, settings, and identifiers
  • Release and bundle metadata needed to distribute protection builds
  • Tier status (e.g. Free vs Premium), renewal dates, and credit balances where applicable
  • Technical identifiers required to link your game server or client configuration to your project

We do not intend to collect in-game chat or private player messages through the Service; if a feature ever processes such data, we will describe it clearly in product documentation and, where required, obtain appropriate consent.

3.4 Technical and security logs

We may collect:

  • IP address, approximate location derived from IP, user agent, and device type
  • Timestamps, request paths, and error reports
  • Security-related events (e.g. failed logins, abuse signals)

We use this information to secure the Service, troubleshoot, and prevent fraud.

3.5 Support and communications

If you email us or use in-product support, we retain the content of those messages and related metadata to respond and improve support quality.

3.6 Cookies and similar technologies

We use cookies and similar technologies for session management, preferences (e.g. language, theme), analytics where enabled, and security. You can control many cookies through your browser settings; strictly necessary cookies may be required for login and security.

4. Purposes and legal bases (EEA / UK)

Where the GDPR or UK GDPR applies, we rely on one or more of the following:

  • Providing and improving the Service — performance of a contract; legitimate interests
  • Security, abuse prevention, and debugging — legitimate interests; legal obligations
  • Billing and tax records — performance of a contract; legal obligations
  • Marketing communications (if any) — consent or legitimate interests, as applicable
  • Analytics (non-essential) — consent, where required

You may withdraw consent where processing is consent-based, without affecting the lawfulness of processing before withdrawal.

5. How we share data

We share personal data only as needed to run the Service:

  • Infrastructure and hosting providers that store or process data on our behalf
  • Payment processors for transactions
  • Email and notification providers for transactional messages
  • Professional advisers where required (e.g. lawyers, accountants) under confidentiality
  • Authorities when required by law or to protect rights and safety

We use data processing agreements or equivalent terms with subprocessors where appropriate.

We do not sell your personal information as that term is commonly understood in privacy laws. We do not share data for third-party behavioral advertising unless we introduce that feature with clear notice and, where required, consent.

6. International transfers

If we transfer personal data outside your country (for example to the United States or other regions where our providers operate), we implement appropriate safeguards such as Standard Contractual Clauses or other mechanisms required by applicable law.

7. Retention

We retain personal data only as long as necessary for the purposes above, including:

  • Account data for the life of the account and a reasonable period after closure (e.g. recovery, disputes, legal holds)
  • Billing records as required by tax and accounting law
  • Logs for a limited period consistent with security and troubleshooting needs

Retention periods may vary by region and product; we can provide more detail on request.

8. Security

We implement technical and organizational measures designed to protect personal data (access controls, encryption in transit where appropriate, monitoring). No method of transmission or storage is 100% secure; we encourage strong passwords and multi-factor authentication when available.

9. Your rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate data
  • Erase data in certain cases
  • Restrict or object to certain processing
  • Data portability for data you provided, where technically feasible
  • Withdraw consent where processing is based on consent
  • Lodge a complaint with a supervisory authority

To exercise these rights, contact us using the details we publish. We may need to verify your identity before fulfilling a request.

10. Children

The Service is intended for adults and organizations operating game servers. It is not directed at children under 16 (or the minimum age in your jurisdiction). We do not knowingly collect personal data from children. If you believe we have, contact us and we will delete it promptly.

11. Automated decisions

We do not use personal data for solely automated decisions with legal or similarly significant effects on you without human review, except where permitted by law and described in advance.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will post the revised version with a new “Last updated” date and, where appropriate, notify you by email or in-product notice. Continued use of the Service after changes constitutes acceptance where permitted by law.

13. Contact

For privacy questions or requests, use the contact method shown on our website or in the product. For security vulnerabilities, follow our responsible disclosure process if published.

This document is provided for general information and does not constitute legal advice. Have it reviewed by qualified counsel for your entity and jurisdictions.