Back to Bonks Empire
Legal

Privacy Policy

Effective: 2026-05-17
The short version: we collect the bare minimum to make the Service work, we never sell your data, we don't run ads, we don't share it with anyone outside our hosting provider (Cloudflare), and we don't look at individual user data unless you ask us to or there's a safety report. That's the whole vibe.

What we collect

If you don't sign up, we collect nothing on our servers. Your settings, pins, play history, achievements, streak, and notes all live in your own browser's localStorage. We can't see any of it, and we never will.

If you create an account, we store the following on Cloudflare D1 (a hosted SQLite database):

DataWhy
UsernameYour display name. Visible to other signed-in users in chat, friends, and leaderboards (if opted in).
Password (hashed)Stored as a PBKDF2-SHA256 hash with a random salt; we cannot see your actual password.
Email (optional)You can sign up without one. Not verified, not used for marketing, not shown to other users.
Avatar & bioOptional. Visible to other users on your profile.
Account creation + last-seen timestampsFor "online" status and inactive-account cleanup.
Synced dashboard statePins, play history, achievements, streak, settings, theme, accent color, notes — the same data you'd have locally, mirrored across devices.
Friends listThe user IDs of people you've added and accepted as friends.
Chat messagesThe text of messages you send (global room + DMs), sender ID, room ID, timestamp. DMs are visible only to you and the other participant. Global messages are visible to all signed-in users.
Reactions, edits, pinsStored alongside the message they belong to.
Activity eventsWhen you accept a friend, unlock an achievement, etc. — used to drive the friends-activity feed.
Block list, mute listUser IDs you've blocked, plus owner-imposed mutes (if any).
SettingsChat-sound preferences, accent color, "currently playing" game (auto-expires after 30 minutes).

We do not collect:

  • Real name (your username is what you want it to be)
  • Phone number
  • Address or location
  • Payment info (the Service is free)
  • Your browsing activity outside Bonks Empire
  • Anything from third-party trackers (we don't use any)

Automatically collected on every visit:

  • Cookies / localStorage — HTTP-only session cookie (when signed in) + your browser's localStorage entries; both essential. No tracking cookies, no third-party cookies.
  • Server logs — IP address, user-agent, request timestamps; kept up to 30 days for security and debugging.
  • Cloudflare Turnstile — a bot-check widget runs on signup. Turnstile uses non-cookie browser signals (no tracking across sites) to assess whether a request is human. See Turnstile documentation.
  • Rate-limit counters — your IP is briefly stored in a rate-limit table (signup throttling) and expires within an hour.

Peer-to-peer chat (DMs)

When two friends both have a DM open at the same time, we attempt to deliver messages directly between their browsers using WebRTC (the technology behind video calling). This makes messages instant instead of having to round-trip through the server. The signaling step uses the public PeerJS broker.

This means:

  • Your public IP address is shared with the other DM participant (it's how WebRTC works). You can only DM accepted friends, so this is only shared with people you've explicitly added.
  • The message is still saved on our server so we can deliver it when the recipient is offline and so that moderation can run.
  • If the peer-to-peer connection can't be established (about 15% of network setups), we silently fall back to server-relayed delivery — no IP exchange.

How we use your data

Only for what you'd reasonably expect:

  • Signing you in and keeping your session active
  • Syncing your data across your devices
  • Showing leaderboards if you opt in
  • Letting friends find each other (if you've added someone)
  • Preventing abuse and keeping the Service running

We do not:

  • Sell, rent, or share your data with advertisers, data brokers, or anyone outside our infrastructure providers
  • Run ads of any kind
  • Train AI models on your data
  • Build advertising profiles
  • Track you across the web
  • Look at your individual data unless an action is required on your account — e.g., a safety report, your own deletion request, or a legal obligation

Who has access

Your data is stored with one infrastructure provider:

  • Cloudflare — runs everything: the static site (Cloudflare Pages), the serverless backend (Pages Functions), the database (D1), and the bot-check (Turnstile). Cloudflare can technically see encrypted-at-rest data. Cloudflare's privacy policy.
  • PeerJS Cloud — only used for WebRTC signaling on DMs (introducing two browsers to each other so they can talk directly). Sees your user ID briefly during connection setup; doesn't see message content. PeerJS docs.

Beyond that, no one. We don't use analytics services, ad networks, social trackers, or third-party SDKs.

How long we keep it

  • Account data — until you delete your account. Account deletion (from the account menu) wipes your profile, friends, messages, reactions, settings, and synced state immediately. Cloudflare may keep encrypted backups up to 30 days.
  • Chat messages — kept until you delete them, until the sender's account is deleted, or until the owner moderates them. Soft-deleted messages still exist as a row but their body is cleared.
  • Server logs — up to 30 days
  • Rate-limit counters — auto-expire within 1 hour
  • "Currently playing" status — auto-expires after 30 minutes
  • Typing-indicator presence — auto-expires within 6 seconds
  • Local data in your browser — until you clear it yourself
  • Inactive accounts — accounts that haven't signed in for 2+ years may be deleted on notice

Your rights

Regardless of where you live, you have the right to:

  • Export — request a JSON dump of every piece of data we have on you
  • Delete — delete your account directly from the account menu (instant), or request deletion via Discord
  • Correct — fix anything that's inaccurate by editing your profile
  • Block — block any other user; they can't message you, mention you, or see you in search
  • Decline — never sign up; the Service works without an account

Reach us on our Discord for any of the above. We'll confirm within a few days.

Security

We use industry-standard practices:

  • Passwords are stored as PBKDF2-SHA256 hashes with per-user random salt — we cannot see your password and a database breach would not directly expose it.
  • Session cookies are HTTP-only, Secure, and SameSite=Lax — they cannot be read by JavaScript or stolen by cross-site requests.
  • D1 prepared statements are used for every query — SQL injection is not possible.
  • All traffic is HTTPS-only.
  • Cloudflare Turnstile blocks automated signup abuse.
  • Per-IP rate limits cap signups and friend requests.

No system is bulletproof; if a breach affecting your data ever happens, we'll notify affected users within 72 hours.

Children

Bonks Empire is not directed at children under 13, and we don't knowingly collect data from anyone under 13. If you believe a child has signed up, contact us and we'll remove the account.

Changes to this policy

We may update this Policy. Material changes (collecting new types of data, changing how we use it, etc.) will be announced in-dashboard the next time you sign in, with at least 14 days' notice before they take effect. We'll keep a public changelog.

Contact

For any privacy questions, data requests, or anything in this Policy, reach us at:

  • Discord: discord.gg/yfPR7Ne4N7
  • Web: buymeacoffee.com/mr.bonk
Bonks Empire Terms of Service © 2026 Bonks Empire