Privacy Policy

Last updated: March 14, 2026

Dragons Within ("we", "us", "our") respects your privacy. This Privacy Policy explains how we collect, use, and protect your information when you use our website (dragonswithin.com), mobile application, and related services.

1. Information We Collect

Information You Provide

• Email address — when you sign up for our newsletter or create an account
• Account information — username, password (hashed), profile preferences
• Payment information — processed by third-party payment providers (we do not store payment details)
• Communications — messages you send to us via email or in-app

Information Collected Automatically

• Device information — device type, operating system, browser type
• Usage data — pages visited, features used, session duration
• IP address — for security and approximate location (country level)
• Cookies — essential cookies for site functionality (see Section 5)

Information from Third Parties

If you sign in via social platforms (Google, TikTok, etc.), we receive your basic profile information (name, email, profile picture) as permitted by your privacy settings on those platforms.

2. How We Use Your Information

Purpose	Legal Basis (GDPR)
Provide and improve the Service	Contract performance
Send newsletter and updates	Consent
Process payments	Contract performance
Prevent fraud and abuse	Legitimate interest
Analytics and improvement	Legitimate interest
Respond to support requests	Contract performance

3. How We Share Your Information

We do not sell your personal information. We may share data with:

• Service providers — hosting (Cloudflare), analytics, payment processing, email delivery
• Legal requirements — if required by law, court order, or regulatory authority
• Business transfers — in connection with a merger, acquisition, or sale of assets

4. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. Newsletter subscribers can unsubscribe at any time. Upon account deletion, we remove personal data within 30 days, except where retention is required by law.

5. Cookies

We use only essential cookies required for site functionality. We do not use advertising or tracking cookies. You can disable cookies in your browser settings, but some features may not work properly.

6. Your Rights (GDPR / EU Users)

If you are in the European Economic Area, you have the right to:

• Access — request a copy of your personal data
• Rectification — correct inaccurate data
• Erasure — request deletion of your data ("right to be forgotten")
• Restrict processing — limit how we use your data
• Data portability — receive your data in a structured format
• Object — object to processing based on legitimate interest
• Withdraw consent — at any time, without affecting prior processing

To exercise these rights, email orion@dragonswithin.com. We will respond within 30 days.

7. Data Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit (TLS), secure password hashing, and access controls. No system is 100% secure; we cannot guarantee absolute security.

8. Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect data from children under 13. If we discover such data, we will delete it promptly. If you believe a child under 13 has provided us with personal data, please contact us.

9. International Transfers

Your data may be processed in countries outside the EEA. We ensure appropriate safeguards (Standard Contractual Clauses) are in place for such transfers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or prominent notice on the Service. Continued use after changes constitutes acceptance.

11. Contact Us

For privacy-related questions or to exercise your rights:

Email: orion@dragonswithin.com
Data Controller: Dragons Within
Location: Ireland

← Back to Dragons Within