markivo.space logo markivo.space

Privacy Policy

Your data, your context. We build for trust, not just engagement.

In the world of indie gaming tools, privacy isn't a feature—it's the foundation of creative freedom. This policy outlines exactly how markivo.space handles your personal information: the data we collect, why we need it, how we protect it, and your control over it. No jargon, no hidden clauses. Just the clarity you need to focus on making great games.

The Data We Handle: A Clear Trade-Off

Option A

Anonymous Usage Metrics

For visitors who do not create an account or sign in.

  • What: IP address (truncated), device type, browser version, pages visited, session duration.
  • Why: To diagnose technical issues, understand feature usage trends, and improve site performance. No personal profiles are built.
  • Limitation: This data is aggregated and cannot be used to contact you or personalize your experience. It's purely for our internal analytics to build a better tool.

Best For...

Casual browsers, research-only visitors, or developers evaluating the platform without commitment. You get service, we get operational insight.

Option B

Account & Community Data

For users who create an account to save projects or join the community.

  • What: Email address, password (hashed), username, project metadata (saved tool configurations, preferences), and optional profile information.
  • Why: To authenticate you, sync your work across devices, provide a personalized workspace, and enable community features (like sharing prototypes).
  • Responsibility: You control your project visibility. We do not sell your project data. Your saved configurations are yours; we access them only for backup and restoration.

Best For...

Active developers, indie studios, and teams building real products. You get a persistent workspace, we get the ability to help you succeed.

Security & Data Storage Specification

We treat your data with the same precision we apply to our code. All information is processed in compliance with the GDPR (General Data Protection Regulation) as we operate from Germany. Below is our technical stack for data handling.

Encryption

All data in transit is secured via TLS 1.3. Passwords are hashed using bcrypt with a work factor of 12. User data at rest is encrypted using AES-256. We use managed cloud infrastructure (e.g., AWS, Google Cloud) with built-in security controls.

Data Retention

Anonymous analytics are kept for 26 months. Account data is retained as long as your account is active. If you delete your account, personal data is purged within 30 days, except where required by law (e.g., invoicing records for 10 years).

Third-Party Audits

We undergo regular security audits by independent third parties. Reports are available upon request for enterprise-level partners. We are not SOC 2 certified at this time, but our processes are aligned with ISO 27001 principles.

Your Rights & Our Pitfalls

Your GDPR Rights

As a user, you have explicit control over your data. We are legally obligated to honor these requests without delay.

  • Right to Access: You can request a copy of all personal data we hold about you. We'll provide it in a structured, machine-readable format (JSON).
  • Right to Erasure: "Right to be forgotten." Request deletion, and we'll remove your personal data and anonymize your projects within 30 days.
  • Right to Rectification: If your email or profile information is incorrect, you can correct it directly in your account settings or contact us.
  • Right to Object: You can object to our processing of your data for specific purposes, such as direct marketing.

Common Pitfalls

Avoid these mistakes when designing your own privacy framework:

  • Over-collection: Don't hoard data "just in case." If you don't have a clear, immediate purpose, don't collect it.
  • Vague Language: Terms like "we may share data with partners" are useless. Name the partners and the data shared.
  • Ignoring Mobile: Different privacy norms apply in-app. Your policy must be accessible within your application, not just on your website.
  • Forgetting Chores: Data hygiene isn't one-time. Schedule quarterly audits to purge stale accounts and old logs.

Implication: Trust is lost in seconds. A precise policy is a competitive advantage for indie developers.

Questions or Data Requests?

For all privacy-related inquiries, including exercising your rights or reporting a concern, please contact our Data Protection Officer (DPO) at the following address. We aim to respond within 30 days.

Contact Information

Markivo

Attn: Data Protection Officer

Alexanderplatz 1

10178 Berlin, Germany

Email: info@markivo.space

Phone: +49 30 12345678

Hours: Mon-Fri, 9:00-18:00 CET

For Your Protection

  • Specify your request: State clearly if you are exercising access, erasure, or objection rights.
  • Verification: We may need to verify your identity before processing sensitive requests.
  • Supervisory Authority: If you believe we have not addressed your concerns, you have the right to file a complaint with your local data protection authority.

Last updated: April 2026. This policy may be updated as services evolve. Major changes will be notified via email to account holders.