Privacy

Tactica is a minimal-data service. We collect what an account needs to work and nothing for marketing or tracking. This page states plainly what we hold, what we never do, and how deletion works.

What we collect

  • Account data — your email address, your chosen callsign, and a one-way hash of your password (we never store the password itself).
  • Saved simulations — the scenarios you save, including any copilot chat inside them. Chat is stored only as part of a save you choose to keep.
  • Abuse-prevention signals — a salted, one-way hash of your IP address (never the raw IP), used for rate limiting. The salt is rotated monthly.
  • Aggregate counters — anonymous totals for rate limits, cost budgets, and how often the sensitivity boundary triggers (by event type only).

What we never do

  • No raw query logs. The real-world questions you ask are never stored on our servers. Only aggregate, event-type counts are kept.
  • No third-party trackers, no analytics cookies, no ad networks. There is no client-side tracking on this site.
  • No marketing email and no digest email — ever. We send only transactional messages (verification, password reset, deletion confirmation). This is a published commitment, not a setting.
  • No data selling or sharing for marketing or advertising.

Lawful basis & scope

We process the data above for one purpose: managing your account and providing the service. Tactica takes no payments, holds no health data, and is not directed at children. As a minimal-data service our GDPR/CCPA exposure is small, and we honor the core rights — access, correction, and deletion — described below.

Retention

  • Sessions expire on a sliding window of inactivity.
  • Saved simulations persist until you delete them or delete your account (a cap of 10 saves applies).
  • Operational logs (an append-only audit log of administrative actions) and feature-flag history are kept for operational integrity, not marketing.
  • Moderation records, if any, are anonymized to a deleted-user marker and purged at 90 days.

Deleting your account

You can delete your account yourself at any time from your profile. When you do: you are logged out immediately and your account is marked for deletion. There is a 7-day grace period — simply logging back in cancels the deletion. After the grace period, a daily job permanently erases your account, which cascades to your saved simulations (and any chat inside them) and any linked sign-in identities. We log that a deletion happened — the action only, never the content.

The honest part about backups: we take weekly encrypted backups for disaster recovery, and those backups age out after 8 weeks. So a copy of deleted data can persist in an offline backup for up to eight weeks before it rolls off — we state this plainly rather than imply instant, total erasure.

Need a copy of your personal data, or have a privacy request we can’t self-serve? Email support@tactica.dev and we’ll handle it manually.

Error reporting

When something breaks, we send a technical error report to Sentry so we can fix it. These reports carry diagnostic detail (what failed and where) — not your queries, callsign, coordinates, or other identifying content. Our telemetry posture is aggregate-only by design.

Questions

Read more about what Tactica is on the about page, or email support@tactica.dev.