Effective: March 19, 2026.
Last updated: March 19, 2026.
This Privacy Policy explains how the operator of DarkSweeper ("we", "us", "our"), an individual based in Finland, collects, uses, and protects information when you use https://darksweeper.com (the "Service"). By using the Service, you acknowledge the practices described in this policy.
The data controller for the Service is the operator of DarkSweeper, an individual residing in Finland. You may contact us at hello@darksweeper.com.
We collect anonymous usage data to understand how the Service is used and to improve game quality. Analytics events are sent from your browser to our own server endpoint, which forwards them to Mixpanel's EU servers (api-eu.mixpanel.com). There is no direct connection between your browser and Mixpanel.
The events we collect are:
Each event includes a random session identifier (UUID) that is generated in memory when you load the page. This identifier rotates every 120 minutes, is never stored on your device, and cannot be used to identify you across sessions. Analytics are automatically skipped in private browsing mode. You may also disable analytics entirely by appending #incognito to the URL.
Legal basis: legitimate interest (GDPR Article 6(1)(f)) — understanding usage patterns to improve a free service. The data collected is minimal, non-identifying, and processed server-side only.
For more information on how Mixpanel processes data, see Mixpanel's Privacy Policy.
The Service stores data locally in your browser to provide core game functionality. This data never leaves your device and is never transmitted to any server.
localStorage (persists until you clear browser data):
sessionStorage (cleared when the browser tab is closed):
IndexedDB (database name: ds-game-history, persists until you clear browser data):
BroadcastChannel: the Service uses the browser's BroadcastChannel API to synchronize game state across multiple tabs on the same device. This is a same-origin, client-side mechanism — no data leaves your browser.
Legal basis: localStorage and sessionStorage items listed above are strictly necessary for the Service to function as requested. IndexedDB game history is processed under legitimate interest (enhancing the gaming experience). You may clear all local data at any time through your browser's settings.
The multiplayer feature connects your browser to a game server hosted on Cloudflare Workers via the PartyKit platform. The following data is processed during a multiplayer session:
All multiplayer room data is ephemeral — it is held in server memory only and is permanently deleted within approximately 5 minutes after the last player leaves the room. There is no persistent server-side storage of multiplayer game data.
Legal basis: contract performance (GDPR Article 6(1)(b)) — providing the multiplayer service that you actively chose to use.
The Service is hosted on Vercel Inc. ("Vercel"). When you access the Service, your IP address is necessarily processed by Vercel's infrastructure as part of delivering web pages to your browser. We do not ourselves log, store, or access your IP address. Vercel processes this data under its own privacy policy and data processing agreement.
For more information, see Vercel's Privacy Policy.
The Service uses the Silkscreen font, which is downloaded at build time and served from our own domain. No requests are made to Google's servers at runtime when you use the Service.
We use the following third-party service providers (data processors) to operate the Service. Each processes data on our behalf under a data processing agreement:
All processors maintain appropriate safeguards for international data transfers as required by GDPR Chapter V.
Under the General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:
Please note that the analytics data we collect is pseudonymous and cannot be linked to any identifiable individual. This means that in practice, we may be unable to identify your specific data in our analytics systems, which may limit our ability to fulfil certain rights (such as access or deletion of specific records). Local browser data is stored entirely on your device and can be deleted at any time through your browser settings.
To exercise any of these rights, contact us at hello@darksweeper.com.
You also have the right to lodge a complaint with your local data protection supervisory authority. For users in Finland, this is:
Office of the Data Protection Ombudsman
(Tietosuojavaltuutetun toimisto)
Lintulahdenkuja 4, 00530 Helsinki, Finland
Website: tietosuoja.fi
Email: tietosuoja(at)om.fi
The Service is not directed at children under the age of 13. If you are under 13 years of age, please do not use the Service. We do not knowingly collect personal data from children under 13. In Finland, the age of digital consent is 13 years.
The Service does not use cookies. Local storage technologies (localStorage, sessionStorage, IndexedDB) are used as described in Section 2.2. The storage items marked as essential are strictly necessary for the Service to function and are exempt from consent requirements under the ePrivacy Directive (Article 5(3)) as implemented by Finnish law.
If we introduce non-essential cookies or tracking technologies in the future, we will update this policy and provide an appropriate consent mechanism before such technologies are deployed.
The Service does not engage in automated decision-making or profiling as defined under GDPR Article 22.
We implement appropriate technical and organizational measures to protect data against unauthorized or unlawful processing and against accidental loss, destruction, or damage. These measures include strict Content Security Policy headers, server-side analytics processing (no third-party scripts on the client), and encryption in transit (HTTPS/WSS).
The Service may contain links to external websites that are not operated by us. We have no control over the content or privacy practices of those sites and accept no responsibility for them. We encourage you to review the privacy policies of any external sites you visit.
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Your continued use of the Service after changes are posted constitutes acceptance of the revised policy.
For any questions or concerns regarding this Privacy Policy or our data practices, contact us at: