Privacy Policy – Better Together

This Privacy Policy explains how Better Together collects, uses, and protects your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Better Together is a SaaS platform providing Minecraft Bedrock Edition server bridge management tools. For the purposes of UK GDPR, we are the data controller of the personal information you provide to us.

If you have any privacy-related questions, please contact us via our Discord community server.

2. Data We Collect

Category	Examples	How it is collected
Account information	Username, email address, hashed password	Provided by you at registration or created by an administrator
Payment information	Billing email, Stripe customer ID, subscription status	Collected by Stripe at checkout; we store only a reference ID
Process configuration	Server address, world name, Discord webhook URL	Provided by you when configuring a process
Usage and activity logs	Login timestamps, action logs, process events	Automatically recorded by the platform
Technical data	IP address (session), browser type	Collected automatically by the server

We do not collect sensitive personal data (e.g. health or biometric data) and we do not knowingly collect data from children under 13.

3. How We Use Your Data

Service delivery – to create and manage your account, authenticate you, and operate your bridge processes.
Billing – to process subscription payments via Stripe and send payment confirmation emails.
Communications – to send transactional emails (account creation, password resets, purchase confirmations) via Brevo.
Security and fraud prevention – to detect and respond to suspicious activity.
Legal compliance – to meet our obligations under applicable law.

4. Legal Basis for Processing

Contract – processing is necessary to perform the subscription service you have purchased.
Legitimate interests – security monitoring, platform improvement, fraud prevention.
Legal obligation – retaining billing records as required by law.
Consent – where we explicitly ask for it (e.g. optional marketing communications).

5. Third-Party Processors

Processor	Purpose	Privacy Policy
Stripe	Payment processing and subscription management	stripe.com/gb/privacy
Brevo (Sendinblue)	Transactional email delivery	brevo.com/legal/privacypolicy
Microsoft	Bedrock account authentication for bridge processes	privacy.microsoft.com
Discord	Webhook notifications (if configured by you)	discord.com/privacy

We only share the minimum data necessary with each processor and require them to handle your data in compliance with applicable data protection law.

6. Data Retention

Account data is retained for the duration of your subscription and deleted within 90 days of account closure upon request.
Billing records are retained for 7 years to comply with financial record-keeping requirements.
Activity logs are retained for up to 90 days, then automatically purged.

7. Your Rights

Under UK GDPR you have the right to:

Access – request a copy of the personal data we hold about you.
Rectification – ask us to correct inaccurate data.
Erasure – ask us to delete your data (subject to legal obligations).
Restriction – ask us to limit how we process your data.
Data portability – receive your data in a structured, machine-readable format.
Object – object to processing based on legitimate interests.
Withdraw consent – where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, contact us via our Discord server. We will respond within 30 days. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

8. Cookies and Session Storage

We use a single session cookie to keep you logged in. This cookie is strictly necessary for the service to function and does not track you across other websites. We do not use advertising or analytics cookies.

9. Data Security

Passwords are stored as bcrypt hashes and are never transmitted or stored in plain text. Connections to the platform use HTTPS. We apply reasonable technical and organisational measures to protect your data against unauthorised access, alteration, or loss.

10. International Transfers

Some third-party processors may transfer data outside the UK. Where this occurs, we ensure appropriate safeguards are in place (such as UK adequacy decisions or Standard Contractual Clauses).

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a notice on the platform. The "last updated" date at the top of this page reflects the most recent revision.

12. Contact

For any privacy query or to exercise your rights, please contact us via our Discord community server.