1. Introduction

This Privacy Policy describes the collection, use, protection, and rights related to personal information by the RustPlusPlus-Credential-Application (hereafter referred to as "Service"). It details how data subjects can manage their personal information. This policy will be effective from April 13, 2024.

2. Types of Personal Information Collected

This Service collects the following personal information through the login process on Facepunch’s RustPlus application, based on explicit consent from the users:

Required Information: Login token, Steam ID (obtained through the login at https://companion-rust.facepunch.com/login)

Method of Collection: Collected via encrypted communication using HTTPS protocol during the web service login process.

3. Purpose of Collection and Use of Personal Information

The personal information collected by this Service is utilized for the following purposes:

Authentication and user identification

Integration of authentication information with the RustPlus application

Management of certificates and tokens related to service usage

Providing appropriate responses to user requests (e.g., using certificates for necessary API calls)

Diagnosing and resolving issues that may arise during the service usage

4. Processing and Retention Period of Personal Information

This Service operates on a front-end basis only and does not store personal information on servers. Personal information is used within the user's browser and is immediately disposed of after the completion of Facepunch API calls. Therefore, there is no retention period as data is processed and immediately discarded post-use.

5. Procedures and Methods for Disposal of Personal Information

The procedures and methods for disposal of personal information are as follows:

Disposal Procedures: After the login and authentication processes are completed through the user's web browser, the collected tokens and Steam ID are immediately processed and no longer utilized after the API response.

Disposal Methods: Automatically disposed of in the user's device browser memory, with no data transmitted to servers.

6. Disclosure of Personal Information

This Service does not disclose personal information to third parties. All personal information processing is conducted on the user's device and is not transmitted to service providers or external servers.

7. Rights and Obligations of Data Subjects and Their Exercise

Users may request access to, correction of, or deletion of their personal information at any time, and the Service is obligated to take all possible measures to comply with these requests.

Users must take care to ensure the accuracy and security of their personal information and may request corrections immediately if errors are discovered.

8. Installation, Operation, and Rejection of Automatic Personal Information Collection Devices

This Service does not use automatic personal information collection devices (e.g., cookies). All information is collected exclusively through explicit user input, and no information is automatically collected without user consent.

This detailed Privacy Policy ensures that users clearly understand the practices related to personal information handling and protection within the Service, and it meets legal requirements.