Reign Of Blood News BlogFor all major news, updates and announcements for the online vampire game, Reign Of Blood.
Privacy & TOS UpdatesPosted on 20-May-2018
Terms Of Service
- We will never sell, give, or rent the little data we have on you
- Installing new rights to see and remove your data
- Full details of the little data we collect, and how it's used
- New secure password salting
If you're still with me, then I'll go through some of the things that have changed in regards to the privacy changes in regards to GDPR. There are other things I have done that are not required, however to keep the database and game up-to-date, I have made some further complimentary changes.
Reign Of Blood passwords have always been hashed (encrypted). So if anyone gained access to the database, they wouldn't be able to see your password. They'll just get a long string of gobbledygook (for example the password "password" would hash to "5f4dcc3b5aa765d61d8327deb882cf99'). Most websites store your password this way. I cannot see your passwords either, but hashing this day in age is not quite enough. The reason for this is because if two people have the same password, the hash string would be identical. And even though you cannot see what the passwords actually are, you'll see they are the same. There are some sites out there which lists the hashes of common word and letter combinations, and a simple hash string search could reveal your password if they have it stored. This is often why you get asked to use passwords with uppercase, lowercase, punctuations etc. You should still be doing that, and using a different password for each site you use.
However, I am taking this opportunity and taking your password security one step further and introducing what's called salt hashing. What that means is each player has there own unique string of alphanumeric characters which is attached to your password, along with another unique string of characters in the code. Those 3 parts make up your password, and then that is hashed. So even if two people have the same password, the hash would be completely different. You will not notice anything different on your end. You won't even know the extra security is there. A little overboard maybe for an online game, but security is no joke!
After the Cambridge Analytica Facebook scandal, people are a little bit wary of data–especially in regards to Facebook anyway. You have the option to login to Reign Of Blood using your Facebook account. What happens is we grab your Facebook email, create an account with that email and then log you in. You can then use that button again to login to Reign Of Blood as long as you're logged into Facebook without having to type any passwords. Facebook by default asks your permission when first using our Facebook app to give us consent for a range of data. It will say something like "Public data which includes name, age, gender, email, friends list" etc. The only three pieces of data we grab and store from your Facebook account are ID, email and gender. These are used to create your account and set your default character gender.
IP Address & Browser Data
The last two pieces of information we collect is your IP address and your browser data. Your IP addressed is used for 2 things. Firstly, it's used for anti-cheating functions, and secondly it's used to see what country you are playing from (this is required by law for VAT purposes). We also use your browser information (which includes browser, OS, device, screen resolution) which is used to monitor browser usage. This is so we can know what browsing methods are being used so we can test and make sure everything works as it should on all devices being used.
Right To See Data
You have the right to see what data we hold on you, to do this you must begin the formal process as described in our policy.
Right To Erasure
Disclosure Of Your Information
There are only two instances where we will share the little data we have on you with another party. In the event that we sell the website or assets, in which case we may disclose your personal data to the prospective buyer of such website or assets (which I have no desire to do), or if required by law.
Cookies get such a bad rep as most people associate them with tracking. I have no desire to track you, and I only set one cookie on your browser, and that's the cookie that keeps you logged in which is based off your account email address.
I hope everything is clear, but if you have any questions please get in touch. You will be asked to agree to these new terms when you next login, as I'm legally required to do when there is a major update to it. So if you want to read the policy in full, links will be provided.