Privacy Policy

Data Controller

LibraryMc is the data controller for personal data collected on this platform. Contact: LibraryMc.Team@gmail.com

Data Collected

• Account data: Name, email address, encrypted password — collected at registration
• Content data: Articles, courses, library items you create and publish
• Usage data: Anonymous view and download counts (no personal identifiers linked)
• Technical data: Session tokens (stored in httpOnly cookies, not accessible by JavaScript)

Purpose of Processing

• Providing and operating the LibraryMc platform
• User authentication and session management
• Publishing and moderating community content
• Anonymous statistics to improve the platform

Legal Basis

Processing is based on the performance of a contract (account registration, content publishing) and our legitimate interests (platform security, anonymous analytics).

Data Retention

• Account data: retained until account deletion
• Published content: retained until deletion by moderator or user
• Session tokens: expire after 30 days of inactivity

Your Rights (GDPR)

Under the GDPR, you have the right to:

• Access your personal data
• Rectify inaccurate data
• Request deletion of your account and data
• Object to processing
• Data portability

To exercise these rights, contact us at LibraryMc.Team@gmail.com.

Data Security

Passwords are hashed using bcrypt (cost factor 12). Session tokens are stored in httpOnly, secure cookies. All API routes require authentication where appropriate.

Third Parties

LibraryMc does not sell or share personal data with third parties. We do not use advertising networks or tracking pixels.