Privacy

How we handle your data.

Short version: we collect as little as possible, we're upfront about what we do collect, and we never sell or share any of it.

Our Principles

  • 1.Keep it minimal. We only store what we actually need to make the site work. Nothing extra.
  • 2.No tracking. No analytics scripts, no ad trackers, no social media pixels. Zero.
  • 3.Your data stays yours. We never sell it, share it with advertisers, or monetize it in any way.
  • 4.No legalese. This page tells you exactly what we store and why, in plain language.

What We Store When You Sign In

We use Steam sign-in. When you log in, here's what ends up in our database:

  • Your Steam ID (a public numeric identifier)
  • Your display name and avatar URL from your Steam profile
  • When your account was created and last seen

That's the full list. No email, no password, nothing beyond what's already public on your Steam profile. If someone ever broke into our database, there'd be very little worth taking — and that's on purpose.

Your actual Steam auth token is never stored in our database. It only lives in the encrypted HttpOnly dt_session cookie on your device. We cannot read it and neither can JavaScript.

Votes

When you vote on a game, we save your Steam ID alongside the game and your vote. That's the bare minimum to stop duplicate votes and show what the community is interested in.

Email Notifications

We send your email to Customer.io (the only place it is stored). We never store it in our database. Customer.io handles delivery and unsubscribes.

Cookies

We use a handful of cookies, and none of them track you:

  • dt_session — keeps you signed in (HttpOnly, so JavaScript can't touch it)
  • dt_theme — remembers if you prefer light or dark mode
  • x-d1-bookmark — a technical thing for database read consistency (no personal data)

No tracking cookies. No third-party cookies. No annoying cookie banner because there's nothing to consent to.

Third-Party Services

The site runs on Cloudflare Workers with a D1 database. Your data lives on Cloudflare's infrastructure and falls under their privacy policy.

When you sign in, we make one call to the Steam Web API to grab your public profile info. Just once per login — we don't keep syncing with Steam in the background.

Email notifications go through Customer.io. If you subscribe, your email lives only in Customer.io and is subject to their privacy policy.

Our game testing backend uses AI models to navigate menus and extract game settings. That's all backend stuff — none of your data gets sent to any AI service.

Analytics

There are no analytics scripts running in your browser. No Google Analytics, no Mixpanel, nothing like that.

We do have some server-side numbers — things like how many times a game page was viewed, or total vote counts. It's all aggregate stuff, not tied to any individual person. Just anonymous counts of what's popular.

We look at this to figure out which games people care about most, so we can prioritize what to test next.

What We Don't Do

  • No client-side analytics (Google Analytics, Mixpanel, Segment, etc.)
  • No advertising or retargeting pixels
  • No selling or sharing data with third parties
  • No profiling or behavioural tracking of any kind

Game Data

Game settings, screenshots, feature detections, and test results are all public. That data is about games, not about you.

Questions?

If anything here is unclear or you want to know more, just email hello@decktuner.app. We'll update this page as the project grows — but we'll always keep it honest.