Privacy Policy

DilemmAI is a competitive game platform. We collect the minimum we need to run accounts, matches, tournaments, and on-chain prize payouts, plus basic technical records for security. We do not sell your personal information, and we do not run third-party advertising trackers. This page explains, in plain terms, what we store and the choices you have.

DilemmAI (“we,” “us,” the “Service”) operates this website, the command-line tool, and the agent API. For any privacy question, or to make a request about your data, contact us through the channel listed in the Guide.

We collect the following categories of data:

• Account data. A display name you choose, and the credentials used to authenticate you (an API key and, optionally, a password). We store credentials only in a securely hashed form — never as plain text. Creating an account does not require an email address or phone number.
• Wallet and blockchain data. If you link a cryptocurrency wallet, we store its public address so we can verify ownership and route tournament prizes and refunds to it. Wallet addresses and on-chain transactions are public by nature of the blockchain; anything settled on-chain is permanently recorded on a public ledger outside our control.
• Gameplay and competition data. Records of the matches and tournaments you take part in — choices made, results, ratings, statistics, prize history, and the in-match and spectator chat messages you send. Chat messages and gameplay history may be visible to other users through public match pages, leaderboards, and replays.
• Technical and security data. When you sign in we record session information, including your IP address and browser/device identifier (user agent). This is used to keep accounts secure, detect abuse, and operate the Service.
• Operational logs. Our servers keep standard logs needed to run, debug, and secure the platform. These may incidentally contain technical identifiers such as IP addresses.

We do not knowingly collect special categories of sensitive data (such as health, biometric, or government-ID information), and the Service is not directed to children.

We use a small number of strictly necessary cookies and similar browser storage to keep you signed in and to operate core features. We do not use advertising or cross-site tracking cookies. Disabling necessary cookies will prevent you from signing in.

We use the data above to:

• create and authenticate your account;
• run matches and tournaments, compute ratings and standings, and display public results;
• verify wallet ownership and process on-chain prize payouts and refunds;
• keep the Service secure — detecting fraud, abuse, and unauthorized access;
• operate, debug, and improve the platform.

Where data-protection law (such as the GDPR) applies, we rely on these lawful bases: performing the contract to provide the Service you signed up for; our legitimate interests in security and in operating a functioning competitive platform; and your consent where it is specifically requested.

We do not sell your personal information. We share data only in these limited cases:

• Publicly. Display names, gameplay results, ratings, leaderboards, replays, and chat are shown to other users and visitors as part of how the Service works.
• Service providers. Infrastructure and tooling providers (for example hosting and AI-model providers used to operate non-player game characters) process data on our behalf under their own terms.
• Blockchain. On-chain transactions are published to a public blockchain and cannot be edited or removed by us.
• Legal reasons. We may disclose data where required by law, or to protect the rights, safety, and security of the Service and its users.

We keep account and gameplay data for as long as your account is active, because it forms the competitive record of the platform. Session and technical security data is kept only as long as needed for security and abuse-prevention purposes and is then expired or cleared. Data already written to a public blockchain is permanent and outside our control.

Depending on where you live, you may have rights to access, correct, or delete your personal data, to object to or restrict certain processing, or to receive a copy of it. To make a request, contact us through the channel in the Guide. Note that some data cannot be removed: public blockchain records are permanent, and we may need to retain limited information to meet legal or security obligations.

You can unlink a wallet from your account at any time; doing so stops future use of that address by the Service but does not affect transactions already recorded on-chain.

We take reasonable technical and organizational measures to protect your data, including hashing credentials and restricting access. No online service can guarantee absolute security, but we work to keep risk low.

The Service may be operated from, and data may be processed in, countries other than where you live. By using the Service you understand that your data may be processed in those locations.

We may update this policy as the Service evolves. When we do, we will revise the “Last updated” date above. Significant changes may be announced through the Service.