Privacy Policy

Last Updated: 2025-09-16

1. General Provisions

- MiniTavern ("App", "we", "us", "our") is a free mobile tool crafted for Silly Tavern enthusiasts, provided by XINGYUNNETWORK.LTD. This Privacy Policy explains what data we collect, how we use it, how we protect it, and your rights.
- MiniTavern enables seamless chat experiences on mobile devices with features including character card import, multi-AI support (OpenAI, Anthropic, DeepSeek, etc.), and offline capabilities.
- Important Statement: MiniTavern has no affiliation or financial association with Silly Tavern.
- Privacy-First Design: MiniTavern requires no login or account creation, ensuring a fully private and ready-to-use experience. Your data remains on your device unless explicitly uploaded for specific features.
- By using the App, you agree to this Policy. If you do not agree, please stop using the App.
- We may update this Policy. Material changes will be posted in-app and on our website, with the "Last Updated" date adjusted.

2. What We Collect and What We Do Not Collect

- Device Identifier for Purchases(Optional):
- If you upgrade to premium, we will only collect your Device ID as a purchase identifier. If you remain a free user, we will not collect any information from you, including your Device ID.
- Purpose: license verification and fraud prevention.
- Processing: stored in hashed or tokenized form, encrypted in transit and at rest.
- Retention: retained for the duration of the active license plus up to 90 days for audit and chargeback handling, unless law requires longer retention.

- We do not collect the following:
precise or coarse location, personal contacts, calendars, SMS/Call logs, government IDs, user names, social media handles, or address book data.
- We do not collect the content you import:
- We do not collect your imported files or content. When you choose to import a specific file (e.g., PNG with metadata) or select a photo as your avatar, the App accesses only the files you select.
- PNG metadata may be read locally to provide in-app functionality and is not transmitted to our servers. Avatar images you select are processed locally and are not uploaded to our servers. We do not access other photos or files without your explicit action.
- We do not collect your LLM conversations:
- We do not collect your conversation content. The App relies on user-configured LLM endpoints and their safety systems. We do not collect or store your conversation content on our servers unless you explicitly enable a cloud feature in the future (see Section 9). By default, conversation data remains on-device.
- We do not collect your API key information:
- We do not collect your API keys. All API keys are encrypted and stored locally on your device. We do not have access to your API credentials or transmit them to our servers.
- We do not collect your diagnostics:
- We do not collect app crash logs or anonymous diagnostic data. App stability relies on development testing and user feedback via email.

3. Platform Permissions We Request

We request permissions only when needed for a specific feature, with clear, in-context prompts. You can deny or revoke at any time in system settings.

Detailed Permission Descriptions:

- Files/Media Access (user-selected files only)
- Purpose: import a user-selected PNG and read its embedded metadata to enable specific features; no broad file access.
- Data Flow: processing occurs locally. No upload unless explicitly triggered by you for a related feature.
- Photos/Images Access (user-selected files only)
- Purpose: allow you to select a photo for your avatar and upload that selected image as profile avatar.
- Data Flow: processing occurs locally. Only the chosen photo is uploaded. We do not scan or collect your photo library.

4. How We Use Data

- Provide and maintain services you requested (file import, avatar upload).
- Verify premium purchases using the device identifier.
- Enforce our Terms, prevent fraud or abuse, and comply with legal obligations.

We do not sell your data. We do not share your data with third parties for advertising.

5. LLM Content, Safety, and User Responsibilities

- The App is an interface for AI roleplay powered by user-configured LLM providers. Content safety, filtering, and guardrails are primarily enforced by those upstream providers.
- In-App Notices: Before starting conversations, we remind users not to submit personal, sensitive, or illegal information to LLMs. You are responsible for the content you input and generate.
- Prohibited Use: You must not use the App to create or disseminate illegal, harmful, hateful, or sexual content involving minors, or to infringe intellectual property rights. Violations may result in access restrictions.

6. Minors and Age Restrictions

- MiniTavern currently has no age restrictions as we do not conduct content moderation. The app is provided as a tool only, and users are responsible for their own usage and compliance with applicable laws.
- If we become aware of minor usage through user feedback, we may implement appropriate restriction measures to ensure compliance with applicable laws and regulations.

7. NSFW Content Controls

- NSFW content is restricted. We may apply filters, age gates, reporting tools, and regional blocks to reduce exposure to inappropriate content.
- Users can report NSFW or unlawful content via email. Verified violations may lead to access restrictions or other controls.

8. External Links and Third-Party Content

- Role cards or user-generated content may include external links.
- We are not responsible for third-party sites. Your use of third-party services is governed by their policies.
- LLM providers and cloud services (if any) process data under their respective privacy policies.

9. Future Cloud Features and Content Review

- If we introduce optional cloud storage or cloud review for safety (e.g., for premium users), we will:
- Provide a clear, prior opt-in with a dedicated consent screen.
- Limit review to automated scans and, where necessary, human review under strict access controls for safety and compliance.
- Update this Policy and the Play Data Safety form before launch.

10. Data Sharing, Processors, and Transfers

- We may use vetted processors for hosting, analytics, payments, and crash reporting under data processing agreements, with data minimized and encrypted.
- Cross-border transfers occur only with adequate safeguards (e.g., SCCs or equivalent). We remain responsible for processors' compliance.

11. Security Measures

- Encryption in transit (TLS) and at rest (where applicable).
- Access controls, least-privilege, and audit logging for production systems.
- Regular security reviews, vulnerability management, and incident response.
- If a data incident occurs, we will notify affected users and authorities as required by law.

12. Retention

- Device ID for purchases: retained for the license term plus up to 90 days.
- Avatars: retained only in your device until you replace or delete them.
- Locally cached conversations: reside only on your device unless you enable future cloud features.
- We delete or anonymize data when no longer necessary for the stated purposes or legal obligations.

13. Your Rights and Choices

- You can access, correct, or delete your data, withdraw consent for optional processing, and disable permissions in your device settings.
- You may request account deletion; we will complete it within 15 calendar days and then erase associated data unless retention is required by law.
- For California/EU and similar regions, you may have additional rights (access, deletion, portability, objection). Contact us to exercise these rights.

14. Children's Privacy

- We do not knowingly collect personal data from children. If you believe a child provided data to us, contact us and we will delete it promptly.

15. Changes to This Policy

- We will post updates with a new "Last Updated" date. Material changes will be highlighted in-app. Continued use after changes indicates acceptance.

16. Disclaimer of Service

- You understand and agree that App services may be interrupted or malfunction due to various factors, including but not limited to:
- Technical issues such as your equipment and network connection
- Force majeure events such as earthquakes, fires, floods and other natural disasters
- Government actions, third-party service failures, or attacks
- For service interruption or failure caused by the above reasons, we cannot guarantee the continuity and stability of the service, and you need to bear the corresponding risk.
- The information provided in the App is for informational purposes only and does not constitute any investment, legal or medical advice. We do not make any guarantee as to the accuracy, completeness and suitability of such information.

17. Dispute Resolution

- If you cause us any losses by violating this Agreement or relevant laws and regulations, you shall be liable for compensation in accordance with the law.
- Any dispute arising out of or in connection with this Agreement shall first be settled by negotiation between the parties. If negotiation fails, either party may file a lawsuit with the court agency where the App is located.
- The conclusion, execution and interpretation of this Agreement shall be governed by the laws of the country where the APP is located.

18. Intellectual Property

- All rights to the App, including but not limited to trademarks, logos, patents, copyrights, etc., are owned by us. You may not use, copy, modify, transmit or engage in any other infringing act without our written permission.
- The intellectual property rights of content created or uploaded by you in the process of using the App belong to you.
- If you find that the App infringes the intellectual property rights of others, please notify us immediately, and we will take corresponding measures promptly.

19. App Store Legal Information

- You and we both acknowledge that these Terms are entered into solely between you and us, and not with the App Store provider, and that the App Store provider is not responsible for the Application or Content.
- The Application is licensed to you on a limited, non-exclusive, non-transferable, non-sublicensable basis solely for your private, personal, non-commercial use.
- You acknowledge and agree that we, and not the App Store provider, are responsible for resolving any claims that you or any third party may have in connection with the Application.

20. Third-Party Advertising

- Advertising Platform: MiniTavern uses Google AdMob as its third-party advertising platform to display advertisements to free users.
- Data Collection by Third Parties: Google AdMob may collect and process certain data for advertising purposes, including but not limited to:
- Device information (such as device type, operating system, browser information)
- Advertising identifier (such as Google Advertising ID)
- Location data (if permitted by user)
- App usage data and interaction with advertisements
- Third-Party Privacy Policies: The data collection and usage practices of Google AdMob are governed by Google's privacy policies, not by this Privacy Policy. We recommend that you review Google's privacy policy for detailed information about their data handling practices.
- Our Role and Responsibility: MiniTavern only serves as a platform for displaying advertisements. We do not control the data collection practices of Google AdMob and are not responsible for how Google collects, uses, or processes user data for advertising purposes.
- User Choice: You may avoid third-party data collection by using the App in offline mode or with local models, as these features do not require internet connectivity and therefore prevent third-party advertising platforms from collecting data. Currently, there is no option to disable advertisements within the App settings.
- No Guarantee of Data Practices: We cannot guarantee the data collection practices of third-party advertising platforms. Your use of the App constitutes acceptance of the potential data collection by these third parties according to their respective privacy policies.

21. Miscellaneous

- The headings in this Agreement are for convenience only and shall not affect the meaning and interpretation of the terms of this Agreement.
- If any provision of this Agreement is held to be invalid or unenforceable, it shall not affect the validity of the other provisions, which shall remain in effect.
- This Agreement constitutes the entire agreement between you and us with respect to the App Services and supersedes all prior oral or written agreements.