This Privacy Policy applies to the NPC & PC Tracker application. Because this tool is designed as a standalone, client-side application for Tabletop RPGs, we do not centrally collect, host, or sell your personal data.
All campaign data is managed and hosted directly by your Game Master (GM) using their own Google Apps Script and Google Sheets account.
When using this tool, the following data may be processed:
To allow the app to function offline and load quickly, campaign data is temporarily saved to your browser's local storage (localStorage and sessionStorage). This data remains on your device until you clear your browser data or disconnect from the database.
If your GM has enabled Cloud Sync, clicking "Save to Cloud" or "Pull Data" transmits campaign data directly between your browser and your GM's personal Google Sheet. This application's developers have no access to this Google Sheet.
The "PIN" system used to log into this application is designed for casual tabletop game management, not strict cryptographic security. Your PIN is stored in plain text inside your GM's Google Sheet.
DO NOT use real-world passwords, banking PINs, or sensitive passcodes. Please use a simple, unique passcode (e.g., "1234" or "Goblin") solely for the purpose of this game.
This application relies on the following third-party services to function:
api.qrserver.com to generate the shareable QR codes. No campaign data is sent to this service—only the Web App URL provided by your GM.We do not use tracking cookies, analytics trackers, or advertising frameworks. The only browser storage used is strictly necessary for the core functionality of the application (saving your session URL and local database state).
If you have any questions about how this application works, please reach out to your Game Master, as they act as the data controller for your specific campaign.