Privacy Policy
Last updated: 18 June 2026
Esportorium is a curated discovery platform for Malaysian esports tournaments. This policy explains what information we collect, how we use it, and the choices you have. We aim to collect as little as possible and to be transparent about the rest.
1. Information we collect
We collect only what we need to list tournaments and keep the platform working.
- From organisers (when you submit a tournament): the tournament details (title, dates, format, venue, prize pool, registration link, etc.), your organiser name, a public contact (WhatsApp or email for players to register), a private notification email, and an optional banner image.
- From visitors: anonymous, cookieless usage analytics (page views and performance) and standard server logs (such as IP address and request time) used for security and reliability.
- Spam prevention: when you submit the form, Cloudflare Turnstile processes a verification token to confirm you are human.
2. How we use your information
- To display approved tournaments to the public.
- To email you about your submission (approval or rejection) using our email provider.
- To notify our internal admin team of new submissions — only the tournament title and organiser name are sent, never your private email.
- To prevent spam and abuse, and to keep the service secure and reliable.
3. What is public and what is private
We are deliberate about this distinction:
- Public (shown on the listing): tournament details, your organiser name, your public registration contact, and your banner image.
- Private (never shown publicly): your notification email address. It is used only to contact you about your submission and is never displayed, listed, or sold.
4. Third-party services we rely on
We use trusted infrastructure providers to run Esportorium. Your data may be processed by them solely to provide the service. We do not sell your data to anyone.
- Vercel — website hosting and privacy-friendly analytics.
- Google Cloud Run — backend application hosting.
- Supabase — database storage.
- Cloudflare (R2 and Turnstile) — banner image storage and bot protection.
- Resend — delivery of approval and rejection emails.
- Discord — internal admin notifications (tournament title and organiser name only).
5. Data retention
- Approved tournaments remain listed until the organiser or we remove them.
- Rejected submissions are deleted from our database when rejected — we do not keep them.
- You can ask us to remove your tournament and associated data at any time (see "Your rights").
6. Your rights
You can ask us to access, correct, or delete the information you submitted. Email team.iidevstudio@gmail.com with your tournament name and request, and we will action it promptly.
7. Cookies and local storage
- We do not use tracking cookies for visitors, and our analytics is cookieless.
- Local storage is used only for essential functions — keeping an admin logged in, and remembering that the intro animation has played in your session.
8. Contact
Questions about this policy or your data? Email team.iidevstudio@gmail.com.
This policy is provided in good faith to explain our practices in plain language. It is not legal advice. For formal compliance with the Malaysian Personal Data Protection Act (PDPA) or other regulations, please consult a qualified professional.