Darve Legal

Privacy Policy

Effective date: March 24, 2026Last updated: March 24, 2026

Back to home

Darve — Privacy Policy

Effective Date: March 24, 2026

Last Updated: March 24, 2026

1. Introduction & Scope

This Privacy Policy ("Policy") describes how Darve ("Darve," "we," "us," or "our") collects, uses, shares, and protects information in connection with the website located at darve.gg and any associated applications, tools, and services (collectively, the "Service"). This Policy applies to all Users of the Service, including Streamers (creators who receive and complete challenges) and Viewers (supporters who suggest challenges and make donations). By accessing or using the Service, you ("you" or "your") acknowledge that you have read, understood, and agree to this Policy. If you do not agree to this Policy, please do not access or use the Service. This Policy should be read in conjunction with our Terms of Service and Community & Safety Guidelines, which are incorporated herein by reference. In the event of a conflict between this Policy and the Terms of Service, this Policy shall control with respect to privacy-related matters. We are committed to protecting your privacy and handling your personal data responsibly and transparently. We process personal data in accordance with applicable data protection laws, including the General Data Protection Regulation ("GDPR"), the California Consumer Privacy Act ("CCPA"), the California Privacy Rights Act ("CPRA"), and other applicable privacy legislation.

2. Definitions

  • "Personal Data" (also "Personal Information") means any information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular individual or household.
  • "Processing" means any operation performed on Personal Data, whether automated or manual, including collection, recording, organization, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, erasure, or destruction.
  • "Data Controller" means the entity that determines the purposes and means of Processing Personal Data. Darve is the Data Controller for Personal Data processed through the Service.
  • "Data Processor" means an entity that processes Personal Data on behalf of the Data Controller.
  • "Service Providers" means third-party companies or individuals engaged by Darve to facilitate the Service, provide the Service on our behalf, perform Service-related tasks, or assist in analyzing how the Service is used.
  • "Cookies" means small data files placed on your device when you visit a website, used to store information about your browsing activity.
  • "Streamer", "Viewer", "Challenge", "Donation", "Clip", and "Content" have the meanings assigned to them in our Terms of Service.

3. Information We Collect

We collect information in several ways depending on how you interact with the Service.

3.1 Information You Provide

When you create an Account and authenticate through Twitch OAuth, we receive and store certain information from your Twitch account, including:

  • Twitch username (display name and login name)
  • Email address associated with your Twitch account
  • Profile picture (avatar URL)
  • Twitch broadcaster ID (unique numerical identifier)
  • Account creation date and account type You may also provide additional information when you:
  • Complete Streamer registration (payment details for Payouts, which are handled by Stripe)
  • Contact our support team via email
  • Submit feedback, bug reports, or feature requests
  • Participate in surveys, promotions, or beta testing programs
  • Communicate with us through any channel

3.2 Information from the Twitch API

When you use the Service as a Streamer, we access certain data through the Twitch API in accordance with the permissions you grant during OAuth authentication:

  • Stream status (whether you are currently live, stream title, game/category)
  • Chat messages collected during active Collection Windows (these are public Twitch chat messages visible to all viewers of the stream)
  • Clip data (metadata, URLs, thumbnails for Clips created through the Service)
  • Channel information (follower count, subscriber status, as applicable to Service functionality) We only access Twitch data within the scope of permissions you authorize and in accordance with Twitch's Developer Agreement and API Terms of Service.

3.3 Payment Information

All payment processing is handled by our third-party payment processor, Stripe. Darve does not directly collect, store, or process your full credit card numbers, debit card numbers, or bank account numbers. When you make a Donation or set up Payout information, Stripe may share the following limited information with us:

  • Transaction amounts and currency
  • Last four (4) digits of the payment card used
  • Card type (e.g., Visa, Mastercard)
  • Billing country
  • Transaction status (successful, failed, refunded)
  • Stripe customer ID and connected account ID (for Streamers)
  • Payout status and amounts (for Streamers) For information about how Stripe processes your payment data, please refer to Stripe's Privacy Policy.

3.4 Communications

When you contact us via email, through in-app support, or through other communication channels, we collect:

  • The content of your messages
  • Your email address and name
  • Any attachments or supporting materials you provide
  • Metadata associated with the communication (date, time, subject)

3.5 Information Collected Automatically

When you access the Service, we automatically collect certain technical information, including:

  • IP address (which may be used to approximate your general geographic location)
  • Device information (device type, model, manufacturer)
  • Browser type and version
  • Operating system and version
  • Screen resolution and display settings
  • Language and locale preferences
  • Referring URL (the website that directed you to the Service)
  • Date and time of access

3.6 Usage Data

We collect information about how you interact with the Service, including:

  • Pages and features visited or accessed
  • Time spent on specific pages or features
  • Challenge interactions (suggestions viewed, Challenges funded, completion status)
  • Navigation patterns and click behavior
  • Session duration and frequency of use
  • Search queries within the Service
  • Feature usage patterns (e.g., which Streamer tools are used, frequency of Collection Windows)
  • Error logs and crash reports

3.7 Cookies and Similar Technologies

We use cookies and similar tracking technologies (such as web beacons, pixels, and local storage) to collect information about your browsing activity and to distinguish you from other Users. For detailed information, see Section 7 below.

4. How We Use Your Information

We use the information we collect for the following purposes:

4.1 Service Operation and Delivery

  • Creating and managing your Account
  • Authenticating your identity through Twitch OAuth
  • Facilitating the Challenge Lifecycle (collection, processing, selection, funding, completion, clip delivery)
  • Processing Donations and Payouts through Stripe
  • Displaying Streamer profiles and Challenge history to Viewers
  • Creating and managing Clips

4.2 Payment Processing

  • Processing and recording financial transactions
  • Facilitating Payouts to Streamers
  • Detecting and preventing fraudulent transactions
  • Complying with financial regulations and reporting requirements

4.3 Communications

  • Responding to your inquiries and support requests
  • Sending transactional notifications (e.g., Donation confirmations, Payout notifications, Challenge updates)
  • Sending service announcements and updates regarding changes to the Service, Terms, or Policy
  • Sending promotional communications (only with your consent, where required by law)

4.4 Analytics and Improvement

  • Analyzing usage patterns to understand how the Service is used
  • Identifying trends and areas for improvement
  • Developing new features and services
  • Conducting internal research and development
  • Measuring the effectiveness of the Service

4.5 Safety and Content Moderation

  • Enforcing our Terms of Service and Community & Safety Guidelines
  • Detecting and preventing abuse, fraud, spam, and other harmful activity
  • Monitoring Content for compliance with our policies
  • Conducting AI-powered content safety filtering on Challenge suggestions
  • Investigating reports of violations

4.6 AI Processing

  • Processing Twitch chat messages to aggregate and curate Challenge suggestions
  • Applying AI-powered safety scoring and content filtering
  • Generating Challenge suggestions based on chat input
  • Improving the accuracy and effectiveness of AI models used by the Service

4.7 Legal Compliance

  • Complying with applicable laws, regulations, and legal processes
  • Responding to lawful requests from public and government authorities
  • Enforcing our legal rights and resolving disputes
  • Protecting against legal liability

5. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area ("EEA"), the United Kingdom, or another jurisdiction that requires a legal basis for processing Personal Data, we rely on the following legal bases:

5.1 Performance of a Contract

We process your Personal Data as necessary to perform our contract with you (i.e., the Terms of Service), including creating your Account, facilitating Challenges and Donations, processing Payouts, and providing the Service.

5.2 Consent

Where required, we process your Personal Data based on your consent. You may withdraw consent at any time, but this will not affect the lawfulness of Processing based on consent before withdrawal. Examples include marketing communications and non-essential cookies.

5.3 Legitimate Interests

We process certain Personal Data based on our legitimate interests, provided these interests are not overridden by your data protection rights. Our legitimate interests include: operating and improving the Service, ensuring security, preventing fraud, conducting analytics, and enforcing our Terms.

5.4 Legal Obligation

We process certain Personal Data to comply with legal obligations, such as tax reporting requirements, responding to legal processes, and maintaining transaction records as required by law.

6. How We Share Your Information

We do not sell your Personal Data. We share your information only in the following circumstances:

6.1 Service Providers

We share Personal Data with third-party Service Providers who perform services on our behalf, including:

  • Twitch (Twitch Interactive, Inc.) — for authentication, chat data access, and clip creation
  • Stripe (Stripe, Inc.) — for payment processing, Donation handling, and Payout facilitation
  • Cloud infrastructure providers (e.g., Google Cloud Platform) — for hosting, data storage, and computing services
  • Analytics providers — for usage analytics and performance monitoring
  • Email service providers — for transactional and marketing communications These Service Providers are contractually obligated to use your Personal Data only for the purposes of providing their services to us and in accordance with applicable data protection laws.

6.2 Public Information

Certain information is made publicly visible through the Service by design:

  • Streamer profiles (Twitch username, profile picture, Challenge history) are visible to all Users
  • Challenge information (Challenge descriptions, funding status, completion status) is visible to Users viewing the Streamer's page
  • Donation activity may be visible to other Users in aggregated form (e.g., total funding for a Challenge); individual donor identities are shown according to your display preferences

6.3 Legal Requirements

We may disclose your Personal Data if required to do so by law or in the good-faith belief that such disclosure is necessary to:

  • Comply with a legal obligation, subpoena, court order, or other legal process
  • Protect and defend the rights or property of Darve
  • Prevent or investigate possible wrongdoing in connection with the Service
  • Protect the personal safety of Users or the public
  • Protect against legal liability

6.4 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, asset sale, or similar corporate transaction, your Personal Data may be transferred as part of the transaction. We will notify you (via email or prominent notice on the Service) of any such transfer and any choices you may have regarding your Personal Data.

6.5 With Your Consent

We may share your Personal Data with third parties when you have given your explicit consent to do so.

6.6 Aggregated and Anonymized Data

We may share aggregated or anonymized information that cannot reasonably be used to identify you with third parties for research, analytics, marketing, or other purposes. This data does not constitute Personal Data under applicable privacy laws.

7. Cookies & Tracking Technologies

7.1 Essential Cookies

These cookies are strictly necessary for the operation of the Service. They include:

  • Session cookies — to maintain your login state and session information
  • Authentication cookies — to verify your identity after Twitch OAuth login
  • Security cookies — to support security features and detect malicious activity
  • Preference cookies — to remember your settings and preferences (e.g., language, display mode) Essential cookies cannot be disabled without impairing the functionality of the Service.

7.2 Analytics Cookies

We use analytics cookies to understand how Users interact with the Service, including:

  • Pages visited and time spent on each page
  • Features used and interaction patterns
  • Traffic sources and navigation paths
  • Error occurrences and performance metrics We may use third-party analytics services, which set their own cookies to collect this information on our behalf.

7.3 How to Manage Cookies

You can manage cookies through your browser settings. Most browsers allow you to:

  • View the cookies stored on your device
  • Delete some or all cookies
  • Block cookies from specific or all websites
  • Set preferences for first-party vs. third-party cookies Please note that disabling or blocking certain cookies may affect the functionality of the Service. If you disable essential cookies, you may not be able to use key features such as logging in or making Donations. For more information about cookies and how to manage them, visit allaboutcookies.org.

8. Data Retention

We retain your Personal Data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Our specific retention periods are: | Data Category | Retention Period | |---|---| | Account data (Twitch profile, email, preferences) | Duration of your Account plus thirty (30) days after Account deletion | | Transaction records (Donation amounts, Payout records, receipts) | Seven (7) years from the date of the transaction, as required for tax and financial compliance | | Chat messages (collected during Collection Windows) | Ninety (90) days from the date of collection | | Clips (video segments of completed Challenges) | Duration of your Account (Streamers may request earlier deletion) | | Usage data and analytics | Twenty-four (24) months from the date of collection | | Support communications | Three (3) years from the date of last communication | | Server logs (IP addresses, access logs) | Ninety (90) days from the date of collection | After the applicable retention period, Personal Data is securely deleted or anonymized. We may retain anonymized or aggregated data indefinitely for analytical and statistical purposes.

9. Your Rights

9.1 Rights Under the GDPR (EEA and UK Users)

If you are located in the EEA or the United Kingdom, you have the following rights under the GDPR:

  • Right of Access — You have the right to request a copy of the Personal Data we hold about you.
  • Right to Rectification — You have the right to request correction of inaccurate Personal Data.
  • Right to Erasure ("Right to Be Forgotten") — You have the right to request deletion of your Personal Data, subject to certain exceptions (e.g., legal obligations, ongoing disputes).
  • Right to Restriction of Processing — You have the right to request that we restrict the processing of your Personal Data in certain circumstances.
  • Right to Data Portability — You have the right to receive your Personal Data in a structured, commonly used, machine-readable format and to transmit it to another controller.
  • Right to Object — You have the right to object to Processing of your Personal Data based on legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent — Where Processing is based on consent, you have the right to withdraw consent at any time without affecting the lawfulness of Processing based on consent before withdrawal.
  • Right to Lodge a Complaint — You have the right to lodge a complaint with a supervisory authority in your country of residence.

9.2 Rights Under the CCPA/CPRA (California Residents)

If you are a California resident, you have the following rights under the CCPA and CPRA:

  • Right to Know — You have the right to request disclosure of the categories and specific pieces of Personal Information we have collected about you, the sources of collection, the purposes of collection, and the categories of third parties with whom we share your information.
  • Right to Delete — You have the right to request deletion of your Personal Information, subject to certain exceptions.
  • Right to Opt-Out of Sale — You have the right to opt out of the "sale" of your Personal Information. We do not sell your Personal Information.
  • Right to Correct — You have the right to request correction of inaccurate Personal Information.
  • Right to Limit Use of Sensitive Personal Information — You have the right to limit the use and disclosure of your Sensitive Personal Information.
  • Right to Non-Discrimination — We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you the Service, charge different prices, provide a different level of quality, or suggest any of the foregoing as a consequence of your exercising your rights.

10. How to Exercise Your Rights

10.1 Submitting a Request

To exercise any of the rights described in Section 9, please contact us at:

  • Email: support@darve.app
  • Subject Line: "Privacy Rights Request — [Your Right]" Please include your full name, the email address associated with your Account, your Twitch username, and a detailed description of the right you wish to exercise.

10.2 Verification

To protect your privacy and security, we may need to verify your identity before fulfilling your request. Verification methods may include confirming your email address, matching information you provide with information we have on file, or requiring you to log in to your Account.

10.3 Response Timeline

We will acknowledge receipt of your request within five (5) business days and provide a substantive response within:

  • GDPR requests: One (1) month (extendable by two additional months for complex requests, with notification)
  • CCPA/CPRA requests: Forty-five (45) calendar days (extendable by an additional forty-five days with notification)

10.4 Authorized Agents

You may designate an authorized agent to submit requests on your behalf. We may require the authorized agent to provide proof of authorization and may still require you to verify your identity directly.

11. Children's Privacy

11.1 Age Restrictions

The Service is not directed to children under the age of thirteen (13). We do not knowingly collect Personal Data from children under thirteen (13) years of age. If you are under thirteen (13), please do not use the Service or provide any Personal Data to us.

11.2 Parental Notification

If we become aware that we have collected Personal Data from a child under thirteen (13) without verification of parental consent, we will take prompt steps to delete that information. If you believe we may have collected

information from a child under thirteen (13), please contact us immediately at support@darve.app.

11.3 Minors Between 13 and 18

Users between the ages of thirteen (13) and eighteen (18) may use the Service with the consent of a parent or legal guardian. However, Users under eighteen (18) are not permitted to make Donations, receive Payouts, or participate in any financial transactions through the Service. Parents or legal guardians who consent to their child's use of the Service accept responsibility for monitoring their child's activity and ensuring compliance with these Terms and this Policy.

12. International Data Transfers

12.1 Where Data Is Stored

Your Personal Data may be stored and processed in the United States and other countries where our Service Providers maintain facilities. These countries may have data protection laws that differ from the laws of your country of residence.

12.2 Safeguards for International Transfers

When we transfer Personal Data from the EEA, the United Kingdom, or Switzerland to countries that have not been deemed to provide an adequate level of data protection, we implement appropriate safeguards, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions issued by the European Commission for certain countries
  • Binding Corporate Rules or other approved transfer mechanisms, as applicable

12.3 Your Consent to Transfer

By using the Service, you acknowledge and consent to the transfer of your Personal Data to the United States and other jurisdictions as described in this Policy. If you are located in the EEA or UK, such transfers will be conducted in compliance with applicable data protection laws and with appropriate safeguards in place.

13. Data Security

13.1 Security Measures

We implement appropriate technical and organizational measures to protect your Personal Data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption: Data in transit is encrypted using TLS/SSL protocols. Sensitive data at rest is encrypted using industry-standard encryption algorithms.
  • Access Controls: Access to Personal Data is restricted to authorized personnel on a need-to-know basis. We use role-based access controls and multi-factor authentication for system access.
  • Infrastructure Security: We use reputable cloud infrastructure providers that maintain SOC 2, ISO 27001, and other industry certifications.
  • Monitoring and Logging: We maintain audit logs and monitoring systems to detect unauthorized access attempts and security incidents.
  • Employee Training: Personnel who handle Personal Data receive regular training on data protection and security practices.

13.2 Incident Response

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will:

  • Notify the relevant supervisory authority within seventy-two (72) hours of becoming aware of the breach (where required by GDPR)
  • Notify affected individuals without undue delay where the breach is likely to result in a high risk to their rights and freedoms
  • Document the breach, its effects, and the remedial actions taken

13.3 Limitations

While we take reasonable measures to protect your Personal Data, no method of transmission over the Internet or method of electronic storage is one hundred percent (100%) secure. We cannot guarantee the absolute security of your information.

14. Do Not Track Signals

Some web browsers transmit "Do Not Track" ("DNT") signals to websites. Because there is no universally accepted standard for how to respond to DNT signals, the Service does not currently respond to DNT signals. We will continue to monitor developments in DNT technology and update this Policy if our practices change.

15. Third-Party Links

The Service may contain links to third-party websites, applications, or services that are not operated or controlled by Darve. This Policy does not apply to third-party services. We encourage you to review the privacy policies of any third-party services you access through links on the Service. Darve is not responsible for the privacy practices or content of third-party services.

16. California Privacy Rights (Shine the Light)

Under California Civil Code Section 1798.83 ("Shine the Light"), California residents who provide Personal Information to a business with which they have an established business relationship may request information about whether the business has disclosed Personal Information to third parties for direct marketing purposes. We do not share your Personal Information with third parties for their direct marketing purposes. If you have questions about this practice or your rights under California law, please contact us at support@darve.app.

17. Changes to This Privacy Policy

We may update this Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will:

  • Post the updated Policy on the Service with a revised "Last Updated" date
  • Provide notice through the Service or via email at least thirty (30) days before material changes take effect
  • Where required by law, obtain your consent to the changes We encourage you to review this Policy periodically for the latest information on our privacy practices. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated Policy.

18. Data Protection Officer / Contact

If you have any questions, concerns, or complaints about this Privacy Policy, our privacy practices, or our processing of your Personal Data, please contact us at:

Darve — Privacy Team

Email: support@darve.app For GDPR-specific inquiries, you may contact our Data Protection Officer at: Data Protection Officer Email: support@darve.app If you are located in the EEA or UK and believe that your data protection rights have been violated, you have the right to lodge a complaint with your local supervisory authority. A list of EEA supervisory authorities is available at edpb.europa.eu. *This Privacy Policy was last updated on March 24, 2026.*