1. Who we are
Clanme Ltd is the data controller for information collected through clan.me (the “Service”), registered in England and Wales. We are subject to the UK GDPR and the Data Protection Act 2018.
Contact: abuse@clan.me
2. What data we collect
Server data
- Server address (IP or hostname and port)
- Server name, software, version, and MOTD, broadcast publicly by the server
- Server icon, broadcast publicly by the server
- Interactive map URL, auto-detected or declared by the owner
- Map screenshot, taken automatically from the publicly accessible map
- Tags and description, supplied by the server owner
Player data
- Minecraft username and UUID, included in each server’s public SLCP response when the server has its player list enabled
- Timestamps of when a player was observed on a server
Owner contact data
- Email address, collected only if a server owner voluntarily submits their server via our form. Used solely to send an edit link and for abuse contact. Not shown publicly.
Usage data
- Standard web server logs (IP address, browser, pages visited), retained briefly by our infrastructure providers for operational purposes.
3. How we collect it
Minecraft Server List Ping (SLCP). We periodically query servers using SLCP, the same open protocol used by every Minecraft client, every server browser, and tools like MCSrvStat. When a player has joined a server and that server has its player list enabled, their username and UUID are included in the SLCP response and are publicly visible to anyone who queries the server.
Submit form. Server owners may voluntarily provide a name, description, Discord link, website, and email address.
4. Legal basis for processing
We rely on legitimate interests (UK GDPR Article 6(1)(f)) as our legal basis for processing server and player data collected via SLCP. Our legitimate interest is operating a public Minecraft server directory that helps players discover servers and helps server owners grow their communities. This data is publicly broadcast by the servers themselves.
For owner email addresses provided voluntarily, the legal basis is contract (Article 6(1)(b)), we need the email to deliver the edit link the owner requested.
5. How we use your data
- Display server information and live player counts on public pages
- Generate aggregated analytics charts (peak hours, uptime, player growth)
- Power embeddable widgets and map embeds
- Send edit links and operational emails to server owners
- Respond to abuse reports and removal requests
We do not sell data. We do not use data for advertising.
6. Data retention
| Data | Retention |
|---|---|
| Raw ping records (player counts) | 30 days, then deleted automatically |
| Raw player sightings (UUID + name) | 30 days, then deleted automatically |
| Aggregated hourly analytics | Retained for directory operation; reviewed periodically |
| Server listing | Until removed by request or enforcement action |
| Owner email | Until listing is removed or owner requests deletion |
| Opt-out records | Kept indefinitely to honour opt-out |
7. Player opt-out (right to erasure)
Any Minecraft player may request removal of their identifying data from clan.me at any time, without giving a reason. This is our implementation of the right to erasure under UK GDPR Article 17.
To opt out, visit the opt-out page. You will be asked to verify ownership of your Minecraft account by connecting with Mojang. Once verified, your UUID is added to our opt-out list. All public-facing pages immediately replace your name and avatar with “Anonymous” across every server you have appeared on. Your raw sightings are deleted within 30 days as part of our normal retention cycle.
Your opt-out record is kept indefinitely so that data about you is not re-collected in future polls. If you later wish to remove your opt-out (and reappear in the directory), contact abuse@clan.me.
8. Third-party processors
We use the following sub-processors:
- Vercel, web hosting (USA; EU–US Data Privacy Framework)
- Neon, managed PostgreSQL (USA; EU–US Data Privacy Framework)
- Railway, poller hosting (USA)
- Cloudflare, DNS and CDN (USA; EU–US Data Privacy Framework)
- Resend, transactional email (USA)
- Crafatar / mc-heads.net, player avatar images (UUID-keyed; no additional data sent)
Each processor is bound by a Data Processing Agreement and processes data only to provide the stated service.
9. Your rights under UK GDPR
You have the right to:
- Access, request a copy of data we hold about you
- Rectification, correct inaccurate data
- Erasure, request deletion (players: use the opt-out page; server owners: email us)
- Restriction, ask us to limit processing while a complaint is resolved
- Object, object to processing based on legitimate interests
- Portability, receive your data in a machine-readable format
- Lodge a complaint, with the Information Commissioner’s Office (ico.org.uk)
To exercise any right, email abuse@clan.me. We respond within 30 days.
10. International data transfers
Some processors listed above are based in the USA. We rely on the UK–US Data Bridge (and equivalent adequacy mechanisms) for these transfers. Where no bridge applies, we rely on standard contractual clauses approved by the ICO.
11. Children
The Service is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such data, contact abuse@clan.me and we will delete it promptly.
12. Changes
We may update this policy at any time. Material changes will be noted by updating the effective date above. The current version always governs.