top of page

Privacy Policy:
Bedrock Commander / NerdHerd Utilities

Last Updated: October 7, 2025

Contact: support@nerdherdmc.com

1. Introduction

Bedrock Commander ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Minecraft Bedrock Server GUI application and website (collectively, the "Service").

By using Bedrock Commander, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide Directly

  • Email Address: Required for account creation, subscription management, and sending notifications (registration links, password resets)

  • Password: Stored using industry-standard encryption (bcrypt hashing) for account security

  • Payment Information: Processed securely through Stripe (we do NOT store credit card details)

2.2 Subscription and Account Data

  • Stripe Customer ID: A token linking your account to your subscription (no payment details)

  • Subscription Status: Information about your premium subscription (active, inactive, expiration date)

  • Notification Preferences: Your custom notification settings and sound preferences (premium feature)

2.3 Automatically Collected Information

  • Usage Data: Website analytics collected through Wix's built-in analytics system, including:

    • IP address

    • Browser type and version

    • Pages visited and time spent on pages

    • Referring website

    • Date and time of visit

  • Authentication Tokens: Secure JWT tokens to maintain your logged-in session (stored for 12 hours)

2.4 Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies through Wix's platform to:

  • Remember your login status

  • Analyze website traffic and usage patterns

  • Improve user experience

You can control cookies through your browser settings, but disabling them may affect functionality.

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain the Service: Process your account, authenticate logins, and deliver core functionality

  • Process payments: Via Stripe to manage your premium subscription

  • Send transactional emails: Account registration links, password resets, and subscription updates

  • Deliver premium features: Store your notification settings and preferences

  • Improve our Service: Analyze usage patterns to enhance functionality and user experience

  • Comply with legal obligations: Respond to legal requests and prevent fraud

We do NOT:

  • Sell your personal information to third parties

  • Use your data for advertising or marketing beyond Service-related communications

  • Share your information except as described in this policy

4. Third-Party Services

We use the following trusted third-party services to operate Bedrock Commander:

4.1 Wix (Website Hosting & Analytics)

  • What they do: Host our website and provide built-in analytics

  • What they collect: IP address, browsing behavior, cookies

  • Privacy Policy: https://www.wix.com/about/privacy

4.2 Stripe (Payment Processing)

  • What they do: Securely process subscription payments

  • What they collect: Payment card information, billing address, email

  • What we receive: Only subscription tokens and status (no payment details)

  • Privacy Policy: https://stripe.com/privacy

4.3 Neon (Database Hosting)

  • What they do: Host our secure database

  • What they store: Your email, hashed passwords, subscription tokens, and settings

  • Privacy Policy: https://neon.tech/privacy-policy

4.4 Render (Backend Hosting)

Each third-party service has its own privacy policy governing their use of your information. We encourage you to review these policies.

5. Data Storage and Security

5.1 Security Measures

We implement industry-standard security measures to protect your information:

  • Password Encryption: Passwords are hashed using bcrypt (never stored in plain text)

  • Secure Connections: All data transmitted via HTTPS encryption

  • Token Authentication: Secure JWT tokens with 12-hour expiration

  • Access Controls: Limited employee access to user data on a need-to-know basis

  • Regular Updates: Security patches and updates to our systems

5.2 Data Retention

  • Account Data: Retained while your account is active

  • Subscription Data: Retained for the duration of your subscription plus 7 years for tax and legal compliance

  • Authentication Tokens: Automatically expire after 12 hours

  • Deleted Accounts: Data permanently deleted within 90 days of account deletion request

6. Your Privacy Rights

Depending on your location, you may have the following rights:

6.1 All Users

  • Access: Request a copy of your personal information

  • Correction: Update or correct inaccurate information

  • Deletion: Request deletion of your account and data

  • Data Portability: Receive your data in a machine-readable format

  • Withdraw Consent: Opt-out of non-essential data processing

6.2 GDPR Rights (EU/EEA Users)

If you are located in the European Union or European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to object to processing

  • Right to restrict processing

  • Right to lodge a complaint with a supervisory authority

6.3 CCPA Rights (California Residents)

California residents have rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected

  • Right to know if personal information is sold or disclosed

  • Right to opt-out of the sale of personal information (Note: We do NOT sell personal information)

  • Right to deletion

  • Right to non-discrimination for exercising CCPA rights

6.4 PIPEDA Rights (Canadian Users)

As a Canadian company operating in British Columbia, we comply with the Personal Information Protection and Electronic Documents Act (PIPEDA):

  • Right to access your personal information

  • Right to challenge the accuracy of your information

  • Right to withdraw consent

  • Right to file a complaint with the Privacy Commissioner of Canada

6.5 How to Exercise Your Rights

To exercise any of these rights, contact us at support@nerdherdmc.com with your request. We will respond within 30 days.

7. Children's Privacy

Bedrock Commander is available to users of all ages. However, we do not knowingly collect personal information from children under 13 without verifiable parental consent.

  • Parents/Guardians: If you believe your child under 13 has provided personal information without your consent, please contact us at support@nerdherdmc.com and we will promptly delete it.

  • Age Verification: We rely on Stripe's age verification during payment processing.

For users under 13, we recommend parental supervision and involvement in account creation and subscription management.

8. International Data Transfers

Bedrock Commander is operated from Canada. If you access our Service from outside Canada, your information may be transferred to, stored, and processed in Canada or other countries where our service providers operate.

By using our Service, you consent to the transfer of your information to Canada and other countries, which may have different data protection laws than your country of residence.

We ensure appropriate safeguards are in place for international data transfers, including:

  • Standard Contractual Clauses with third-party providers

  • Ensuring providers are Privacy Shield certified or equivalent

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons.

  • Notification: We will notify you of significant changes by posting the new policy on our website with an updated "Last Updated" date

  • Email Notification: For material changes, we may also send an email notification to your registered email address

  • Your Responsibility: We encourage you to review this policy periodically

Continued use of the Service after changes become effective constitutes acceptance of the updated policy.

10. Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

  • Notify affected users via email within 72 hours of becoming aware of the breach

  • Provide details about what information was compromised

  • Explain steps we're taking to address the breach

  • Advise you on protective measures you can take

  • Notify relevant regulatory authorities as required by law

11. Do Not Track Signals

Our Service does not currently respond to "Do Not Track" (DNT) signals from web browsers. We use Wix's analytics which may not honor DNT signals. You can control tracking through your browser settings and cookie preferences.

12. Links to Other Websites

Our Service may contain links to third-party websites (e.g., Minecraft documentation, support resources). We are not responsible for the privacy practices of these external sites. We encourage you to read their privacy policies before providing any personal information.

13. Business Transfers

If Bedrock Commander is involved in a merger, acquisition, bankruptcy, or sale of assets, your personal information may be transferred to the successor entity. We will notify you via email and/or prominent notice on our website before your information becomes subject to a different privacy policy.

14. Your Consent

By using Bedrock Commander, you consent to:

  • The collection and use of information as described in this Privacy Policy

  • The transfer of your information to Canada and third-party service providers

  • The use of cookies and tracking technologies as described

You may withdraw consent at any time by deleting your account or contacting us at support@nerdherdmc.com.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: support@nerdherdmc.com
Response Time: We aim to respond within 5 business days

For privacy complaints or concerns, you may also contact:

  • Privacy Commissioner of Canada: https://www.priv.gc.ca/

  • Your local data protection authority (for EU/EEA residents)

16. Legal Basis for Processing (GDPR)

For users in the EU/EEA, our legal basis for processing your personal information includes:

  • Contract Performance: To provide the Service you've subscribed to

  • Consent: For optional features like notification preferences

  • Legitimate Interests: To improve our Service and prevent fraud

  • Legal Obligations: To comply with applicable laws and regulations

You have the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

17. Additional Information

17.1 Email Communications

You will receive transactional emails (registration, password resets, subscription updates) that are necessary for Service operation. These cannot be opted out of while maintaining an account.

17.2 Account Deletion

To delete your account and all associated data:

  1. Log in to your account

  2. Navigate to account settings

  3. Click "Delete Account" or email support@nerdherdmc.com

Deleted data is permanently removed within 90 days, except where retention is required for legal compliance.

17.3 Subscription Cancellation

Canceling your premium subscription through Stripe does not automatically delete your account. Your free-tier access will continue unless you separately request account deletion.

By using Bedrock Commander, you acknowledge that you have read and understood this Privacy Policy.

bottom of page