Privacy & Data Policy

BetterMetrics Plus is a tool for Rust server admins. We collect only what we need to make the product work: the email or Steam ID you sign in with, an API key bound to your account, the notes you write about players, and a basic log of which actions you take in the extension. We don't sell your data, we don't use it for advertising, and we share it with no third parties except as required by law.

• Account info: your email address, Steam ID (if you sign in with Steam), and a display name.
• Organization data: the name of any organization you create or join, your role within it, and your API key for the extension.
• Notes you write: the text content of player notes you create through the extension or dashboard, along with the BattleMetrics player ID they're attached to.
• Alt-check results: when you run “Check EAC Banned Alts” in the extension, we store the BMID, alt account IDs, alt names, shared IP counts, and ban type so flagged players are visible in your dashboard.
• Activity logs: a record of authenticated actions (note added, member updated, API key rotated, etc.) — used for accountability and to display recent activity to admins.
• Technical data: standard request metadata (IP address, timestamps) for security and rate limiting.

• We do not collect or store your BattleMetrics API token or Steam Web API key. Those live only in your local browser storage and are used directly by the extension.
• We do not track your browsing outside of the BattleMetrics RCON pages where the extension is active.
• We do not place advertising cookies or share data with ad networks.

• To authenticate you and authorize actions inside your organization.
• To display the notes, alt checks, and activity that you and your fellow admins create.
• To send you transactional emails (login codes, account notifications) — never marketing.
• To investigate security incidents and prevent abuse of the platform.

Nobody, except in the following limited cases: (1) our hosting and email providers (Resend for transactional email, our VPS provider for infrastructure) who process data on our behalf under their own privacy terms; (2) when required by valid legal process; (3) to protect the safety of our users or the public.

No selling. No targeted ads. No profiling that produces legal or similarly significant effects.

Account and organization data is kept as long as your account is active. Notes and alt-check records are kept as long as the associated organization exists. Activity logs are kept for up to 12 months. If you delete your account, we remove your personal data within 30 days, except where retention is required by law.

Depending on where you live (including Colorado, California, and the EU/UK), you may have the following rights:

To exercise any of these rights, reach out via our Discord server (link below) and mention the email tied to your account. We'll verify your identity and respond as soon as possible — and always within the 45-day window required by the Colorado Privacy Act.

BetterMetrics Plus is intended for use by server administrators and is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with data, contact us and we'll delete it.

We hash all session tokens, store API keys with reversible encryption at rest, restrict database access to the application backend, and serve all traffic over HTTPS. No system is perfect — if you spot a security issue, please report it to the contact below and we'll respond promptly.

We use a single session cookie to keep you signed in. It's HTTP-only and Secure. We don't use analytics or tracking cookies.

If we make material changes, we'll update the “Last updated” date at the top of this page and, where appropriate, notify you in the dashboard or by email.