Talmaara is a personal creative writing and worldbuilding project operated by L. S. Wylder. It is not a commercial service. The site may allow other people to use it through shared viewer links and, when enabled, signup pages that create user accounts. There are no comment sections, no newsletters, and no advertising.
If you create an account, the site currently asks only for a username and password. It does not currently ask for or store your email address, real name, phone number, postal address, or payment information as part of signup.
Depending on how you use the site, it may also store the workspace name you create, your workspace membership, an optional display name, and any optional two-factor authentication data you choose to enable.
When you visit this site, the web server and application may log the following technical information for security and abuse-prevention purposes:
These records are stored on the server and are accessible only to the site owner. They are not shared with third parties, not used for profiling or advertising, and are retained only as long as needed for security purposes.
No analytics service (Google Analytics, etc.) is used on this site.
This site uses cookies only for authentication. No tracking, advertising, or profiling cookies are set.
All authentication cookies are transmitted over HTTPS only, are inaccessible to JavaScript, and do not cross site boundaries.
A theme preference (light or dark mode) may be stored in your browser's local storage. This data never leaves your device and is not transmitted to the server.
The following external services may be involved when you use this site. Each may receive your IP address as part of a normal web request:
If you create an account or are given access to signed-in areas of the site, the site stores your username, a bcrypt-hashed password, and optional account security data such as a two-factor authentication secret and backup codes if you enable them. Passwords are never stored in plain text. This data is held only for as long as your account remains active and is deleted when the account is removed.
The site owner may temporarily or permanently suspend accounts that violate the terms of access for this platform. When an account is suspended, a record of the suspension is stored internally, including the reason and the date it was applied.
In cases where an account is suspended for serious abuse and the account is subsequently deleted, a one-way cryptographic hash (SHA-256) of the account's associated identifier may be retained to prevent re-registration under a different account. This hash cannot be reversed to recover any personal information and is stored solely for platform security purposes. Retention of such a record is based on the legitimate interest of protecting the platform and its users from ongoing abuse.
If you believe a suspension has been applied in error, use the same channel through which you were given access to the site to raise the issue.
No personal data collected by this site is sold, rented, or shared with third parties for any purpose beyond the technical services described above.
If you are located in the European Union or United Kingdom, you have rights under the GDPR and UK GDPR, including the right to access, correct, or request erasure of personal data held about you.
If you only browse public pages or use a viewer link without creating an account, this site holds no personal data about you beyond transient security logs (IP address, user agent) that are retained only briefly for security purposes. If you create an account, the site may hold the account data described above, but it does not currently maintain email addresses or similar contact records for user accounts.
Accounts may be created through signup pages or directly by the site owner. If you need to ask a data question or request account deletion, use the same channel through which you were given access to the site.
This remains a personal, non-commercial project, and no general public support mailbox is maintained.