Last updated October 10, 2025
This Privacy Notice explains, with as much clarity as a group of unpaid wizard enthusiasts can muster, how and why your personal information might be collected, stored, prodded, examined, or otherwise fiddled with by HogwartsLive — also known as Hogwarts Live, Hogwarts Live RPG, HogwartsLive.com, and HL (hereafter referred to as "HogwartsLive," "we," "us," or "our," depending on grammatical whim).
Now, to be absolutely clear: we are not a formal legal entity. In fact, we are barely an entity at all. We are a group of well-meaning humans voluntarily running a fan community powered by caffeine, nostalgia, and a deep-seated need to sort people into houses. For simplicity, and to avoid footnotes, we call ourselves a "Company." Please interpret this as charitably as possible.
We are, of course, not affiliated with J.K. Rowling, Warner Bros., or any other official entity associated with the Harry Potter books, movies, video games, and other media. This site is a fan-powered, nostalgia-driven, community-crafted homage — not a corporate product, a dark magical artefact, or an endorsed expansion of canon.
This Privacy Notice is here to help you understand your privacy rights and choices. While we do our very best to treat your information responsibly (usually while wearing mismatched socks), we also encourage you to use your common sense when deciding what personal details to share. If you're uncomfortable with any part of this Notice, you're strongly advised to step away from the Sorting Hat and refrain from using the Services.
This Privacy Notice applies only to the Services offered through https://hogwartslive.com, and not, for example, to the Ministry of Magic or your neighbor's suspiciously well-organized Quidditch league.
If you've read this far, bravo. You're either very conscientious or mildly lost. Either way, this Privacy Notice should help you understand how we treat your data (with a mixture of reverence and confusion). HogwartsLive is run entirely by volunteers — no boardrooms, no shareholders, just a rotating cast of digital caretakers. We do our best to uphold principles of data protection using a combination of best efforts, borrowed code, and optimistic hope.
If any of this makes you uneasy, we recommend you not use the Services. We also recommend a nice biscuit.
This summary contains the sort of bite-sized truths legal minds love, while allowing you to skip ahead like a time-traveling badger. Click the links or scroll furiously to the section that intrigues you most.
What personal information do we process? When you engage with our Services — poke around the forums, send messages, or rename your virtual pet to "VoldyFace" — we may collect personal information depending on your activities and how bold you're feeling.
Do we process any sensitive personal information? No. We don't want to know your trade union membership status, religion, sexual orientation, health or genetic information.
Do we collect information from third parties? Sometimes. This might include publicly available sources, social media platforms, or marketing partners — not your diary.
How do we process your information? Mostly to keep things running, ban trolls, and ensure that your wizard profile loads properly. Sometimes for legal compliance. Never for world domination.
When and with whom do we share personal information? Very rarely, and only in particular situations — like legal obligations or when the time-space continuum demands it.
What are your rights? That depends on where you live. If you're in a place with proper data laws, you may have rights. If not, you still have moral outrage and strongly worded emails.
How do you exercise your rights? You can submit a formal request by petitioning for help or contacting us at [email protected]. We promise to take you seriously — even if you're wearing robes.
Curious to dive deeper into the privacy-related mysteries of our world? Read on.
In Short: We collect personal information that you provide to us. Voluntarily. Mostly.
When you register on the Services, ask us questions, poke around our digital corridors, or shout metaphorically through the petition for help form, you may be providing us with bits and bobs of personal information. This might include your name, email, wizarding alias, or whatever else you decide to volunteer while flailing about the internet.
We don't bribe, blackmail, or trick this information out of you — you give it to us willingly, which is terribly kind of you.
We do not process sensitive information. That means we are not in the business of collecting your religious views, romantic preferences, biometric retina scans, or philosophical musings on the nature of time. If any of that ends up here, it's likely by accident — possibly magical, possibly user error.
Also, and this is very important: everything you tell us must be true, complete, and accurate. If something changes (say, your name legally becomes "Wandmaster 9000"), do let us know.
In Short: Some information — such as your IP address, browser type, or device characteristics — sneaks into our logs the moment you visit our Services. It's not personal. It's technical.
Whenever you wander into our Services — intentionally or otherwise — your device quietly hands us a note that says things like: "This person is using a Chrome browser on a 2017 MacBook in Canada and prefers their content in English." Rest assured, it does not say, "This is Jeff and his browsing history should be reported to the authorities." If you are Jeff, please seek professional help before it's too late.
This automatically collected data may include: your IP address (a sort of digital home address), operating system, device name, browser preferences, and how long you loitered on our pages. It helps us keep the site functioning, figure out what broke (and who possibly broke it), and tally up which pages are most popular with night owls in Denmark.
Like most digital habitats, we use cookies. Not the delicious kind. These are tiny text files that track things like login status, language preferences, and how many times you've ignored that pop-up asking you to read the Terms of Use.
In Short: We use your data to run the place, stop trolls, email you (occasionally), and obey the law. We also might process it for other things, but only if you agree.
Depending on how exactly you frolic through our Services — whether you're registering, roleplaying, or just observing quietly in the corner — we process your personal information to:
To keep this corner of the internet pleasant, vaguely civilized, and largely free of unspeakable horrors, we employ something called SOAP — short for Sentient Oversight & Automated Protection. SOAP is an automated content filter that scans posts, chat messages, and forum contributions for foul language, explicit sexual content, and other digital mischief. It's essentially a polite spell that intercepts rude words before they can startle innocent bystanders.
Because SOAP must briefly look at the text you type, it technically “processes” data — but only long enough to decide whether your message belongs in polite company or the bin marked “Too Naughty for Hogwarts.” Nothing is stored or analyzed for profit, research, or horcrux creation.
Hovering nobly above SOAP is a team of human moderators — actual people equipped with empathy, tea, and a limited tolerance for nonsense. They review content that SOAP flags as questionable and handle user reports of bad behaviour. When moderators view flagged material, they do so only for moderation purposes and keep it as confidential as a librarian guarding the Restricted Section.
Together, SOAP and our moderators help prevent bullying, spam, and unsavoury behaviour while ensuring that legitimate creativity survives unscathed. If you think SOAP has overreacted and censored your masterpiece, please petition for help so that a human may restore justice (and possibly your post).
In the rare event we want to use your data for something beyond what's listed here — say, adding your wand stats to a community spotlight — we'll ask you first. With actual words. In a box. With buttons.
In Short: We only share data in specific, somewhat dramatic scenarios, and only with folks who've pinky-sworn to behave.
Here's when your information might be escorted out of our digital vault and into someone else's inbox:
In Short: Yes. We use cookies. But sadly, not the edible kind.
At HogwartsLive, we — like all websites pretending to be sophisticated — use cookies and various other techno-sprinkles (such as web beacons, tracking pixels, and occasionally, overly enthusiastic JavaScript) to collect information when you interact with the Services.
These clever little snippets help us do things like keep the site from falling over, save your settings, remember who you are, and prevent chaos (which, in the digital realm, is the default state of things). They're also handy for spotting bugs, fixing errors, and generally stopping things from catching fire.
Third parties — mostly ad and analytics goblins — may also use cookies on our site to track your browsing behaviour, display ads tailored to your interests, or send you helpful reminders like, "Oi! You left a wand in your cart." Whether you find that charming or creepy is up to you.
For more details on this digital crumb trail and how to manage it, please consult our Cookie Notice, ideally while sipping tea and muttering about data privacy.
In Short: If you log in via social media, they tell us some things about you. Some of which we actually wanted.
You may have noticed the magical option to log in using your social media credentials (Facebook, X, or possibly whatever new platform people are fleeing to this week). Should you choose this route — and many do, usually to avoid yet another password — we may receive certain publicly-available information about you from said third-party provider.
This might include your name, email address, friend list, profile picture, and anything else you left publicly dangling on the internet like a forgotten pair of socks.
We only use this information for the purposes outlined in this Privacy Notice or otherwise explained when we asked for it in the first place (probably in small, polite letters). Please note: we do not control what your social media provider does with your information. They might use it to train algorithms, target ads, or build a digital clone of you. We recommend reviewing their privacy notice, preferably when you're emotionally prepared.
As a reminder, HogwartsLive is an informal, volunteer-run community. We don't sell your data, mine your habits, or plot your horoscope. But if something does go wrong, we'll do our best to fix it — once we've made tea.
In Short: Yes. Your data may travel more than you do.
Our servers reside in mysterious data centres located in places that are — from your perspective — probably "elsewhere." If you're accessing our Services from outside these magical data realms, please be advised that your information may be spirited across borders, stored securely in remote vaults (i.e., hard drives), and gently processed by us or our partners in other countries.
Now, if you're a resident of the EEA, UK, or Switzerland, you might be thinking, "Hang on, aren't there rules about this?" Why yes — there are! And we shall do our very best to respect them, despite our amateur wizard status. While the host countries may not have privacy laws as comprehensive as yours, we will protect your data to the best of our wandless, volunteer-powered ability.
In Short: We keep your data for as long as we reasonably need to — and not a moment longer than necessary.
Your personal information will linger on our servers only as long as it's useful — to us or to you — and then it shall be bid a fond farewell, either through deletion, anonymization, or digital exile into a backup archive until it fades into obscurity.
However, if there's a legal reason to keep it — such as tax records, audit requirements, or a court order — we'll hold onto it just a bit longer. But we promise not to gloat about it.
Once the data is no longer needed, we'll dispose of it responsibly. And if we can't immediately delete it (because it's been spirited away to a backup realm), we'll isolate it from future use until we can.
In Short: No. Really. We don't. Please don't be under 18.
We do not knowingly collect, solicit, or gleefully hoard information from anyone under 18 years of age. We don't market to them, target them, or invite them to join secret wizard clubs.
By using the Services, you declare that you are at least 18 years old — or that you are a parent or guardian who has given full permission for your spell-slinging dependent to play. If we discover that someone under 18 has slipped through the magical age barrier and shared their personal data, we will deactivate the account and delete the data faster than a Niffler spotting a gold coin.
If you believe we've mistakenly collected data from someone underage, please petition for help or contact us at [email protected], preferably with urgency and a subject line like: "MY CHILD'S DATA IS TRESPASSING IN YOUR CASTLE."
In Short: Depending on where you live in this vast, bureaucratically entangled universe, you may review, change, or delete your account with the sort of flourish typically reserved for dramatic exits.
Let's say we're processing your personal information because you said we could — either explicitly ("Yes, I consent!") or implicitly (by clicking wildly through buttons marked "Agree" while only half-reading the text).
Well, good news! You have the right to change your mind. At any time. Even on a Tuesday.
To withdraw your consent, simply contact us using the details located down in the section charmingly titled "HOW CAN YOU CONTACT US ABOUT THIS NOTICE?". We promise to take your revocation seriously and not sulk (much).
Do note, however, that withdrawing consent will not erase the past like a time-turner. Any processing we've done up until that point will still be considered entirely legal, as long as local law agrees and doesn't throw a fit.
If you ever get the overwhelming urge to review or alter your account details — or to obliterate your account entirely in a majestic act of digital minimalism — you may do so by contacting us directly, preferably with clear instructions and only mild sarcasm.
Upon your request to terminate, we shall deactivate or delete your account from our active databases (the ones we actually use). However, some fragments may persist in the backup archives, like ancient fossils or that one embarrassing photo you can't delete from the internet.
We may retain this ghost data to prevent fraud, solve mysteries, comply with laws, or explain things to very serious people with briefcases.
Now, here's a curious thing: some browsers and mobile apps come equipped with a setting called Do-Not-Track (DNT). This is meant to signal, in a polite digital voice, "Please don't track me." Which is a perfectly reasonable request.
Unfortunately, the universe of internet standards has not yet decided what this actually means or how to implement it in a way that works consistently across different platforms. It's a bit like shouting "Tea, please!" into the void and hoping a kettle appears.
As such, we currently do not respond to DNT signals or any other similar setting. Not because we don't care — we do! — but because there is no working intergalactic standard (yet). If one is invented and we're required to abide by it, we'll let you know in a gloriously updated version of this Privacy Notice, ideally featuring fewer acronyms and more clarity.
In Short: Yes. Occasionally. Usually when the law changes.
We may update this Privacy Notice from time to time — for instance, when laws change, servers evolve, or someone points out that we accidentally referenced the wrong century.
When we do, we'll change the "Last Updated" date at the top of this page, which is our way of saying, "We've tinkered with it again."
If we make any changes of cosmic importance, we may notify you either by slapping a notice on our site or by emailing you directly (assuming we have a valid email for you).
In any case, we encourage you to check this Notice frequently, ideally between sessions of casting spells and avoiding responsibility, so that you remain aware of how your personal information is being handled by our small but spirited band of volunteer caretakers.
If, after reading all of the above, you find yourself brimming with questions, comments, or a desperate need to correct the cosmic imbalance caused by a stray comma, you may contact us the old-fashioned way — by sending messages through the post (yes, it still exists) or via electronic owl (email, technically).
Please address your inquiries to:
HogwartsLive 390 NE 191st St STE 8061 Miami, FL 33179 United States ✉️ [email protected]
We'll do our very best to reply, though we are a ragtag crew of unpaid volunteers who spend most of our time herding pixels and putting out metaphorical (and occasionally literal) fires.
Ah, the eternal question: "What does the internet know about me, and how do I get it to forget?"
Depending on where in the galaxy — or legal jurisdiction — you currently reside, you may have the right to:
You may also have the right to withdraw consent — like taking back a dinner invitation you regret — though applicable law may sometimes get in the way and say, "Not so fast."
To make such a request, simply click this petition for help form and fill it out with all the precision and dignity of someone updating their address at the post office or reach us by email at [email protected].
We will process your request in accordance with the relevant laws and — where legally permissible — without asking you to solve riddles or present three forms of magical ID.