Privacy Policy
Effective date: 10 September 2025
Welcome to TF2Loadout.com (“we”, “our”, “us”). We provide a fun tool to generate random Team Fortress 2 loadouts (primary, secondary, melee weapons only). This Privacy Policy explains what information we collect, how we use it, and the choices you have.
Important notices
- We use the Steam OpenID / Steam Web API to let you sign in and fetch basic public profile data.
- Not affiliated with Valve. TF2Loadout.com is not endorsed by or associated with Valve Corporation.
- Team Fortress 2 content and trademarks are © Valve Corporation. All rights reserved.
1) Information we collect
1.1 Information you provide
- Steam sign-in: If you choose to sign in with Steam, we receive your SteamID, display name, avatar URL, and other public profile data exposed by Steam OpenID/Steam Web API.
1.2 Information collected automatically
- Basic logs: IP address, browser/user agent, timestamps, and pages requested (standard server logs for security and debugging).
- Cookies/local storage: Small files to remember your session, preferences (e.g., last used class), and anti-abuse/CSRF tokens.
- Analytics (optional): We may use a privacy-friendly analytics tool to measure usage (page views, referral, device type). We do not build profiles or sell data.
2) How we use your information
- Provide core features (generate random loadouts; display your Steam profile name/avatar when signed in).
- Secure the site (fraud prevention, rate-limiting, debugging, incident response).
- Improve the product (aggregate analytics, feature reliability, UX).
- Legal compliance (respond to lawful requests, enforce our Terms).
3) What we do not do
- We do not modify your Steam account or inventory. TF2Loadout.com is purely informational and client-side for randomization.
- We do not sell or rent personal data.
- We do not show your private Steam data; we only access public profile fields exposed during sign-in.
4) Sharing your information
We may share data with:
- Service providers (hosting, error logging, analytics) under contracts that require confidentiality and limit use to our instructions.
- Legal/Compliance if required by law or to protect our rights, users, or the public.
- Business changes (e.g., merger, acquisition) where data transfers under this Policy or with notice to you.
5) Steam sign-in and API
- We use Steam OpenID for authentication and may call the Steam Web API for public profile info.
- Your Steam credentials are handled by Steam; we never see your password.
- Use of Steam services is governed by Valve/Steam’s terms and privacy policies.
- Not affiliated with Valve. “Steam” and the Steam logo are trademarks of Valve Corporation.
6) Legal bases (EEA/UK/Switzerland)
- Contract/Legitimate interest: Provide and secure the service you request.
- Consent: Optional analytics or non-essential cookies (where applicable).
- Legal obligation: Compliance with applicable laws.
7) Data retention
- Server logs are kept for a limited time (typically 30–90 days) unless longer is needed for security/investigation.
- Session cookies last only for the session or a short period; preference cookies may persist until you clear them.
- Account-linked data (SteamID, display name, avatar URL) is retained while your account is active; we remove it upon verified deletion requests, subject to legal holds.
8) Your rights
Depending on your location, you may have rights to:
- Access, correct, or delete your personal data.
- Object to or restrict certain processing.
- Port your data (machine-readable copy).
- Withdraw consent where processing is based on consent.
- Lodge a complaint with your local data protection authority.
To make a request, contact us at [email protected]. We may need to verify your identity and ownership of the SteamID in question.
9) Cookies & local storage
We use essential cookies for security and core features, and may use optional, privacy-friendly analytics. You can control cookies in your browser settings.
| Name | Purpose | Type | Duration |
|---|---|---|---|
| _session | Authenticate your session after Steam sign-in | Essential cookie | Session / up to 7 days |
| prefs | Remember last used class / UI settings | Preference (localStorage) | Until cleared |
| _analytics | Anonymous usage metrics (page views, device) | Optional / analytics | Up to 13 months |
10) Security
We use reasonable technical and organizational measures to protect your data (HTTPS, least-privilege access, log monitoring). No method of transmission or storage is 100% secure; please use a strong Steam account password and enable Steam Guard where available.
11) Children’s privacy
TF2Loadout.com is not directed to children under 13 (or the age required by your region). If you believe a child has provided us personal data, contact us for removal.
12) International transfers
Your information may be processed in countries other than your own. Where required, we use appropriate safeguards (e.g., Standard Contractual Clauses) for international transfers.
13) Changes to this policy
We may update this Privacy Policy from time to time. The “Effective date” above reflects the latest version. Material changes will be highlighted on this page.
14) Contact us
Questions or requests? Email [email protected].
Disclaimer: TF2Loadout.com is not affiliated with Valve. Team Fortress 2, the TF2 logo, Steam, and related trademarks are the property of Valve Corporation. © Valve Corporation. All rights reserved.
This page is provided for informational purposes and does not constitute legal advice. Consider consulting counsel to tailor this policy to your specific implementation and jurisdiction.