CasterClub SSL Certificate
This website is secured with a DigiCert TLS/SSL certificate.
- Issued To: www.casterclub.com
- Issued By: DigiCert Inc
- Valid From: Jan 1, 2025
- Valid To: Dec 31, 2025
- Encryption: 256-bit TLS 1.3
Verified independently via your browser's certificate viewer.
Privacy Policy
Last updated: July 15, 2026
The short version: CasterClub is a community for broadcasters. We collect the bare minimum to run your account, we let you use a stage name instead of your real identity, we never sell your data, and we protect what little we hold to payment-industry standards. Below is the detail.
1. What We Collect
- Username / display name — your choice; a stage or studio name is encouraged. No legal name required.
- Email address — required only so we can send your one-time verification passcode (OTP), handle account recovery, and send occasional important notices.
- Password — stored only as an Argon2id hash. We never see or store your actual password.
- Optional station details you choose to add (station name, genre, stream URL).
- Basic technical logs (IP address, timestamps) for security and abuse prevention — see §4.
We do not collect credit cards at signup, government ID, physical address, or phone number.
2. Stage Names & Pseudonymity
You have the right to broadcast under a pseudonym. CasterClub does not require your real identity and will never force you to "verify" a legal name. We consider mandatory real-name policies a privacy hazard — they're how data brokers, scammers, and bad actors assemble profiles on people. Go by your on-air name.
3. How We Use Your Email
Your email is used for: OTP verification at signup, account recovery, security alerts, and infrequent service notices. We do not sell, rent, or share it with advertisers, and we don't run marketing spam.
4. Security & the BackDraft WAF
We hold your data to PCI-DSS-level standards even though we don't process cards: TLS encryption in transit, Argon2id password hashing at rest, least-privilege backend access, and audit logging.
In front of the site we run our own Web Application Firewall (WAF), Mcaster1BackDraft. A WAF inspects incoming web traffic and blocks malicious requests before they reach the application. Ours detects and blocks bots and attackers, rate-limits abuse, blocks disposable-email probing, and automatically bans IP addresses that attack our signup or scan for vulnerabilities. To do this it processes technical request data (IP address, user-agent, request path). This is used strictly for security and abuse prevention — never for advertising or profiling.
5. What We Don't Do
- We don't sell or rent your personal data. Ever.
- We don't require your real-world identity.
- We don't run third-party ad-tracking or behavioral profiling.
- We don't collect more than we need to operate your account.
6. Cookies We Use
We use functional cookies only — no advertising or third-party tracking cookies:
- Session cookie (
CASTERCLUB_SESSION) — keeps you signed in and protects forms against CSRF. Cleared when your session ends. bd_botproof— set by our BackDraft WAF once you pass the "Verifying you are human" check, so you aren't re-challenged for a short window. Security only.
These are strictly-necessary/security cookies the site needs to function. We do not use cookies for advertising, cross-site tracking, or data sale.
7. Your Choices & Contact
You can update or delete your account at any time. For privacy questions or data requests, contact admin@casterclub.ai.
New here? Our Signup Tips explain all of this in plain language before you create an account.