Privacy policy

PRIVACY POLICY FOR GETMYGAMEKEY.COM

Last Updated: 16.01.2024.


INTRODUCTION:

Welcome to GetMyGameKey, where we prioritize your privacy and aim to provide you with a secure and enjoyable gaming experience. This privacy policy outlines how we collect, use, and protect your information when you visit our website and use our services. By accessing our platform, you agree to the terms outlined in this policy.


WHO IS THE DATA CONTROLLER:

Dataflip OU, registration number: 16221921, legal address: Päevalille tn 8, room 14, Tallinn, 13517, Estonia (also the “Company” or “we”), is the data controller responsible for the processing of your personal information and compliance with the General Data Protection Regulation (the GDPR) and other applicable laws.


INFORMATION WE COLLECT:

We collect various types of information to enhance your gaming experience, including:

User Account Data: This includes credentials, login data, steam ID, activity logs, etc.
Contact Details: This includes your name, email address, and other contact information necessary for communication.

Identity Information: We may collect data related to your identity, such as date of birth, personal identification number, full name, identification document details.

Company Representation Information: Information about a company that you represent, if applicable, such as company name, registration number, tax ID, contact person, legal address.

Authentication and Identification Data: Information used for user authentication and identification, such as usernames and passwords, biometrics, Identity Information, etc.

Legal Compliance Data: Information required to comply with legal and regulatory obligations (e.g., Anti-Money Laundering, sanctions, tax-related, etc.).

Order Data: Information related to your orders (including order history and related data).

Transaction Data: Information related to your transactions with us (including transaction history and related data).

Payment Information: Data necessary for payment processing, including credit card details or other payment methods, bank account details, current balance.

Financial Information: Information related to your financial transactions, financial state, etc.

Technical and Device Data: Details about the device you use to access our platform, including IP address, device type, and browser information.

Communication Data: Information exchanged during communication with us, including customer support inquiries and responses, records of incoming and outgoing calls, email conversation history, etc.

Video Surveillance Data: Video surveillance records and metadata (note: In certain physical locations, we may use video surveillance for security purposes).

User Support Data: Data generated during customer support interactions, aiding in issue resolution and service improvement.

Marketing Data: Information related to your marketing preferences and interactions with promotional materials, participation in loyalty programs.


HOW WE USE YOUR INFORMATION:

We utilize your information for various purposes, ensuring a tailored and secure gaming experience:

Service Provision: Providing requested gaming key services, managing orders, and executing transactions to fulfill your gaming needs.

User Account Management: Creating, maintaining, and enhancing your user account to facilitate seamless access and personalized interactions.

User Identity Verification: Verifying user identity and authenticating individuals to enhance account security and prevent unauthorized access.

Order and Transaction Management: Fulfilling and managing orders, executing transactions, and managing associated risks, for efficient service delivery.

Fraud Prevention: Preventing fraud and misuse of our services to safeguard users and maintain the integrity of our platform.

Communication: Interacting with users, providing service-related information, and offering user support for a comprehensive and responsive experience.

Marketing and Customization: Providing marketing information and customized content based on user preferences and behavior, enhancing engagement and enjoyment.

Security Measures: Ensuring the physical and cyber security of our information and assets, protecting against potential threats and breaches.

Risk Management: Assessing and managing risks, including business risks, to maintain the stability and resilience of our services.

Technical Issue Resolution: Addressing technical issues on our website and services, troubleshooting, and providing seamless functionality.

Claims and Dispute Resolution: Handling claims and resolving disputes to ensure fair and transparent user interactions.

Service Improvement: Analyzing user data to enhance and develop our services, ensuring continuous improvement and innovation.

Legal and Regulatory Compliance: Ensuring adherence to applicable legal and regulatory requirements to maintain a lawful and secure gaming environment.

These purposes align with legal bases outlined in the next section.


LEGAL BASES FOR PROCESSING

We process your data on the following legal bases, ensuring transparency and legality in our operations:

Contractual Necessity: Processing necessary for the performance of a contract, such as providing gaming keys, processing transactions, and fulfilling orders.

Legal Obligations: Processing required to comply with legal obligations, ensuring regulatory compliance.

Consent: Processing based on your explicit consent, obtained for specific purposes like marketing communications or optional data collection. You have the right to withdraw consent at any time.

Legitimate Interests: Processing necessary for our legitimate interests or the interests of a third party, provided your fundamental rights and freedoms are not overridden.

Vital Interests: Processing to protect vital interests, such as user safety and security.

Public Task: Processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority.

We carefully consider these legal bases to ensure that our data processing activities align with legal standards and respect your rights.


WHERE WE GET YOUR INFORMATION FROM:

We collect information directly from you during the account creation and purchase process. Additionally, we may gather data from third-party services (e.g., payment processors) or publicly available sources.


SHARING YOUR INFORMATION:

We do not sell or rent your personal information to third parties. However, we may share your information with trusted partners for specific purposes, such as payment processing or customer support, or state authorities if obliged by law.


OBLIGATORY AND OPTIONAL INPUT:

Certain details marked as obligatory are essential for service functionality, such as account creation and transactions. Non-provision may affect your access to certain features. Other information is optional, and you have control over what you choose to share. You can adjust preferences for optional information through account settings or contact support at a later point. Non-provision of optional information will not impact your ability to access core services and functionality.


DATA RETENTION:

We retain your information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. In general, the retention terms are determined by various factors, including legal requirements, the nature of the data, and the purpose for which it was collected. However, in certain cases, we may need to retain your information for an extended period to comply with legal obligations, resolve disputes, or enforce agreements. In such instances, we will ensure that the retention is in line with applicable laws and regulations.

If the data no longer serves any legitimate purpose and there are no legal obligations requiring its retention, we will securely delete it from our systems. Where applicable and feasible, data will be irrevocably anonymized, meaning that personal identifiers will be removed from the data to ensure that it cannot be associated with any individual. Anonymized data may be retained for analytical and statistical purposes.


INTERNATIONAL TRANSFERS

Your data may be processed outside the European Union and European Economic Area (EU/EEA). When such international transfers occur, we will ensure that they comply with applicable laws, including the General Data Protection Regulation (GDPR). For compliance with the said laws, we use measures such as adequacy decisions, Standard Contractual Clauses (SCC), or other legal safeguards to ensure your data receives the necessary protection.


YOUR RIGHTS

As a data subject, you have several rights regarding your personal information, including:

Access: You can request details about the personal data we hold and how we process it.
Rectification: If your information is inaccurate or incomplete, you have the right to correct it.
Erasure: You can request the deletion of your personal data under certain conditions.
Restriction of Processing: In some cases, you have the right to limit the processing of your data.
Data Portability: You can request a copy of your data in a commonly used and machine-readable format.
Object to Processing: You have the right to object to certain types of processing, such as direct marketing.
Withdraw Consent: If we rely on your consent for processing, you have the right to withdraw it at any time. Withdrawal of consent does not affect the lawfulness of processing before consent withdrawal.

Please note that there may be pre-conditions or legal obligations that impact the immediate exercise of these rights. We may also need to verify your identity before fulfilling your request to ensure the security of your data.

To exercise these rights or for further information, please contact us through the details provided in the "CONTACT INFORMATION" section below.

LODGING A COMPLAINT

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the relevant supervisory authority, such as the Estonian Data Protection Inspectorate. However, we strongly encourage you to contact us first to address any concerns in an efficient and friendly manner. We are committed to resolving issues promptly and ensuring your satisfaction.


SECURITY MEASURES

We employ robust security measures, including encryption, access controls, and regular security audits. Furthermore, we collaborate with PCI DSS-compliant third parties for secure payment processing.

We encourage users to play an active role in data security by following best practices to protect their accounts and personal information.


AUTOMATED DECISION MAKING AND PROFILING:

We don't use automated decisions with legal consequences, but we do employ profiling for personalized content and recommendations based on your preferences and gaming history. This enhances your user experience while maintaining transparency.


CHANGES AND UPDATES:

We may update this privacy policy to reflect changes in our practices. Significant updates will be communicated to you through our platform or other means.


CONTACT INFORMATION:


For any inquiries, concerns, or requests related to your privacy, please contact us at [email protected]

Thank you for trusting GetMyGameKey with your information. We are committed to ensuring the security and confidentiality of your data.