“Personal Data” shall mean any information relating to a Data subject; an identifiable person is one who can be defined, directly or indirectly, notably by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to his/her physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Contact data and Service Data are Personal Data.
“Contact Data” means any names, phone numbers, e-mail addresses and certain financial details held within commercial systems to conduct the Parties’ relationship management and billing transactions between the Parties.
“Controller”, “Data Subject”, “Personal Data”, “Process/Processing” and “Processor”, shall have the same meaning as in the European Union Directive 95/46/EC or the General Data Protection Regulation 2016/679 of April 27th, 2016.
“Third Country” means a country that is: (i) outside of the European Economic Area; and (ii) not the subject of a formal decision by the European Commission, made pursuant to Section 25(6) of the European Union Directive 95/46/EC or under Article 45 (1) of the General Data Protection Regulation 2016/679, stating that that country ensures an adequate level of protection for personal Data.
2. Collection of information
Information collected through the Platform
CAER SIDI may also collect and process other information when you interact with the Games online, such as the type of browser you are using, the type of operating system you are using; the IP address or other unique identifier such as a device identifier of any of your computer(s) or device(s) that are used to access the Platform. Such information will be collected and processed irrespective of whether you only access the Platform or if you actually play the Games. CAER SIDI may also collect and process certain information when you as a user with a user account interact with the Games such as the information in your personal profile, the relationships you form in the Games, the messages you send, the groups you form, the events you set up, the applications you add and the information you transmit information through various channels.
Information collected through other sources
CAER SIDI may also collect information about you from other sources, such as third party sites or platforms, newspapers, blogs, instant messaging services, and other End Users of the Platform through the operation of the Platform in order to provide you with more useful information and a more personalized experience.
3. Cookies and logs etc.
Logfiles. Log files are files that log actions that have occurred on a website. CAER SIDI may collect data in the form of log files and may use such log files to gather statistics about End Users user habits and to assess overall Games activity, including how many "hits" a particular web page is getting and other navigational data. These entries are generated anonymously, and enable CAER SIDI to track interest in specific promotions, troubleshoot technical concerns, and provide End Users with content that may be of interest to them. Log files are used internally only, and are not associated with any particular user, computer, or browser.
Web beacons. The Platform may use a variety of technical methods for tracking purposes, including “Web beacons” etc. Web beacons are small pieces of data that are embedded in images on the pages of the Platform. We may also use these technical methods to analyze the traffic patterns in the Games such as the frequency with which End Users accesses various parts of the Games etc. These technical methods may involve the transmission of information either directly to us or to another party authorized by us to collect information on our behalf. We also use these technical methods in HTML emails that we send our End Users to determine whether our End Users have opened those emails or clicked on links in those emails. The information from use of these technical methods may be collected in a form that is personally identifiable.
4. Use of information – Purpose and legal basis
CAER SIDI will use information about you for the following purposes in accordance with applicable laws:
Information is provided by you or collected in or in relation to the Platform and/or collected from other sources in order to:
Processing of this information is necessary for the purpose of performance of a contract to which you are party in order to support the operation of the Platform facilitate the delivery of requested products and services and enable maintenance and update of the Platform under Article 6(1)(b) of the GDPR and purposes is justified by our legitimate interests in providing advertisements and content of interest to you and improving our services in accordance with Article 6(1)(f) of the GDPR ("the balancing-of-interest rule"). Disclosure of your advertising ID to third parties for the purposes of behavioral advertising is based on your consent in accordance with Article 6(1)(a) of the GDPR. We only process your information to the extent that is necessary to achieve the purposes for which the information has been collected.
5. Storage of Personal data
6. Information we share with third parties
As a general rule we will not share Personal Data that directly identifies you (such as your name, e-mail or postal address) with independent third parties without your consent, unless it is either required by law or we determine that disclosure is reasonably necessary to enforce our rights, property or operations or to protect our players or third parties. We may share anonymous or aggregated information, or other data that does not directly identify you, with third parties, for instance your persona on leaderboards or to show trends about use of our products.
Notwithstanding the forgoing, we may share information about you with certain third parties based on the legal basis in Articles 6(1)(b), 6(1)(c) and 6(1)(f) of the GDPR as follows:
When required by applicable law, rule, regulation, legal process, in the process of negotiations of, any mergers and acquisitions, sale of company assets, financing or acquisition of all or a portion of our business by another company where personally identifiable information submitted to us may be transferred to the acquiring entity.
When ordered or requested by courts, legal authorities etc. and required in order for us to abide by applicable laws, or to protect our rights, in defense in law suits, property or safety of CAER SIDI, the Games, end users etc.
In order to provide certain Games features.
For advertising purposes. We may share your advertising ID with advertising in order to serving behavioral advertisements to you within the Platform if you have given consent in accordance with Article 6(1)(a) of the GDPR.
7. Payment information
In order to access the complete Game, certain premium Games functions, levels, content and features etc. you may be required to pay certain fees. When purchasing such features and functions etc. you may be asked to provide certain personally identifiable information, such as full name, billing address, email address, phone number and credit card number/expiration date etc. Please note that you must be the age of 16 or older to make purchases in the Games, however children under sixteen may access to the Platform and play the Games under the supervision of a legal guardian.
Once End Users have successfully entered valid credit card information etc. and completed the order process, a purchasing account will be created and maintained for them. CAER SIDI will use the information provided to process the End User’s order and to send order confirmations via email, as well as to make future purchases easier for the End User. CAER SIDI does not sell, transfer or share customer information with third parties, except where applicable the information is transferred, disclosed and shared with its third-party agent(s) who uses the information solely to handle and deliver certain online activities necessary to operate CAER SIDI’ business (e.g. processing orders and payments).
CAER SIDI has taken reasonable steps to ensure that the personally identifiable information it collects is secure and we have taken reasonable measures to protect the confidentiality, security, and integrity of the Personal Data collected from our Platform’s End Users. Personal Data is stored in secure operating environments that are not available to the public and that are only accessible to authorized employees and contractors. We also have security measures in place to protect the loss, misuse, and alteration of the information under our control. However, there is no such thing as perfect security. As a result, although we strive to protect personally identifying information, we cannot ensure or warrant the security of any information transmitted to us through or in connection with the Platform, that we store on our systems or that is stored on our service providers' systems.
Please note that CAER SIDI may provide other games that are operated and hosted by third parties who may have their own information collection practices. Those other games are governed by their own privacy policies, which may be substantially different from CAER SIDI’ policies.
9. International Data Transfers
We may transfer and share your information to third parties (including the Games providers) which may be located in countries outside the European Union (“EU”) and/or the European Economic Area (“EEA”) which may not have the same level of data protection laws as those in the country where you are located. Where your data is sent to a country outside the EU/EEA that is not subject to an adequacy decision by the EU Commission, the transfers will only occur based on the following safeguards: i) If the entity is certified to comply with the principles for data protection under the US-EU Privacy Shield Framework ("Privacy Shield") (see Privacy Shield at www.privacyshield.gov), or ii) If we have entered into EU Commission approved standard contractual clauses with the entity, which is deemed to offer sufficient safeguards with respect to the protection of the privacy and fundamental rights and freedoms of individuals.
10. Your Choices and Controls
You have the following rights regarding your Personal Data:
The right to request access
In accordance to Article 15 of the GDPR you may request access to processed Personal Data. This includes confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the following information:
Where Personal Data are transferred to a third country or to an international organization, you have the right to be informed of the appropriate safeguards pursuant to Article 46 of the GDPR relating to the transfer.
You shall be provided a copy of the Personal Data undergoing processing. For any further copies requested, we may charge a reasonable fee based on administrative costs. Where you makes the request by electronic means, and unless otherwise requested by you, the information shall be provided in a commonly used electronic form. The right to obtain a copy shall not adversely affect the rights and freedoms of others. Please note that the access may be restricted due to intellectual property or trade secrets.
The right to object
You have the right to object to the Personal Data processing on grounds relating to your particular situation when the data are processed based on the balancing-of-interest rule in Article 6(1)(f) of the GDPR, see Article 21 of the GDPR. In this case, we will cease the processing unless there are compelling legitimate grounds for the processing which override your interests, rights and freedoms or if the processing is necessary for the establishment, exercise or defense of legal claims. You have the right to object to our processing of your Personal Data for direct marketing purposes at any time. We will cease the processing of your Personal Data for this purpose after the objection. Please note that if you exercise this right, your access to the Platform and related services will cease automatically.
Right of correction and erasure
You have the right to have inaccurate Personal Data rectified, in accordance with Article 16 of the GDPR.
You have the right to have your Personal Data erased where one of the following grounds applies, see Article 17 of the GDPR:
Please note that your right to erasure may be limited if the data are necessary for compliance with a legal obligation or for the establishment, exercise or defense of legal claims.
The right to restriction
You have the right to obtain restriction of processing in certain circumstances, in accordance with Article 18 of the GDPR. If you have the right to restriction, we will only process your Personal Data with your consent or for the establishment, exercise or defense of a legal claim or to protect a person or important grounds of public interest.
The right to withdraw consent
If we have asked for your consent to our processing of your Personal Data, you have the right to withdraw your consent at any time, in accordance with Article 7 of the GDPR. If you withdraw your consent, we will cease processing of the Personal Data for which you have withdrawn consent, unless we have a legal obligation to keep some or parts of your data. Please note that if you withdraw your consent, your right to play the Games and related services will cease automatically. The withdrawal of your consent does not affect the lawfulness of processing based on your consent before its withdrawal.
The right to data portability
You have the right to receive your Personal Data that you have provided to us in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hinderance if the processing is based on consent or contract performance, sin accordance with Article 20 of the GDPR.
Changing or Removing Account Information
Access and control over most Personal Data on the Platform is readily available through the profile editing tools. End Users may modify or delete any or all of their profile information at any time by logging into their accounts. Information will be updated as soon as possible. End Users who wish to deactivate their Games account may do so in their accounts. Removed information may persist in backup copies for a reasonable period of time but will not be generally available to other End Users or visitors of the Platform. You cannot however remove communications made in any communication features on the Platform, which might have been shared with other End Users (for example sending personal messages to another End Users).
If you wish to invoke any of the rights described above, you may contact us at any time by emailing us at firstname.lastname@example.org. We will process and answer your requests without undue delay and in any event within one month of our receipt of the request unless a longer period is required due to the complexity of the request. In this case, our response time can be up to three months in total as permitted by Article 12 of the GDPR.
Disputes between you and CAERSIDI
Our goal is to resolve disputes fairly and quickly. For all disputes against CAER SIDI, you agree to first contact CAER SIDI and try to resolve the dispute informally by sending a written notice of the claim ("notice") to CAER SIDI. The notice to CAER SIDI must be sent via registered letter to the address listed in section 16 below or by email with confirmation of receipt. The notice must (a) include your name, your residential address and e-mail address and/or mobile phone number associated with your account registered with CAER SIDI; (b) describe the type and reason for the claim; and (c) specify the specific compensation sought, if any. If you and CAER SIDI cannot agree on a solution to the dispute within 60 days of receiving such a notice, either party may initiate legal proceedings in accordance with sections 12-13 below.
You are solely responsible for your interactions with other users of the Platform. We reserve the right, but have no obligation, to monitor disputes between you and other users.
12. Class action waiver
You agree that any and all claims must be made in your individual capacity, and not as a plaintiff or class member in any purported class or representative proceeding.
14. Governing law
(b) Notwithstanding anything to the contrary, CAER SIDI may apply to any court of competent jurisdiction for injunctive or other equitable relief.
HiTech Powerup OÜ
Address: Sepapaja 6, Tallinn 15551, Estonia