You can use the contact details above to reach our data protection officer or another contact person relevant to data protection. Please feel free to contact us at any time if you have specific questions about your data, its deletion, or your rights.

When you contact us via email, we will store your email address and any other information you provide (like your name and phone number) to respond to your inquiry. We will delete this data once it is no longer necessary to keep it, or we will restrict processing if we are subject to legal retention obligations.

2. Your Data Protection Rights

Under the GDPR, you have specific rights regarding your personal data. You can contact us at any time using the details above to exercise these rights:

• Right to Withdraw Consent (Art. 7(3) GDPR): You can withdraw consent you have previously given (e.g., for receiving our newsletter).
• Right of Access (Art. 15 GDPR): You can request a copy of the personal data we hold about you.
• Right to Rectification (Art. 16 GDPR): You can ask us to correct inaccurate or incomplete data we hold about you.
• Right to Erasure ('Right to be Forgotten') (Art. 17 GDPR): You can request that we delete personal data we hold about you under certain conditions.
• Right to Restriction of Processing (Art. 18 GDPR): You can ask us to limit how we use your personal data under certain conditions (e.g., instead of deleting your email, you can request we only use it for essential communications).
• Right to Data Portability (Art. 20 GDPR): You can request to receive your personal data in a structured, commonly used, machine-readable format and have the right to transmit that data to another controller.
• Right to Object (Art. 21 GDPR): You can object to the processing of your personal data based on legitimate interests (e.g., object to advertising or analytical processing) under certain circumstances.
• Right to Lodge a Complaint (Art. 77(1) GDPR): You have the right to complain to a competent data protection supervisory authority if you believe our processing of your personal data infringes the GDPR. A list of authorities can be found here: https://www.edpb.europa.eu/about-edpb/more-about-edpb/contact-us_en

Our Competent Supervisory Authority is:

Integritetsskyddsmyndigheten
Fleminggatan 14
104 20 Stockholm
Sweden

3. Data Erasure and Storage Period

We delete or anonymize your personal data as soon as it is no longer necessary for the purposes for which it was collected, unless a longer retention period is required or permitted by law. For example, your email address will be deleted after you unsubscribe from our newsletter. Data may also be blocked or deleted if a statutory retention period expires.

Certain data must be retained for longer periods due to legal obligations. Data protection inquiries and other legal concerns may be stored longer within the framework of legal retention and limitation periods.

You can request information about your stored data at any time.

4. Legal Bases for Data Processing

We only process your personal data when we have a valid legal basis to do so. These bases include:

• Consent (Art. 6(1)(a) GDPR): When you have given clear consent for us to process your personal data for a specific purpose (e.g., signing up for a newsletter).
• Performance of a Contract (Art. 6(1)(b) GDPR): When processing is necessary for the performance of a contract with you (e.g., processing data to provide you access to our games or services after registration) or to take steps at your request before entering into a contract.
• Compliance with a Legal Obligation (Art. 6(1)(c) GDPR): When processing is necessary for us to comply with a legal obligation (e.g., retaining certain records for tax purposes).
• Legitimate Interests (Art. 6(1)(f) GDPR): When processing is necessary for our legitimate interests or those of a third party, provided your fundamental rights and freedoms do not override those interests. Examples include ensuring website security, improving our services, or preventing fraud. Where we rely on this basis, we have assessed the balance between our interests and your rights. You have the right to object to processing based on legitimate interests if you have specific reasons related to your situation.

We will specify the legal basis for each specific processing activity described below.

When we use external service providers (processors) for certain functions, we carefully select them based on their commitment to data protection and security. We enter into data processing agreements with them that comply with Article 28 of the GDPR. If these providers are located outside the EU/EEA, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses or reliance on adequacy decisions like the EU-US Data Privacy Framework (Art. 46 GDPR), to ensure a level of data protection equivalent to that in the EU.

5. Data Processing Activities

5.1. Visiting Our Website

When you simply visit our website without registering or logging in, we collect certain technical data automatically transmitted by your browser to enable the website's display and functionality. This data typically includes:

• Your IP address
• Approximate location based on your IP address
• Your Internet service provider
• Date and time of your visit
• Your browser type and version
• Your operating system

Purpose: To technically enable your access to the website, ensure its correct and secure display, prevent display issues, and resolve error messages. We also use aggregated, anonymized data for statistical purposes to optimize our website.

Security Measures: We delete or anonymize your IP address shortly after your visit. This means the other technical data cannot be linked back to you and is used only for anonymous, statistical analysis.

Legal Basis: Our legitimate interest (Art. 6(1)(f) GDPR) in providing a functional and secure website, balanced against your privacy interests through the security measures implemented.

5.2. Downloading Our Apps

When you download one of our apps from an app store (like Google Play Store or Apple App Store), the app store platform collects certain information from you. This typically includes your username, email address, customer number, download time, payment information, and device ID. We do not control or are responsible for this data collection by the app store provider. We only process the data received from the app store if it is necessary for you to download the app to your device.

5.3. Registration and Login

You can create a user account on our website to access extended features. To register, you need to provide:

• Email address
• Password

After clicking an activation link sent to your email, your data is stored permanently until you delete it or your account. If you do not activate your account, the data will be deleted after two weeks. Please do not use real names, names of others, or protected trademarks as your username.

We may assign you to a country based on your IP address to offer relevant payment methods. In some cases, a single registration allows you to use the account across multiple game worlds, storing your data centrally for that game.

Purpose: To create and manage your user account, enable access to extended website functions, and offer suitable services based on your location.

Security Measures: Your registration data is transmitted via an encrypted connection. Your data is stored securely after successful confirmation.

Legal Basis: Your consent (Art. 6(1)(a) GDPR) when you voluntarily register. If registration is required for a contract, the legal basis is the performance of the contract (Art. 6(1)(b) GDPR).

5.4. Social Sign-in and Social Login

We offer the option to log in using your existing accounts from selected social networks (e.g., Steam, Google, Discord, Apple). If you choose this, you will be redirected to the provider's site for authentication.

Purpose: To facilitate easy login using existing accounts to access website features.

Security Measures: Data is transmitted via an encrypted connection to the social network. We do not access or store personal data like friend lists or contacts from these accounts, nor do we establish a permanent link between your game account and your social network account. We are not aware of what data the social networks collect or link during this process. Please review their privacy policies for details:

• Steam: https://store.steampowered.com/privacy_agreement/
• Google: https://policies.google.com/privacy?hl=en-US
• Discord: https://discord.com/privacy
• Apple: https://www.apple.com/legal/privacy/en-ww/

Legal Basis: Your consent (Art. 6(1)(a) GDPR) when you choose to use this voluntary login method.

5.5. Support Help Center / Contact Options

You can contact us through our Help Center contact form. To use this, you need to provide data such as your email address and avatar name. You may also include attachments like screenshots to support your request.

Purpose: To allow you to contact us with questions, suggestions, or issues, and for us to respond to you.

Legal Basis: Performance of a contract (Art. 6(1)(b) GDPR) if your request relates to your user account or a service we provide, or our legitimate interest (Art. 6(1)(f) GDPR) in responding to general inquiries.

5.6. Newsletter

You can subscribe to our newsletter for news about our company and products. We use a double opt-in process to confirm your subscription. Your email address is stored until you unsubscribe using the link provided in every newsletter email.

We use a specialized service provider, [Insert Newsletter Provider Name Here], to deliver the newsletter. We have a data processing agreement with this provider in compliance with Art. 28 GDPR. Their privacy policy can be found here: [Insert Newsletter Provider URL Here]

Purpose: To send you newsletters based on your request.

Security Measures: Double opt-in procedure and a data processing agreement with the provider. You can unsubscribe at any time.

Legal Basis: Your consent (Art. 6(1)(a) GDPR).

5.7. Communication in the Games

Our games offer communication features (e.g., chat). We use automatic filters to prevent communication violating our Terms and Conditions (e.g., mass messaging, offensive content). We also temporarily log communication data to analyze technical errors, ensure system security, combat misuse, and compile non-personal usage statistics. Logged data includes date, time, sender, recipient, message text, and data volume.

We do not read messages without your consent unless there is a suspected misuse or unauthorized use (e.g., reported messages). In such cases, we reserve the right to investigate the affected account and messages and take action.

Purpose: To provide in-game communication features, ensure a safe and compliant environment, maintain system security, and analyze usage for improvements.

Legal Basis: Consent (Art. 6(1)(a) GDPR) as providing data for communication is voluntary, and our legitimate interest (Art. 6(1)(f) GDPR) in maintaining a safe and functional game environment and preventing misuse.

5.8. Use of Forums

Using our forums is voluntary. You can use a real name or a username (recommended). Please be mindful of the information you share to protect your and others' privacy. We process personal data (username, profile picture, posts) solely for forum operation and administration.

Published posts are publicly visible. We are not responsible for how third parties use information you share publicly. You can withdraw your consent to data processing in the forums at any time, leading to the removal of your data unless legal retention requirements apply.

Purpose: To provide and administer a community forum.

Legal Basis: Your consent (Art. 6(1)(a) GDPR) as implied by your voluntary use of the forums and agreement to the terms of use.

5.9. Cookies

Our website uses cookies, which are small text files stored in your browser. Cookies contain information about your visit, such as the website name, expiry date, and a unique value.

Some cookies are temporary (session cookies) and are deleted when you close your browser. Others are persistent and remain stored until their expiry date or you delete them manually.

We use three types of cookies:

• Essential Cookies: Necessary for the website's basic functionality and to remember temporary settings.
• Function and Performance-related Cookies: Help us analyze technical data about your visit to prevent errors and improve performance.
• Advertising and Analytical Cookies: Enable personalized advertising and help us understand website usage (e.g., showing ads based on your Browse history).

You can configure, block, and delete cookies through your browser settings. Note that disabling some cookies may affect website functionality. Deleting necessary cookies will end abruptly certain functionalities such as logged-in session in our services.

Legal Basis: For essential cookies, our legitimate interest (Art. 6(1)(f) GDPR) in providing a functional website. For other cookies, your consent (Art. 6(1)(a) GDPR), typically obtained through a cookie banner.

6. Data Recipients

We share your data with certain recipients to provide our services and communicate with you, as described above. These may include:

• Google Analytics: Operated by Google Ireland Ltd. (Ireland). Used for website usage analysis and personalized advertising. Data is processed within the EU. See Google's privacy policy: https://policies.google.com/privacy
• Google DoubleClick: Operated by Google Ireland Ltd. (Ireland). Uses cookies for interest-based advertising. Assigns a pseudonymous ID to your browser to track ads shown and clicked. Information generated by cookies may be transferred to Google servers in the USA for analysis and storage.
• [Insert Newsletter Provider Name Here]: For newsletter delivery (see section 5.6).
• External Advertising Networks: For personalized advertising in our games (see section 7.3).

We only share data necessary for contract fulfillment or when you have given consent. In some cases, data is shared based on legitimate interests (e.g., for website functionality). We have data processing agreements (Art. 28 GDPR) with all external recipients.

Some service providers mentioned may transfer data to the United States. We ensure appropriate safeguards are in place for such transfers (Art. 46 GDPR), such as relying on the EU-US Data Privacy Framework (if applicable to the provider) or using Standard Contractual Clauses. We also review providers and implement additional security measures like strong encryption where necessary.

7. Data Collection in Our Game Apps

7.1. General App Data Collection

When you use our game apps, we collect and store certain data to provide the games, improve your experience, and offer tailored content. This includes:

• Device identifiers (hashed device ID and timestamp, user IDs)
• Game progress and behavior
• In-app purchase history
• Game version
• Device hardware details
• Operating system
• Language settings
• Approximate location based on device language/time zone
• Date and time of gaming sessions

Purpose: To connect to game servers, provide game services, offer a personalized gaming experience, optimize the game, and enable interest-related advertising.

Security Measures: Identifiers and most technical data are deleted or anonymized after your gaming session. Other data is primarily used for statistical and optimization purposes.

Legal Basis: Performance of the contract with you (Art. 6(1)(b) GDPR) to provide game services and our legitimate interest (Art. 6(1)(f) GDPR) in improving the game and providing a personalized experience. Security precautions are used to protect your data.

7.2. App Permissions

Our mobile apps may request access to certain device functions. You can typically accept or reject these permissions, and revoke them later in your device settings. The permissions may include:

• iOS:
  • Push Notifications: Allows the app to send you game-related alerts even when the app is closed.
  • Game Center: Connection to Apple's Game Center service (subject to Apple's privacy policy: https://www.apple.com/privacy). Note that information shared via Game Center may be visible to other players.
• Android:
  • External Storage (Read/Write): Allows the app to temporarily store content in its own allocated space on your device. It does not access, modify, or delete other data on your storage.
  • Internet Connection (Full Network Access, View Connections): Allows the app to access online data and check network status to manage data usage (e.g., prevent large downloads over mobile data).
  • Prevent Device from Sleeping: Allows the app to keep the screen active (e.g., during video playback).

Purpose: To enable specific app features like notifications, save game data, manage network usage, and provide personalized content.

Legal Basis: Your consent (Art. 6(1)(a) GDPR) when you grant the permissions (optional permissions) or performance of a contract (Art. 6(1)(b) GDPR) for necessary technical permissions.

8. Handling of Children's Data

We understand the importance of protecting children's privacy online. Due to legal requirements, we do not knowingly collect personal, individually identifiable information from children under the age of 13 [or other relevant age based on jurisdiction, e.g., 16 in some EU countries]. If we become aware that we have inadvertently collected such information, we will take steps to delete it as soon as possible.

Parents or guardians who believe that their child may have provided personal data to us should contact us using the details in Section 1.