1. Who we are and our approach to Privacy
The privacy and security of your personal information is very important to us so we want to assure you that your information will be properly managed and protected whilst in our hands. Please read this policy carefully as it explains how we and/or carefully selected third parties we work with, collect and use your personal information.
You can ask for further information about our use of your personal information or complain about its use via the following methods:
- By joining our discord server (Chromiecraft Discord invite) and creating a support ticket to speak directly to staff (preferred method).
- By emailing us at [email protected]
2. What information do we collect and where do we get it from?
In order to use our services, an account is needed to be created by the user. The information gathered when an account is created is as follows:
- Email address
- IP Address
We also allow donations to be made to the service, which is made via Paypal. Whilst Paypal remains the Data Controller of the information provided when you make a donation, we also gain the following information:
- Paypal account name
- Email address
- Country of origin of donation
3. Why do we collect this information and how will we use it
We may collect and use your personal information under the following circumstances or for the following reasons:
To provide you services relating to the use of Chromiecraft such as:
- Enabling to log into your account and use the services of Chromiecraft
- Verifying a donation made via PayPal and a gift provided to your account in exchange for that donation
- Ensuring the use of your account remains in line with our Terms of Service and rules, disabling your access should these be broken
4. Who might we share your information with
We only share your information for the below reasons and with:
- Server backups. These are shared with our server hosting company, OVHcloud as well as Telegram
- PayPal challenges. Should a challenge be received from PayPal they will occasionally require further evidence in relation to your donation to us
5. Use and storage of your information overseas
In line with General Data Protection Regulations (GDPR), we can confirm your data remains within the European Economic Area (EEA) at all times. Whilst access to the databases will occasionally be done by staff outside of the EEA, information will remain within the database and not extracted from the central storage location. As an EEA user of Telegram, backups on that service are stored within the Netherlands and do not leave the EEA.
6. How will we deal with others acting on your behalf?
To help manage your access to Chromiecraft we will deal with individuals you nominate, including third parties we reasonably believe to be acting on your behalf provided they are able to answer our security questions. However, for your protection, we will need to speak to either you directly, your legal representative, someone you have nominated and given us permission to discuss your personal details with, or your Power of Attorney, should you require the deletion of your account or data.
7. Your rights
You have a number of rights concerning the personal information we use, these include the right to:
- object to the processing of your personal information for the justifiable reasons detailed in section 3. Please note that should you wish us to stop using your personal information for processing, we will no longer be able to provide you access to our services.
- ask for access to and a copy of your personal information.
- ask us to correct your personal information.
- ask us to delete your personal information. Please be aware that there may be certain circumstances where we may not be able to do this, for example, where the processing of your personal information is necessary for us to comply with a legal obligation. These could include but are not limited to a chargeback or a commitment to financial fraud in which we have been asked to provide evidence.
- ask us to restrict the use of your personal information at any time, except where we have a justifiable reason to use it.
- ask us to move, copy or transfer your personal information to a third party (known as ‘data portability’).
- complain to the European Data Protection Supervisors Office at any time if you object to the way we use your personal information or if you believe we have breached the requirements of the GDPR. For more information please go to https://edps.europa.eu/data-protection/.
To make a request as detailed above, please refer back to Section 1 to get in contact.