Changes

We protect your Personal Data through a combination of collection, security, and retention policies.

We protect your Personal Data through a combination of collection, security, and retention policies.

* <u>Limited retention</u>. We only keep your Personal Data for as long as we need it for business and operational needs or to comply with any statutory, regulatory, or legal obligations. For example, we may retain Personal Data collected from you to support customer service inquiries and prevent repeated violations or suspected violations of our Terms of Use if your account has been banned or your access to the Services has been disabled for any reason.  

<li><u>Purpose limitation</u>. We will use your Personal Data only for the Services you choose to access and for the purposes for which you choose to share it. We will respect your requests to start or stop processing your Personal Data for marketing purposes, as well as the types of marketing messages you may wish to receive.</li>

* <u>Purpose limitation</u>. We will use your Personal Data only for the Services you choose to access and for the purposes for which you choose to share it. We will respect your requests to start or stop processing your Personal Data for marketing purposes, as well as the types of marketing messages you may wish to receive.

<li><u>Security measures</u>. We use appropriate measures to ensure a level of security appropriate to the risk involved and have implemented contractual, technical, administrative, and physical security measures designed to protect Personal Data from unauthorized access, disclosure, use, and modification. For example, we use a secure server. All supplied sensitive information is transmitted via Secure Socket Layer (SSL) technology and then encrypted. Such information is only accessible by those authorized with special access rights to such systems and that are required to keep the information confidential, subject to any additional requirements imposed by our contract with them and applicable law. As part of our privacy compliance processes, we review these security procedures on an ongoing basis to consider new technology and methods as necessary. However, please understand that our implementation of security measures as described in this Policy does not guarantee the security of your Personal Data.

 

* <u>Security measures</u>. We use appropriate measures to ensure a level of security appropriate to the risk involved and have implemented contractual, technical, administrative, and physical security measures designed to protect Personal Data from unauthorized access, disclosure, use, and modification. For example, we use a secure server. All supplied sensitive information is transmitted via Secure Socket Layer (SSL) technology and then encrypted. Such information is only accessible by those authorized with special access rights to such systems and that are required to keep the information confidential, subject to any additional requirements imposed by our contract with them and applicable law. As part of our privacy compliance processes, we review these security procedures on an ongoing basis to consider new technology and methods as necessary. However, please understand that our implementation of security measures as described in this Policy does not guarantee the security of your Personal Data.

<li>In the event of a security breach, we will notify the proper regulatory authorities and any affected users of the breach within 72 hours after we become aware of the breach.</li>

**In the event of a security breach, we will notify the proper regulatory authorities and any affected users of the breach within 72 hours after we become aware of the breach.

<u>Your Practices and Activities</u>

<u>Your Practices and Activities</u>

The following applies to California residents pursuant to the California Consumer Privacy Act of 2018 (“'''CCPA'''”):

The following applies to California residents pursuant to the California Consumer Privacy Act of 2018 (“'''CCPA'''”):

* In the preceding 12 months, we disclosed the categories of Personal Data listed below for business purposes:

** ''Identifiers'': your first and last name, email address, username, IP address, Steam ID, signature, billing and shipping address, telephone number, and online identifiers such as a key, token, or ID session.  

<li>In the preceding 12 months, we disclosed the categories of Personal Data listed below for business purposes:

** ''Commercial information'': your purchase history (''e.g.,'' value and details of purchase).  

 

** ''Internet or other similar network activity'': your interaction with the Services and advertisements, including the number of page visits, duration, and type of browser.  

** ''Categories of Personal Data described in Section 1798.80(e) of the California Customer Records'': your first and last name, signature, billing and shipping address, payment information, and telephone number.

<li>''Identifiers'': your first and last name, email address, username, IP address, Steam ID, signature, billing and shipping address, telephone number, and online identifiers such as a key, token, or ID session.</li>

** ''Other categories'': your gameplay information and phone model or the content that you share publicly in the Forum or Wiki, for example, or provide to us when you contact us directly.

 

<li>''Commercial information'': your purchase history (''e.g.,'' value and details of purchase).</li>

 

<li>''Internet or other similar network activity'': your interaction with the Services and advertisements, including the number of page visits, duration, and type of browser.</li>

 

<li>''Categories of Personal Data described in Section 1798.80(e) of the California Customer Records'': your first and last name, signature, billing and shipping address, payment information, and telephone number.</li>

 

<li>''Other categories'': your gameplay information and phone model or the content that you share publicly in the Forum or Wiki, for example, or provide to us when you contact us directly.</li>

 

 

* In the preceding 12 months, we have not sold Personal Data. We only disclose Personal Data to service providers.

<li>The categories of sources for the Personal Data we collected about you.</li>

<li>If we sold or disclosed your Personal Data for a business purpose, two separate lists disclosing: (a) sales, identifying the Personal Data categories that each category of recipient purchased; and (b) disclosures for a business purpose, identifying the Personal Data categories that each category of recipient obtained.</li>

*You have the right to request that we disclose certain information to you about our collection and use of your Personal Data over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you, to the extent retained by us:

<li>You have the right to request that we delete any of your Personal Data that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your Personal Data from our records, unless an exception applies. We may deny your deletion request if retaining the information is necessary for us or our service providers to:

** The categories of Personal Data we collected about you.

** The categories of sources for the Personal Data we collected about you.

** Our business or commercial purpose for collecting or selling that Personal Data.

** If we sold or disclosed your Personal Data for a business purpose, two separate lists disclosing: (a) sales, identifying the Personal Data categories that each category of recipient purchased; and (b) disclosures for a business purpose, identifying the Personal Data categories that each category of recipient obtained.

* You have the right to request that we delete any of your Personal Data that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your Personal Data from our records, unless an exception applies. We may deny your deletion request if retaining the information is necessary for us or our service providers to:

<ul style="list-style-image: none; list-style-type: circle;">

** Complete the transaction for which we collected the Personal Data, provide the Services that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you;

<li>Complete the transaction for which we collected the Personal Data, provide the Services that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you;</li>

** Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities;

<li>Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities;</li>

** Debug the Services to identify and repair errors that impair existing intended functionality;

<li>Debug the Services to identify and repair errors that impair existing intended functionality;</li>

** Exercise free speech, ensure the right of another user to exercise their free speech rights, or exercise another right provided for by law;

<li>Exercise free speech, ensure the right of another user to exercise their free speech rights, or exercise another right provided for by law;</li>

** Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.);

<li>Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.);</li>

** Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent;

<li>Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent;</li>

** Enable solely internal uses that are reasonably aligned with user expectations based on your relationship with us;

<li>Enable solely internal uses that are reasonably aligned with user expectations based on your relationship with us;</li>

** Comply with a legal obligation; or  

<li>Comply with a legal obligation; or</li>

** Make other internal and lawful uses of that information that are compatible with the context in which you provided it.

<li>Make other internal and lawful uses of that information that are compatible with the context in which you provided it.</li>

We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:

We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not: