The responsible entity within the meaning of the DPA and GDPR is:
71-75 Shelton Street, London
Collection and processing of data
Personal Data is only collected if you provide this information voluntarily, for example as part of a registration, login, or enquiry. Only data that is required to fulfil the functionality of the App will be collected. The data is only collected and processed for a specific purpose.
Your Rights and Privileges
a) Privacy rights
Under the DPA and the GDPR, you can exercise the following rights:
- Right to information
- Right to rectification
- Right to object to processing
- Right to deletion
- Right to data portability
- Right of objection
- Right to withdraw consent
- Right to complain to a supervisory authority
- Right not to be subject to a decision based solely on automated processing.
If you have any questions about the nature of the Personal Data we hold about you, or if you wish to request the erasure or rectification of Personal Data we hold about you, or to exercise any of your other rights as a data subject, please contact us.
b) Updating your information
If you believe that the information, we hold about you is inaccurate or that we are no longer entitled to use it and want to request its rectification, deletion, or object to its processing, please do so by contacting us.
c) Withdrawing your consent
You can revoke consents you have given at any time by contacting us. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
d) Access Request
In the event that you wish to make a Data Subject Access Request, you may inform us in writing of the same. We will respond to requests regarding access and correction as soon as reasonably possible. Should we not be able to respond to your request within thirty (30) days after receiving your request, we will let you know in writing within thirty (30). If we are unable to comply with your request, we will tell you why (except where we are not required to do so under the respective legal regulations mentioned above).
e) Complaint to a supervisory authority
You have the right to complain about our processing of Personal Data to a supervisory authority responsible for data protection. The supervisory authority in the UK is: The Information Commissioner`s Office (ICO) is located at Wycliffe House, Water Ln, Wilmslow SK9 5AF, UK www.ico.org.uk
Relevant legal basis
In accordance with the DPA and GDPR, we need to have at least one of the following legal bases to process your Personal Data:
- to fulfil our services and carry out contractual obligations,
- to fulfil our legal obligations, and
- to protect our legitimate interests.
Downloading and Installation of our App and Data Collection by Google and Apple
Our APP can be downloaded from the app stores “Google Playstore” and “Apple App Store”. Downloading our APP may require prior registration with the respective APP store and installation of the app store software.
a) APP installation via the Google Playstore
You can use the Google service “Google Play” of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, US, if you are resident outside the EU and Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland if you are a resident within the EU, to install our APP.
As far as we are aware, Google collects and processes the following data;
- License check,
- network access,
- network connection,
- WLAN connections,
- location information,
b) APP installation via the Apple App Store
You can use the Apple App service “App Store” a service of Apple Inc., 1 Infinite Loop, Cupertino, CA 95014, US, if you are resident outside the EU and Apple Distribution International Ltd, Hollyhill Industrial Estate, Hollyhill Ln, Knocknaheeney, Cork, Ireland, if you are a resident within the EU, to install our APP.
As far as we are aware, Apple collects and processes the following data;
- device identifiers,
- IP addresses,
- location information,
c) Device information
We or rather Google and Apple collect information from and about the device(s) you use to access our APP, including hardware and software information such as IP address, device ID and type, device-specific and APP settings and properties, APP crashes, advertising IDs (such as Google’s AAID and Apple’s IDFA), both randomly generated numbers, information about your wireless and mobile network connection such as your service provider and signal strength; information about device sensors such as accelerometer, gyroscope and compass.
When you make In-app purchases or withdraws, we may collect third-party payment information and details about your transaction and purchase history.
e) Advertising and Marketing
Advertisers, marketing, and ad partners may collect from you and/or share information with us such as mobile identifiers, hashed email addresses, and information about your interactions and actions you have taken inside and outside of Gametok regarding the delivery of advertisements and your interaction with them and/or other tracking technologies to enable and optimise advertising. Tracking data collected by advertisers and third parties is used to decide which ads you see both on Gametok and on third-party sites and applications. Ads are personalised and based on the device you are using. You can disable this via the settings on your device.
We adhere to the Digital Advertising Alliance’s AdChoices program principles. If you do not wish to participate in our advertising personalisation using your Personal Data or retargeting/tracking programs, you can opt-out by following the directions provided within the applicable advertisement, or directly at the AdChoices website and use the opt-out mechanism. Similar and if you are a European user, you can object to behavioural advertising at the EDAA`s Your Online Choices website and for Canadian Users on the Digital Advertising Alliance of Canada website. Or alternatively using the global Network Advertising Initiative`s opt out facility.
Sign up and profile
A user profile will be created for you based on the information you provide during the sign up. You have the option of adjusting, changing, or deleting the information in your account and profile or by contacting us. The data processing carried out in this context is necessary to provide our service on the basis of the requests made by you.
Alternatively, you are able to sign up using the convenience log in and sign up from Google or Apple. For convenience log in and sign up, you will be asked to provide your basic information (i.e., name, email address, and display picture) linked to your account. When registering via convenience functions, you agree to the relevant terms and conditions and consent to certain data from your respective profile of being transferred to us.
When using our services
We process the data of our registered users in order to be able to provide our contractual services as well as to ensure the security of our services and to be able to develop it further. This includes in particular our support, correspondence with you, invoicing, fulfilment of our accounting and tax obligations. Accordingly, the data is processed on the basis of fulfilling our contractual obligations as well as to fulfil our legal obligations.
Some of the data you choose to provide may be considered non-Personal Data and/or “special” or “sensitive” in certain jurisdictions, for example your racial or ethnic origins, sexual orientation, and religious beliefs. By choosing to provide this data, you consent to our processing of that data.
Where any Personal Data relates to a third party, you represent and warrant that the Personal Data is up-to-date, complete, and accurate and that you have obtained the third party’s prior consent for our
collection, use and disclosure of their Personal Data for the Purposes. You agree that you shall promptly provide us with written evidence of such consent upon demand by us.
Unless otherwise specified the purposes of processing are contractual performance and service, contact requests and communication, office and organisational procedures, administration, and response to requests, visit action evaluation. The legal basis for the data processing is the fulfilment of our contractual obligations and, in individual cases, the fulfilment of our legal obligations as well as your consent.
You may upload and create content such as videos, text, photographs, and livestreams. This information may be accessed by others. Your videos and livestreams may be viewed and otherwise accessed by others and associated metadata may be viewable by others. Your interactions during live streams or with other users may be seen by others.
In doing so, we may derive facial-related information from your content solely for the purpose of supporting livestreams for you. We do not collect, use, or store any facial-related information for the purpose of recognising faces outside of the limited purposes set forth herein.
When you contact us
If you contact us, we collect the following information so we can help:
- the email address you use and the contents of your email (and any attachments); and
- public details from your social media profile if you reach out to us via these platforms, and the contents of your messages or posts to us.
How we share information
Our goal is to cast your videos and livestreams and to provide a platform that allows you to chat, share and engage with others. Your videos and livestreams may be viewed and otherwise accessed by others and associated metadata may be viewable by others. We also share some user information with service providers and partners who help us operate the Services, and in some cases with legal authorities.
We share some user information with service providers and partners who help us operate the Services, and in some cases with legal authorities.
We use third parties to help us operate and improve our services. These third parties assist us with various tasks, including data hosting and maintenance, analytics, customer support, marketing, advertising and security measures.
We may also share information with partners who distribute our services and assist us with advertising. For example, we may share limited information about you in hashed, non-human readable form with advertising partners.
We follow a rigorous vetting process before engaging a service provider or working with a partner. All our service providers and partners should commit to strict confidentiality.
We may transfer your information if we are involved in whole or in part in a merger, sale, acquisition, divestiture, restructuring, reorganisation, dissolution, bankruptcy or other change of ownership or control.
We may disclose your information if reasonably necessary: (i) to comply with a legal process, such as a court order, subpoena or search warrant, government/legal investigation, or other legal requirement; (ii) to assist in the prevention or detection of crime (in each case, subject to applicable law); or (iii) to protect the safety of any person.
We may also disclose information: (i) if disclosure would reduce our liability in actual or threatened litigation; (ii) if necessary to protect our legal rights and the legal rights of our users, business partners or other interested parties; (iii) to enforce our agreements with you; and (iv) to investigate, prevent, or take other action regarding illegal activities, suspected fraud, or other misconduct.
We may ask for your consent to share your information with third parties. In any such case, we will make clear why we want to share the information.
If you assert a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your Personal Data (e.g., retention periods under tax or commercial law); in the latter case, the data will be deleted once these reasons no longer apply.
Authorisations and Access
We may request access or permission to your internet connection, storage, media, gallery, camera, and files. The legal basis for data processing is our legitimate interest and the provision of contractual or pre-contractual measures. You can revoke or adjust your permissions at any time via your device`s Settings Menu.
When you use the App, you will receive so-called push messages from us, even if you are not currently using the App. These are messages that we send you as part of the performance of the contract. You can adjust or stop receiving push messages at any time via your device settings. Insofar as you consent to the use of push messages, consent is the legal basis for the processing.
We take appropriate technical and organisational measures in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk.
The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access to, input, disclosure, ensuring availability and segregation of the data. We also have procedures in place to ensure the exercise of data subjects’ rights, deletion of data and response to data compromise. Furthermore, we already take the protection of Personal Data into account in the development and selection of hardware, software, and procedures, in accordance with the principle of data protection through technology design and through data protection-friendly default settings.
For security reasons and to protect the transmission of confidential content that you send to us as the provider, this platform uses TLS encryption (Transport Layer Security), or better known as SSL (Secure Sockets Layer), which is now obsolete. You can recognise the secure, encrypted connection to this platform by the identifier https:// of the entry in the URL line (address line) of the browser used and/or the green lock symbol. HTTPS stands for Hypertext Transfer Protocol Secure.
We would like to point out that data transmission on the Internet (e.g., when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
Databases or data sets that include Personal Data may be breached inadvertently or through wrongful intrusion. Upon becoming aware of a data breach, we will notify all affected individuals whose Personal Data may have been compromised, and the notice will be accompanied by a description of action being taken to reconcile any damage as a result of the data breach. Notices will be provided as expeditiously as possible after which the breach was discovered.
Cooperation with processors
If, in the course of our processing, we disclose data to other persons and companies (processors, jointly responsible persons or third parties), transfer it to them or otherwise grant them access to the data, this will only be done on the basis of legal permission, users have consented, a legal obligation provides for this or on the basis of our legitimate interests.
If we disclose or transfer data to other companies in our group of companies or otherwise grant them access, this is done in particular for administrative purposes as a legitimate interest and, in addition, on a basis that complies with the legal requirements.
We do not use automated decision-making or profiling.
Do not sell my personal data
We do not sell information that directly identifies you.