Privacy Policy

Last Updated: January 1, 2026 | Effective Date: January 1, 2026

0. Data Controller Information

The data controller responsible for your personal information is:

0.1 Data Protection Officer (DPO)

Our Data Protection Officer is responsible for overseeing data protection compliance and addressing your privacy-related inquiries:

  • Name: Voxel Arcade Hub Doe (Data Protection Officer)
  • Email: [email protected]
  • Response Time: We will respond to DPO inquiries within 1 business day

0.2 Legal Basis for Data Processing (GDPR)

For users in the European Economic Area (EEA), we process your personal data based on the following legal grounds under Article 6 of the GDPR:

  • Consent (Article 6(1)(a)): For non-essential cookies, marketing communications, and optional data collection (you may withdraw consent at any time)
  • Performance of a Contract (Article 6(1)(b)): To provide gaming services you have requested (account access, game play, support)
  • Legal Obligation (Article 6(1)(c)): To comply with tax, accounting, and other legal requirements
  • Legitimate Interests (Article 6(1)(f)): To operate, secure, and improve our platform (our interests do not override your privacy rights)

For California Residents (CCPA/CPRA): We collect and process your personal information to operate our business and provide our services, as permitted under California law.

1. Information We Collect

We collect information to provide better services to all our users. This includes:

  • Log data such as IP address, browser type, and device information
  • Usage data including pages visited, games played, and time spent on our platform
  • Cookies and similar technologies to improve user experience (see Section 4 for details)
  • Any personal information you voluntarily provide through contact forms (name, email, message content)
  • Payment information (if applicable) processed through secure third-party providers

2. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve our services
  • Understand user behavior and preferences to enhance gaming experience
  • Send important updates and communications about our platform
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations and protect our rights
  • Send marketing communications (only with your explicit consent)

2.1 Data Retention Periods

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by law:

  • Log and usage data: Retained for 90 days, then anonymized
  • Contact form submissions: Retained for 2 years from submission date
  • Account information (if applicable): Retained for the duration of your account + 2 years after closure
  • Payment information: Retained for 7 years (to comply with tax/accounting laws)
  • Marketing data: Retained until you opt-out + 6 months
  • Customer support records: Retained for 1 year after resolution

We will delete or anonymize your data once the retention period expires, unless required by law to retain it longer.

3. Data Security

We implement appropriate security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

  • SSL/TLS encryption for data transmission
  • Secure server storage with access controls
  • Regular security audits and vulnerability testing
  • Employee data protection training

4. Cookies

Our website uses cookies and similar tracking technologies to enhance user experience. We categorize cookies as follows:

  • Essential Cookies: Required for basic website functionality (cannot be disabled)
  • Analytics Cookies: Help us understand how users interact with our platform
  • Functionality Cookies: Remember your preferences (e.g., language settings)
  • Marketing Cookies: Used to deliver personalized advertisements

You can control cookie settings through our cookie consent banner or your browser preferences. You may withdraw your consent to non-essential cookies at any time.

For more details, see our Cookie Policy.

5. Third-Party Services

Our platform may use third-party services such as analytics providers and advertising networks. These services may collect information about your usage of our platform. We only work with third parties that comply with GDPR/CCPA requirements and require them to protect your data.

We encourage you to review their privacy policies:

6. Children's Privacy

Our platform is designed to be family-friendly. We do not knowingly collect personal information from children under 13 years of age (COPPA). For users in the EU under 16, we require verifiable parental consent before collecting any personal data.

If you are a parent or guardian and believe your child has provided us with personal information, please contact our DPO at [email protected] to request deletion.

7. User Rights

For EU/EEA Residents (GDPR Rights)

You have the following rights under the General Data Protection Regulation (GDPR):

  • Right to Access (Article 15): Request a copy of your personal data and information about how we process it
  • Right to Rectification (Article 16): Request correction of inaccurate or incomplete personal data
  • Right to Erasure (Article 17): Request deletion of your personal data ("Right to be Forgotten")
  • Right to Restriction of Processing (Article 18): Request limitation of how we process your data
  • Right to Data Portability (Article 20): Request a copy of your data in a machine-readable format
  • Right to Object (Article 21): Object to processing based on legitimate interests or direct marketing
  • Right to Withdraw Consent (Article 7): Withdraw any consent you have given at any time (without affecting prior processing)
  • Right to Lodge a Complaint: File a complaint with your local data protection authority

For California Residents (CCPA/CPRA Rights)

You have the following rights under the California Consumer Privacy Act (CCPA/CPRA):

  • Right to Know: Request information about what personal data we collect, use, disclose, or sell
  • Right to Delete: Request deletion of your personal information (subject to exceptions)
  • Right to Opt-Out: Opt out of the sale of your personal information (we do not sell your data)
  • Right to Correct: Request correction of inaccurate personal information (CPRA)
  • Right to Non-Discrimination: Receive the same service and pricing if you exercise your CCPA rights

To exercise any of these rights, please submit a request to: [email protected]. We will respond to valid requests within:

  • 30 days for GDPR requests
  • 15 days for CCPA requests (may extend by 15 days if necessary)

8. Changes to This Policy

We may update our Privacy Policy from time to time. For material changes affecting EU users, we will provide at least 30 days' notice before the changes take effect. We will notify you by:

  • Posting a prominent notice on our website
  • Sending email notifications to registered users
  • Displaying an in-app notification (if applicable)

We will post the new Privacy Policy on this page and update the "Last Updated" date.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us through the following channels:

Last Updated: January 2026