Data Controller
Sinaty Networks is the data controller for the personal data we process. For any privacy-related inquiries, please contact us at: support@sinaty.business or security@sinaty.business for security-related matters.Legal Basis for Processing
We process your personal data based on the following legal grounds under the General Data Protection Regulation (GDPR):- Consent: When you voluntarily provide information to us
- Legitimate Interest: To provide and improve our services
- Contract Performance: To fulfill our obligations under our terms of service
- Legal Obligation: To comply with applicable laws and regulations
Information We Collect
Personal Data We Collect
Account Information
- Email addresses: For account creation, communication, and service notifications
- Usernames: For gaming services and community identification
- Passwords: Stored securely using industry-standard encryption (hashed)
Technical Data
- IP addresses: For security, analytics, and service optimization
- Device information: Browser type, operating system, and device identifiers
- Usage data: How you interact with our services and APIs
- Log data: Server logs for security and performance monitoring
Communication Data
- Support requests: Messages sent to our support channels
- Community interactions: Discord messages and forum posts
- Feedback: Voluntary feedback and suggestions
Data We Do NOT Collect
- Sensitive personal data (health, political opinions, etc.)
- Financial information (credit cards, bank details)
- Location data beyond IP geolocation
- Biometric data
How We Use Your Data
Service Provision
- Account management: Creating and maintaining your user accounts
- Service delivery: Providing gaming services, APIs, and web services
- Communication: Sending important service updates and notifications
- Support: Responding to your inquiries and providing technical assistance
Security & Analytics
- Security monitoring: Detecting and preventing unauthorized access
- Performance optimization: Improving service reliability and speed
- Usage analytics: Understanding how our services are used (anonymized)
- Fraud prevention: Protecting against abuse and malicious activities
Legal Compliance
- Regulatory compliance: Meeting legal obligations
- Data retention: Maintaining records as required by law
- Audit trails: Keeping logs for security and compliance purposes
Data Storage & Security
Security Measures
- Encryption: All data is encrypted in transit using SSL/TLS certificates
- Secure storage: Data is stored on secure, encrypted servers
- Access controls: Limited access to authorized personnel only
- Regular updates: Security patches and system updates
- Monitoring: Continuous security monitoring and threat detection
Data Location
- Primary storage: Data is stored on secure servers within the European Union
- Backup systems: Regular backups with the same security standards
- CDN services: Limited data may be cached on trusted CDN networks for performance
Password Security
- Hashing: All passwords are hashed using industry-standard algorithms
- No plain text: We never store passwords in readable format
- Salt values: Additional security through cryptographic salt
- Regular audits: Security reviews of our password handling practices
Data Sharing & Third Parties
Internal Use Only
- No selling: We never sell your personal data to third parties
- Internal processing: Data is processed only by Sinaty Networks
- Team access: Limited access to authorized team members only
Trusted Service Providers
We may share limited data with trusted third-party services:Essential Services
- Hosting providers: Secure server infrastructure
- SSL certificate authorities: For website security
- Analytics services: Anonymized usage statistics
- CDN providers: Content delivery for performance
API Dependencies
- External APIs: Some of our services may rely on trusted external APIs
- Data minimization: Only necessary data is shared
- Privacy compliance: All third parties must meet GDPR standards
Legal Requirements
We may disclose your data if required by law, court order, or to protect our rights and the safety of our users.Your Rights Under GDPR
Right to Access
You have the right to request a copy of all personal data we hold about you.Right to Rectification
You can request correction of inaccurate or incomplete personal data.Right to Erasure (“Right to be Forgotten”)
You can request deletion of your personal data in certain circumstances.Right to Restrict Processing
You can request that we limit how we process your personal data.Right to Data Portability
You can request a copy of your data in a structured, machine-readable format.Right to Object
You can object to processing based on legitimate interests or for marketing purposes.Right to Withdraw Consent
You can withdraw consent for data processing at any time.Data Retention
Retention Periods
- Account data: Retained while your account is active and for 2 years after closure
- Support communications: Retained for 3 years for service improvement
- Security logs: Retained for 1 year for security purposes
- Analytics data: Anonymized and retained for 2 years
Deletion Process
- Automatic deletion: Data is automatically deleted after retention periods
- Manual deletion: You can request immediate deletion of your data
- Secure deletion: All data is securely and permanently deleted
Cookies & Tracking
Essential Cookies
- Session management: Required for service functionality
- Security: CSRF protection and security features
- Authentication: Login status and user preferences
Analytics Cookies
- Usage statistics: Anonymized data about service usage
- Performance monitoring: Service reliability and speed metrics
- No personal identification: Analytics data is anonymized
Cookie Management
- Browser settings: You can control cookies through your browser
- Opt-out options: Clear instructions for disabling non-essential cookies
- Transparency: Clear information about all cookies we use
International Data Transfers
EU Data Protection
- Adequacy decisions: We only transfer data to countries with adequate protection
- Standard contractual clauses: Legal safeguards for international transfers
- Data localization: Preference for EU-based data processing
Third-Party Transfers
- Limited transfers: Only essential data is transferred internationally
- Safeguards: Appropriate legal and technical safeguards in place
- Transparency: Clear information about any international transfers
Children’s Privacy
Age Restrictions
- Minimum age: Our services are not intended for children under 13
- Parental consent: Required for users under 16 in the EU
- No collection: We do not knowingly collect data from children under 13
Protection Measures
- Age verification: Reasonable steps to verify user age
- Parental rights: Parents can request deletion of their child’s data
- Educational content: Information about online safety for young users
Data Breach Procedures
Incident Response
- Detection: Automated monitoring and manual oversight
- Assessment: Rapid evaluation of breach scope and impact
- Notification: Prompt notification to authorities and affected users
- Remediation: Immediate steps to secure systems and prevent further breaches
User Notification
- Timely notice: Users will be notified within 72 hours when required
- Clear information: Details about what happened and what we’re doing
- Protective measures: Steps users can take to protect themselves
Changes to This Policy
Policy Updates
- Regular review: This policy is reviewed and updated regularly
- User notification: Significant changes will be communicated to users
- Version control: Clear versioning and change tracking
Your Rights
- Continued use: Continued use of our services after changes constitutes acceptance
- Withdrawal: You can withdraw consent or delete your account at any time
- Questions: Contact us with any questions about policy changes
Contact Information
Privacy Inquiries
For any questions about this Privacy Policy or your personal data: Email: support@sinaty.businessSubject: Privacy Policy Inquiry
Security & Data Protection
For security-related privacy matters and data protection issues: Email: security@sinaty.businessSubject: Security & Privacy Inquiry
Data Protection Officer
For formal data protection matters: Email: security@sinaty.businessSubject: Data Protection Officer
Service-Specific Privacy Information
Gaming Services
- Server logs: Minimal logging for security and performance
- Player data: Usernames and game statistics only
- No location tracking: Beyond IP geolocation for security
API Services
- Usage tracking: Anonymized API usage statistics
- Rate limiting: IP-based rate limiting for fair usage
- No data storage: APIs process data without permanent storage
Email Services
- Email content: Not monitored or stored beyond delivery
- Account management: Standard account information only
- Security: Encrypted email transmission
This Privacy Policy is designed to be transparent and comprehensive. If you have any questions or concerns about how we handle your personal data, please don’t hesitate to contact us at support@sinaty.business or security@sinaty.business for security-related matters. We are committed to protecting your privacy and ensuring the security of your personal information in compliance with EU GDPR regulations.