Contact Us - Dragon Rock Games LLC

Introduction

Last updated: April 5, 2023

Welcome to Dragon Rock Games LLC (“us”, “we”, or “our”). We operate the https://dragonrockgames.com website (the “Service”). This Privacy Policy serves as an informative guide regarding the collection, usage, and disclosure of personal data when you interact with our Service, as well as the choices available to you concerning that data. Our commitment to safeguarding your privacy and adhering to all relevant privacy regulations is unwavering.

By choosing to use our Service, you consent to the gathering and utilization of information in compliance with this policy. We encourage you to read this Privacy Policy carefully to ensure you understand our practices and your rights in relation to your personal data.

Personal Data We Collect

In order to offer you a personalized and secure experience on our website, we collect various types of personal data from you. The information we gather depends on the activities you engage in while using our Service. Examples of personal data we may collect include:

Contact information: Such as your name, email address, and phone number, which may be required when you create an account or sign up for our newsletter.

Account information: Including your username, password, and other account details needed for authentication and account access.

User-generated content: Including comments, reviews, or images you choose to share on our website.

Technical data: Such as your IP address, browser type, operating system, device information, and other data collected automatically when you interact with our Service.

Usage data: Information about how you use our website, such as the pages you visit, the time spent on our website, and the actions you take while using our Service.

By providing us with your personal data, you enable us to enhance your experience on our website, offer you personalized content, and ensure the security of your data.

How We Use Your Personal Data

Our primary goal in collecting your personal data is to provide you with a secure, efficient, and personalized experience on our website. We use the information we collect for various purposes, including:

Service provision: To deliver and maintain the services you request, such as processing your account registration, enabling your participation in interactive features, and providing customer support.

Personalization: To tailor our website content and features to your preferences, interests, and usage patterns.

Communication: To send you important notifications, such as security alerts, account updates, or changes to our policies, as well as marketing materials and promotional offers (only if you have opted in to receive such communications).

Security: To protect our website and users from unauthorized access, fraud, spam, and other security threats by monitoring activity and implementing security measures.

Analytics: To analyze usage patterns, user preferences, and other aggregated data, which helps us make data-driven decisions for improving our website and services.

We may also combine the information we collect with data from other sources to enhance our understanding of your needs and preferences and provide you with a more personalized experience.

Legal Basis for Processing Your Personal Data

We collect and process your personal data only when there is a lawful basis for doing so. The legal basis we rely on for processing your personal data includes:

Consent: When you voluntarily provide us with your personal data, such as when you create an account, leave a comment, or sign up for our newsletter, we obtain your consent to process that information for the purposes specified in this Privacy Policy.

Legitimate interests: We may process your personal data when it is necessary for our legitimate interests, such as providing and improving our services, ensuring the security of our website, and carrying out administrative and operational tasks.

Legal obligations: We may process your personal data to comply with our legal obligations, such as responding to legal requests or regulatory inquiries and ensuring compliance with applicable data protection laws.

We ensure that we only collect and process your personal data to the extent necessary to fulfill our legitimate interests or legal obligations, and we conduct regular reviews to ensure that our processing activities are still necessary and proportionate to the purpose for which we collected the data.

How We Protect Your Personal Data

We understand the importance of protecting your personal data and have implemented various technical and organizational measures to ensure the security of your data. These measures include:

Secure servers: Our website is hosted on servers that meet industry standards for security, such as using firewalls, intrusion detection systems, and access controls.

Encryption: We use SSL (Secure Sockets Layer) encryption to protect the transmission of data between your browser and our servers, ensuring that your personal data is encrypted during transit.

Access controls: We limit access to your personal data to only those employees or third-party service providers who require access for legitimate purposes, and we maintain strict access controls to prevent unauthorized access.

Regular security audits: We conduct regular security audits and vulnerability assessments to identify potential security risks and address them promptly.

While we take reasonable steps to protect your personal data, no method of transmission over the internet or method of electronic storage can guarantee absolute security. Therefore, we cannot ensure or warrant the security of any information you transmit to us or store on our servers, and you do so at your own risk.

Sharing Your Personal Data

We may share your personal data with third-party service providers who help us deliver and improve our services. These service providers may have access to your personal data only to the extent necessary to perform their tasks, and they are contractually obligated to protect your personal data and use it only for the purposes for which we provide it to them.

We may also use third-party analytics services, such as Google Analytics, Yandex, and Bing, to help us understand how our website is used and to make improvements. These services may collect information about your use of our website, including your IP address, browser type, and pages visited. The information collected by these services is aggregated and anonymous, and we use it to analyze usage patterns, identify trends, and make data-driven decisions for improving our website and services.

We do not sell your personal data to third parties, and we do not share your personal data with third parties for their own marketing purposes without your explicit consent.

Children’s Privacy

We take the privacy and protection of children’s personal data very seriously. Our website is not intended for or directed to children under the age of 13, and we do not knowingly collect personal data from children under this age. If we become aware that we have collected personal data from a child under the age of 13, we will take steps to delete such information from our records as soon as possible.

We encourage parents and legal guardians to supervise their children’s use of the internet and to help us enforce this policy by informing us if they suspect that a child under the age of 13 has provided personal data to us. If you are a parent or legal guardian and believe that your child under the age of 13 has provided personal data to us, please contact us using the contact information provided in this Privacy Policy.

California Privacy Rights (CCPA)

Under the California Consumer Privacy Act (CCPA), California residents have the following rights with respect to their personal data:

Right to know: You have the right to know what personal data we have collected about you, the categories of personal data that we have collected, and the purposes for which we have collected your personal data.

Right to deletion: You have the right to request that we delete your personal data that we have collected from you, subject to certain exceptions.

Right to opt-out: You have the right to opt-out of the sale of your personal data to third parties.

To exercise these rights, please contact us using the contact information provided in this Privacy Policy. We may need to verify your identity before responding to your request, and we will respond to your request within the timeframes required by applicable law.

Please note that we do not sell your personal data to third parties, and we do not discriminate against you for exercising your CCPA rights.

European Economic Area (EEA) Residents (GDPR)

If you are a resident of the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR) with respect to your personal data:

Right to access: You have the right to access your personal data that we have collected about you and to receive a copy of it.

Right to rectification: You have the right to request that we correct any inaccuracies in your personal data.

Right to erasure: You have the right to request that we delete your personal data that we have collected from you, subject to certain exceptions.

Right to restriction of processing: You have the right to request that we restrict the processing of your personal data, subject to certain exceptions.

Right to object to processing: You have the right to object to the processing of your personal data, subject to certain exceptions.

Right to data portability: You have the right to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format, and to transmit that data to another controller, subject to certain exceptions.

Please note that these rights are subject to certain limitations and exceptions as provided by applicable law.

Your Rights Under Data Protection Laws

We are committed to protecting your privacy and complying with all applicable data protection laws. You have the following rights with respect to your personal data:

Right to access: You have the right to access your personal data that we have collected about you and to receive a copy of it.

Right to rectification: You have the right to request that we correct any inaccuracies in your personal data.

Right to erasure: You have the right to request that we delete your personal data that we have collected from you, subject to certain exceptions.

Right to restriction of processing: You have the right to request that we restrict the processing of your personal data, subject to certain exceptions.

Right to object to processing: You have the right to object to the processing of your personal data, subject to certain exceptions.

Please note that these rights are subject to certain limitations and exceptions as provided by applicable law.

International Data Transfers

We may transfer your personal data to countries outside of your jurisdiction, including to the United States, for processing and storage. Please note that the laws of other countries may not provide the same level of protection for your personal data as the laws of your jurisdiction.

By using our website and providing us with your personal data, you consent to these transfers. We take appropriate measures to ensure that your personal data is protected in accordance with this Privacy Policy and applicable data protection laws, such as by implementing standard contractual clauses or other appropriate safeguards.

Governing Law

This Privacy Policy is governed by the laws of the United States and the laws of the European Union, as applicable. Any disputes arising out of or in connection with this Privacy Policy will be subject to the exclusive jurisdiction of the courts of the United States, unless you are a resident of the European Union and your rights under the GDPR have been violated, in which case you may have the right to bring a claim before the data protection authority of your member state.

Complaints

If you have any concerns or complaints about our handling of your personal data, please contact our Data Protection Officer using the contact information provided in this Privacy Policy. We take all complaints seriously and will respond to your complaint within the timeframes required by applicable law.

If you are a resident of the European Union and your rights under the GDPR have been violated, you may have the right to lodge a complaint with the data protection authority of your member state. We encourage you to contact us first, so that we may try to resolve the issue before you lodge a complaint with the data protection authority.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our compliance with applicable data protection laws and to address any questions or concerns you may have regarding the processing of your personal data. If you have any questions or concerns regarding the processing of your personal data, you may contact our DPO at dp*@dr*************.com.

Notification of Data Breach

We take the security of your personal data seriously and have implemented appropriate technical and organizational measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction. However, in the event of a data breach that is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant supervisory authority as required by applicable data protection laws.

If such a breach occurs, we will take all reasonable steps to mitigate the breach, investigate the cause, and prevent future breaches. We will also provide you with information about the breach, including the type of data involved, the potential consequences, and the measures we have taken or plan to take to address the breach.

Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected, to comply with our legal obligations, or to protect our legitimate interests. The length of time we retain your personal data will vary depending on the type of data and the purpose for which it was collected.

We will securely delete your personal data when it is no longer needed for these purposes or when you request that we delete it, unless we are required by law to retain it or have a legitimate interest in retaining it (such as for resolving disputes or enforcing our rights). We will also securely delete your personal data if we no longer need it for the purposes for which it was collected or if you withdraw your consent for us to process your personal data.

If we anonymize your personal data, we may retain it indefinitely for research, statistical, or other purposes, in which case the data will no longer be considered personal data and will not be subject to this Privacy Policy.

Sale or Merger

In the event that our company is involved in a merger, acquisition, or sale of all or a portion of its assets, your personal data may be transferred to the new owner. In such an event, we will take reasonable steps to ensure that the new owner will be bound by this Privacy Policy and will protect your personal data in accordance with applicable data protection laws.

If your personal data is transferred to a new owner, you will be notified of any such change in ownership or control of your personal data, and we will provide you with the option to delete your personal data or to withdraw your consent for us to process your personal data.

Embedded Content from Other Websites

Our website may contain embedded content (e.g. videos, images, articles, etc.) from other websites. This embedded content behaves in the same way as if you had visited the other website directly, and may collect data about you, use cookies, and track your interaction with the embedded content.

We have no control over the content or privacy practices of these third-party websites and are not responsible for the protection and privacy of any information that you provide while visiting such websites. We encourage you to review the privacy policies of any third-party websites or services that you visit or use.

Cookies

Cookies are small data files that are placed on your device when you visit our website. Our website uses cookies to enhance your user experience, remember your preferences, and help us understand how our website is used.

We use both session cookies, which expire when you close your browser, and persistent cookies, which remain on your device until they expire or you delete them. We use cookies for a variety of purposes, such as to personalize your experience, to remember your preferences, to improve our website and services, and to analyze how our website is used.

By using our website, you consent to the use of cookies. You can control or delete cookies through your browser settings. However, please note that disabling cookies may limit your ability to use certain features of our website.

How Long We Retain Your Data

What Rights You Have Over Your Data

You have certain rights over your personal data, including the right to access, correct, update, or delete your personal data, and to restrict or object to the processing of your personal data. If you wish to exercise any of these rights, please contact us using the contact information provided in this Privacy Policy.

Access: You have the right to request a copy of the personal data we hold about you and to know how we process it.

Correction and updating: You have the right to request that we correct any inaccuracies in your personal data and to have incomplete personal data completed.

Deletion: You have the right to request that we delete your personal data in certain circumstances, such as when it is no longer needed for the purposes for which it was collected, or when you withdraw your consent for us to process your personal data.

Restriction: You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or when the processing is unlawful but you do not want us to delete it.

Objection: You have the right to object to the processing of your personal data in certain circumstances, such as when we are relying on our legitimate interests as the legal basis for processing, and you believe that your fundamental rights and freedoms outweigh our interests.

Please note that we may need to verify your identity before fulfilling your request. We will respond to your request within a reasonable time frame and in accordance with applicable data protection laws.

Where Your Data is Sent

We may transfer your personal data to countries outside of your jurisdiction, including to the United States, for processing and storage. By using our website and providing us with your personal data, you consent to these transfers.

We will take appropriate measures to ensure that your personal data is protected in accordance with applicable data protection laws, such as using standard contractual clauses approved by the European Commission or relying on other appropriate safeguards. If you have any questions or concerns about the transfer of your personal data, please contact us using the contact information provided in this Privacy Policy.

Privacy Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our privacy practices or applicable laws. Any changes we make will be posted on this page with the updated date at the top of the page. We encourage you to review this Privacy Policy regularly to stay informed about our privacy practices.

If we make material changes to this Privacy Policy that affect your rights or the way we use your personal data, we will notify you by email or through a notice on our website before the changes take effect. By continuing to use our website after any changes to this Privacy Policy take effect, you agree to be bound by the updated Privacy Policy.

Data Processing Agreements

We take the protection of your personal data seriously and are committed to ensuring that our third-party service providers process your personal data securely and in compliance with applicable data protection laws. To this end, we have data processing agreements in place with our third-party service providers that require them to implement appropriate technical and organizational measures to protect your personal data and to use it only for the purposes for which it was provided.

Our data processing agreements also require our third-party service providers to comply with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), and to notify us immediately in the event of a data breach affecting your personal data.

If you have any questions or concerns about how your personal data is being processed by our third-party service providers, please contact us using the contact information provided in this Privacy Policy.

Data Minimization

We follow the principle of data minimization, which means that we collect only the minimum amount of personal data necessary to provide our services and fulfill the purposes for which it was collected. This ensures that we do not collect or process more personal data than necessary and that we protect your privacy by limiting the amount of personal data we hold about you.

We regularly review our data collection and processing practices to ensure that we continue to collect and process only the minimum amount of personal data necessary for our legitimate purposes, and we delete or anonymize personal data that is no longer necessary or relevant.

If you have any questions or concerns about our data collection and processing practices, please contact us using the contact information provided in this Privacy Policy.

Data Anonymization and Aggregation

We may anonymize and aggregate personal data that we collect from you for research, statistical, or other purposes. When we anonymize and aggregate personal data, it no longer contains any information that could identify you, and it is no longer considered personal data subject to this Privacy Policy.

We may use anonymized and aggregated personal data to improve our services, to develop new products or services, or to conduct market research. We may also share anonymized and aggregated personal data with third parties for research, statistical, or other purposes.

We will only use and disclose anonymized and aggregated personal data in a manner that is consistent with applicable data protection laws and that respects your privacy. If you have any questions or concerns about how we use and disclose anonymized and aggregated personal data, please contact us using the contact information provided in this Privacy Policy.

Third-Party Privacy Policies

Our Privacy Policy only applies to our website and the collection, use, and disclosure of your personal data by us. Our website may contain links to third-party websites or services that are not operated by us. We have no control over the privacy practices or the content of these third-party websites or services.

We encourage you to review the privacy policies of any third-party websites or services that you visit or use, as their privacy practices may differ from ours. We are not responsible for the privacy practices or the content of these third-party websites or services.

If you have any questions or concerns about the privacy practices of a third-party website or service that you have accessed through our website, please contact the operator of that website or service directly.

Contacting the Supervisory Authority

We take your privacy seriously and are committed to ensuring that your personal data is processed in compliance with applicable data protection laws. If you have concerns or complaints about our handling of your personal data, we encourage you to contact us first so that we can try to resolve the issue.

If you are not satisfied with our response or if you believe that we are not processing your personal data in compliance with applicable data protection laws, you have the right to lodge a complaint with the relevant supervisory authority in your jurisdiction. The supervisory authority is responsible for overseeing the implementation and enforcement of data protection laws in your jurisdiction.

The supervisory authority that is responsible for overseeing our data protection practices may depend on your jurisdiction. If you are unsure about which supervisory authority to contact, please contact us using the contact information provided in this Privacy Policy, and we will do our best to assist you.

Opting Out of Marketing Communications

We may send you marketing communications from time to time to keep you informed about our products, services, or promotions. If you no longer wish to receive marketing communications from us, you have the right to opt-out at any time.

To opt-out of receiving marketing communications from us, you can follow the unsubscribe instructions included in the marketing communications you receive from us. Alternatively, you can contact us using the contact information provided in this Privacy Policy, and we will promptly remove you from our marketing communications list.

Please note that even if you opt-out of receiving marketing communications from us, we may still send you transactional or administrative communications that are necessary for the operation of our services, such as billing or account management communications.

If you have any questions or concerns about our marketing communications practices, please contact us using the contact information provided in this Privacy Policy.

Data Protection Impact Assessments

We conduct data protection impact assessments (DPIAs) when required by applicable data protection laws, such as the GDPR, in order to identify and minimize any risks associated with the processing of your personal data. DPIAs are a systematic process that helps us identify and assess the privacy risks of a project or process that involves the processing of personal data.

The DPIA process involves a review of the nature, scope, context, and purposes of the processing of personal data, as well as an assessment of the risks to the rights and freedoms of individuals. Based on the results of the DPIA, we may implement measures to mitigate the identified risks or seek advice from the relevant supervisory authority.

We take our responsibility to protect your personal data seriously and are committed to implementing the necessary measures to ensure compliance with applicable data protection laws. If you have any questions or concerns about our DPIA process or how we process your personal data, please contact us using the contact information provided in this Privacy Policy.

Staff Training and Awareness

We understand that the protection of your personal data is not only a legal obligation but also a fundamental responsibility. Therefore, we provide regular training and maintain awareness among our staff regarding data protection and privacy.

All our staff members who are involved in the processing of personal data receive regular training on data protection laws, our privacy policies and procedures, and best practices for protecting personal data. We also maintain awareness among our staff members through regular updates, reminders, and refresher courses on data protection and privacy.

We believe that ensuring our staff members understand the importance of data protection and privacy is essential for maintaining the trust of our users and complying with applicable data protection laws. If you have any questions or concerns about our staff training and awareness practices, please contact us using the contact information provided in this Privacy Policy.

Privacy by Design

We take a proactive approach to data protection and privacy by implementing privacy by design principles in our business operations. Privacy by design is a concept that involves incorporating data protection and privacy considerations at the earliest stages of any project or process that involves personal data. This approach helps us ensure that privacy is an integral part of our services and products from the outset and minimizes the risk of privacy violations.

To implement privacy by design, we consider the following:

We only collect and process personal data that is necessary for the purposes of our services.
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, or destruction.
We ensure that privacy is taken into account when designing and developing new products and services.
We conduct privacy impact assessments to identify and mitigate privacy risks associated with the processing of personal data.
We ensure that privacy is an ongoing consideration in our day-to-day business operations.

By implementing privacy by design principles, we aim to ensure that data protection and privacy are a fundamental part of our business operations. If you have any questions or concerns about our privacy by design practices, please contact us using the contact information provided in this Privacy Policy.

Data Breach Notification

Our data breach notification process includes:

Prompt detection and identification of a data breach
Assessment of the scope and severity of the data breach
Notification of affected individuals and the relevant supervisory authority within the required timeframes

We will provide you with clear and concise information about the data breach, including the type of personal data affected, the potential consequences, and the steps we are taking to mitigate the risks. We will also provide you with guidance on how to protect yourself from any potential harm.

If you have any concerns or questions about our data breach notification process, please contact us using the contact information provided in this Privacy Policy.

Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy at any time to reflect changes in our privacy practices, legal requirements, or business needs. We encourage you to review this Privacy Policy regularly to stay informed about how we collect, use, and protect your personal data.

Changes and clarifications to the Privacy Policy will take effect immediately upon their posting on our website. If we make material changes to this Privacy Policy, we will notify you by email, or through a notice on our homepage. By continuing to use our website after any changes to this Privacy Policy, you are agreeing to the updated terms.

If you have any questions or concerns about changes to this Privacy Policy, please contact us using the contact information provided in this Privacy Policy.

Contact Us

We are committed to protecting your privacy and ensuring that you have control over your personal data. If you have any questions or concerns about this Privacy Policy or our handling of your personal data, please do not hesitate to contact us.

You can contact us at the following address:

Dragon Rock Games LLC Email: dp*@dr*************.com

We will do our best to respond to your inquiry as soon as possible and provide you with a satisfactory resolution.

By using our website, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with any part of this Privacy Policy, please do not use our website.