Privacy Policy for Supreme Gaming Co.

1. Introduction

At Supreme Gaming Co. (“we”, “our”, “us”), accessible at supremegamingco.com, we are deeply committed to safeguarding your personal data and respecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. We prioritize transparency and trust, ensuring that your data is treated with the highest standards of security and integrity.

2. Scope of Policy and Data Controller Role

This Privacy Policy applies to all users and visitors of supremegamingco.com and outlines how personal information is handled through our website and services. Supreme Gaming Co. is the controller of your personal data for purposes of data protection laws and is responsible for your data. If you have any questions or concerns, you may contact us at [email protected].

3. Categories of Data Processed

We collect and process various categories of personal data to improve your experience and provide our services. The categories include:

a) Usage Data
We collect information about how users interact with our website including IP addresses, browser types, referral URLs, pages viewed, and session durations.

b) Account Data
When you register or create an account, we collect details such as your full name, postal address, email address, and phone number.

c) Profile Data
This includes data related to your preferences, gaming activity, purchase history, submitted reviews, and user behavior on our website.

d) Communication Data
We store content and metadata related to your interactions with us, including support inquiries, email exchanges, chat history, and other communications.

e) Technical Data
This includes system-generated data such as device information, operating systems, browser plugins, screen resolution, and other diagnostics.

f) Transaction Data
We collect payment details, delivery addresses, transaction timestamps, and product purchase records to fulfill orders and comply with financial regulations.

g) Preference Data
We process data related to your choices concerning marketing communications, product categories of interest, and notification preferences.

4. Legal Bases for Processing

We process your personal data on the following legal grounds, as defined by the GDPR:

– Performance of a contract: When necessary to fulfill a service you’ve requested (e.g., completing a purchase).
– Consent: For marketing services, preference collection, and use of certain cookies.
– Legitimate interests: For fraud detection, service improvement, and analytics, provided these interests are not overridden by your privacy rights.
– Legal obligation: When processing is necessary to fulfill our compliance responsibilities under law.

For users subject to the CCPA, we do not sell your personal data as defined under relevant U.S. legislation.

5. Your Rights

Subject to applicable laws, you may exercise the following rights in relation to your personal data:

– Right of Access: Obtain confirmation whether we process your data and request a copy of your information.
– Right of Rectification: Request correction of inaccurate or incomplete data.
– Right of Erasure: Request deletion of your data where it is no longer necessary or if processing was based on consent.
– Right to Restrict Processing: Ask us to stop or limit processing while a dispute is being resolved.
– Right to Data Portability: Receive a copy of your data in a structured, machine-readable format, and request transmission to another controller.

To exercise these rights, please contact us at [email protected].

6. Security Measures

We implement appropriate technical and organizational measures to protect your personal data. These include, but are not limited to:

– Encryption of data in transit and at rest
– Multi-factor authentication and access control protocols
– Routine security audits and vulnerability assessments
– Regular backups and secure disaster recovery solutions
– Staff privacy training and restricted data access where necessary

7. International Transfers

Where data transfers are made outside the European Economic Area (EEA), we ensure compliance through approved Standard Contractual Clauses, certifications under the EU-U.S. Data Privacy Framework (where applicable), or other legal safeguard mechanisms to maintain the integrity and confidentiality of personal data.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy or to comply with applicable legal, tax, or regulatory obligations. Retention durations vary by data type and processing context as follows:

– Account Data: Retained for the lifetime of the account plus six years.
– Communication Data: Retained for up to 24 months after the last contact.
– Transaction Data: Retained for a minimum of seven years for legal and audit purposes.
– Technical and Usage Data: Retained for up to 12 months for analytics and troubleshooting.
– Marketing Preferences: Retained until you withdraw consent.

9. Cookie Policy

We use cookies and similar technologies to enhance user experience and ensure website functionality. These include:

– Essential Cookies: Necessary for core functionality and security.
– Functional Cookies: Enable customizations like language preferences.
– Performance Cookies: Collect statistical data on website usage.
– Analytics Cookies: Help us understand user behavior and improve content.

10. Cookie Management and Compliance with GDPR & CCPA

We offer cookie management tools in compliance with GDPR and CCPA allowing you to control which types of cookies you accept or reject. Upon your first visit to supremegamingco.com, a consent banner allows you to configure your cookie preferences. You may also manage or revoke consent via your browser settings or by contacting us.

California residents have additional rights under the CCPA, including the right to opt-out of certain forms of data sharing. While supremegamingco.com does not sell user data, requests related to personal information access or deletion under the CCPA may be submitted to [email protected].

11. Special Protections for Children

Our website and services are not intended for children under the age of 13. We do not knowingly collect or process personal data of children. If we become aware of any such data being collected without verified parental consent, we will take immediate steps to delete it. Parents or guardians who believe that their child has submitted personal data without their consent should contact us at [email protected].

12. Policy Updates & User Notifications

We may revise this Privacy Policy to reflect changes in our practices, technology, or legal requirements. Where significant changes are made, we will notify users via email or on-site messaging. Users are encouraged to review this policy regularly to stay informed of how their data is being handled.

13. Contact

For questions, concerns, or to exercise any of your privacy rights, you may contact our data protection officer via:

Email: [email protected]

Addressing your privacy expectations is a top priority at Supreme Gaming Co. We are committed to full compliance with applicable data protection laws and welcome inquiries to ensure your online experience remains secure and respectful of your rights.