Privacy Policy
This Privacy Policy was last updated on August 28, 2025 and is effective as of that date.
1. WHO WE ARE
This Privacy Policy is issued by Gamzix Rules Limited, a company registered under the laws of Malta with registration number C 104173 and having its registered address at Level 3 (Suite No. 2971), Tower Business Centre, Tower Street, Swatar, Birkirkara, BKR 4013 Malta (“we”, “our”, or “us”), the owner of the website gamzix.com (the “Website”). We design and provide gaming software and related services to our business partners worldwide.
If you have any questions about this Privаcy Policy (the “Policy”) or the way we process personal data, you can contact us at:
Email: partner@gamzix.com
Data Protection Officer: dpo@gamzix.com
We are committed to handling all privacy-related inquiries promptly and transparently.
2. SCOPE OF THIS POLICY
This Policy applies to the processing of personal data in the following contexts:
- Website visitors – when you access or use our Website. In this case, we act as the data controller. The categories of data we may process include IP address, cookie identifiers, browser and device information, log data, and any details you choose to submit via contact forms.
- Business partners and suppliers – when we interact with you in the context of providing or receiving services. In this case, we act as a data controller. The categories of data we may process include your name, job title, business email, telephone number, and related contractual information (such as agreements, invoices, and payment records).
- Game software and related services – when you access or use our game software (the “Games”) made available through our business partners and customers (the “Operators”). In this context, the Operator acts as the data controller. We process only pseudonymised and technical data (such as game session identifiers, transaction records, or error logs) strictly on the Operator’s documented instructions and therefore act as a data processor.
This Policy does not override or replace the privacy information provided by the Operators. If you are an end-user and have questions about how your personal data is processed in connection with the Games, you should contact the relevant Operator directly.
3. OUR ROLE
We process personal data in different capacities depending on the context:
- as a Data Controller
We act as a data controller when we collect and process personal data for our own purposes, such as: operating and improving our Website; managing our business relationships with partners, suppliers, and service providers; complying with applicable corporate and business regulation.
In these cases, we determine the purposes and means of the processing of personal data.
- as a Data Processor
When our Games are integrated and offered by Operators, we act as a data processor. This means we process certain pseudonymised and technical data (such as session identifiers, transaction records, or system logs) strictly on the Operator’s instructions and only for the purpose of delivering, maintaining, and supporting the Games.
The Operator acts as the data controller and is responsible for providing players with transparent information about the processing of their personal data, as well as for handling any data subject rights requests.
4. PURPOSE OF THIS POLICY
The purpose of this Policy is to ensure transparency in how we handle personal data. This document is not a contract with you, but an informational notice that explains:
- what categories of personal data we process;
- in which contexts we process that data (for example, Website visitors, business partners, or as a processor on behalf of Operators);
- for what purposes and on what legal bases the processing takes place;
- how long the data is retained and with whom it may be shared;
- the rights you have under applicable data protection laws and how you can exercise them.
By publishing this Policy, we aim to give clear and accessible information about our data processing practices in line with the principles of the General Data Protection Regulation (EU) 2016/679 (the “GDPR”).
5. LEGAL BASES FOR PROCESSING
We process personal data only where we have a valid legal basis under the GDPR. Depending on the context, this may include:
- Contract – where processing is necessary for the performance of a contract with our business partners or to take steps at their request prior to entering into a contract.
- Legal obligation – where processing is necessary to comply with our accounting, taxation, or other legal duties.
- Legitimate interests – where processing is necessary to operate, secure, and improve our Website, maintain business relationships, or prevent fraud. We balance these interests against your rights and freedoms.
- Consent – where we rely on your freely given consent, for example in relation to non-essential cookies or marketing communications.
When acting as a data processor on behalf of Operators, the legal basis for processing is determined by the Operator (as the data controller).
6. DATA RETENTION
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable laws and regulations. Retention periods may vary depending on the context of processing:
- website and communication data (such as contact form submissions, inquiries, or log files) – retained for as long as necessary to respond to your request and for up to 12 months thereafter, unless longer retention is required for dispute resolution or compliance;
- business partner and contractual data (such as contact details, agreements, invoices, and payment records) – retained for the duration of the business relationship and for up to 7 years after its end, in line with accounting and tax obligations;
- game-related technical data (such as session identifiers, transaction records, or error logs) – typically retained for up to 12 months, unless a longer period is necessary for security, fraud prevention, or the resolution of technical or legal issues.
Where data is no longer required, we will either delete it securely or anonymise it. Anonymised or aggregated information may be retained indefinitely, as it no longer constitutes personal data under the GDPR.
7. SHARING YOUR PERSONAL DATA
We may share personal data with trusted third parties where necessary for the purposes described in this Policy. Such recipients may include:
- group companies and affiliates – for internal business, administrative, and support purposes;
- professional advisers – such as legal, financial, or tax consultants, where reasonably necessary;
- business partners – who support the delivery and integration of our products and services;
- service providers and vendors – including hosting providers, IT support, cloud storage, and security services, who process personal data on our behalf under strict contractual safeguards;
- regulators or authorities – where disclosure is required by law.
We do not sell or rent personal data to third parties.
Some recipients may be located outside the European Economic Area (EEA). Where personal data is transferred outside the EEA, we ensure that appropriate safeguards are in place, such as the European Commission’s Standard Contractual Clauses (SCCs), or that the transfer is otherwise permitted under the GDPR.
We take steps to ensure that any such transfer provides an adequate level of protection for your personal data.
8. UNDER 18 NOTICE
Our Website and services are not directed to individuals under the age of 18. We do not knowingly collect personal data from anyone under this age.
- website visitors – if you are under 18, you should not provide us with your personal data without the consent and supervision of a parent or legal guardian;
- games accessed through Operators – age verification and compliance with applicable laws and regulations are the responsibility of the relevant Operator. If you are a player, please refer to the Operator’s policies and terms for more information.
If we become aware that we have inadvertently collected personal data from an individual under the age of 18 without appropriate consent, we will take steps to delete it promptly.
9. OUR COMMITMENT TO DATA PROTECTION
We are committed to protecting personal data and ensuring that all processing activities are carried out in full compliance with the GDPR and applicable data protection laws.
In particular, we adhere to the following core principles of data protection:
- lawfulness, fairness and transparency – we process personal data only where we have a valid legal basis and in a way that is clear and fair to individuals;
- purpose limitation – we collect personal data only for specified, explicit, and legitimate purposes and do not process it further in ways that are incompatible with those purposes;
- data minimisation – we process only the personal data that is relevant and limited to what is necessary for the purposes described;
- accuracy – we take reasonable steps to ensure that the personal data we process is accurate and kept up to date;
- storage limitation – we retain personal data only for as long as it is necessary for the purposes described in this Policy or as required by law;
- integrity and confidentiality – we use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure.
These principles guide all of our data processing activities, whether we act as a data controller or as a data processor on behalf of our business partners.
10. COOKIES POLICY
Our Website uses cookies and similar technologies to ensure its proper functioning, enhance your browsing experience, and help us understand how visitors use it.
- What are cookies
Cookies are small text files placed on your device by your browser. They allow us or third parties to recognise your device and store certain information about your preferences or past actions.
- Types of cookies we use
Strictly necessary cookies – essential for the Website to function (e.g., to maintain security or remember your session). These cookies do not require your consent.
Analytics cookies – help us understand how the Website is used (e.g., pages visited, time spent, error messages). We may use tools such as Google Analytics. These cookies are set only with your consent.
Functionality cookies – remember your preferences (such as language settings) to provide a more personalised experience. These cookies require consent.
Third-party cookies – certain features on the Website may rely on third-party providers (for example, analytics or embedded services). These cookies are subject to the third party’s own privacy and cookie policies.
- Your choices
When you first visit our Website, you will see a cookie banner allowing you to accept, reject, or manage your preferences regarding non-essential cookies. You can also manage or delete cookies at any time via your browser settings. Please note that disabling certain cookies may affect the functionality of the Website.
11. YOUR DATA PROTECTION RIGHTS
Under applicable data protection laws, you have the following rights in relation to your personal data:
- Right of access – to request confirmation as to whether we process your personal data and to obtain a copy of such data.
- Right to rectification – to have inaccurate personal data corrected and incomplete data completed.
- Right to erasure – to request deletion of your personal data where there is no longer a legal basis for us to retain it.
- Right to restriction of processing – to request that we limit the processing of your personal data in certain circumstances.
- Right to object – to object to the processing of your personal data where it is based on our legitimate interests or for direct marketing purposes.
- Right to data portability – to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller where technically feasible.
- Right to withdraw consent – where processing is based on consent (e.g., cookies or marketing communications), you may withdraw your consent at any time, without affecting the lawfulness of processing before its withdrawal.
You also have the right to lodge a complaint with a data protection supervisory authority if you believe that your rights have been infringed.
To exercise any of these rights, please contact us using the details provided in the Who We Are section of this Policy.
12. SECURITY
We implement appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.
These measures include, among others:
- the use of secure servers and firewalls;
- encryption of data in transit (SSL/TLS);
- role-based access controls and authentication procedures;
- regular monitoring, testing, and security assessments.
We continuously review and update our security practices to align with industry standards and to ensure the ongoing confidentiality, integrity, and availability of personal data processed by us.
13. CHANGES TO THIS POLICY
We may update this Policy from time to time to reflect legal, technical, or business developments. When we make changes, we will publish the updated version on this Website, indicating the date of the last revision at the top of the page.
We encourage you to review this Policy periodically to stay informed about how we process personal data. The continued use of our Website or Services after an update constitutes your acknowledgement of the updated Policy.
14. CONTACTS
For any questions or concerns related to this Privacy Policy or our data handling practices, please contact our Data Protection Officer: dpo@gamzix.com