Tebex Limited respects your privacy and is committed to protecting your personal data. This privacy notice will inform you as to how we look after your personal data when you visit our website (regardless of where you visit it from) and tell you about your privacy rights and how the law protects you.
This privacy notice is provided in a layered format so you can click through to the specific areas set out below. Please also use the Glossary to understand the meaning of some of the terms used in this privacy notice.
1. Important information and who we are
Purpose of this privacy notice
This privacy notice aims to give you information on how Tebex Limited collect and process your personal data through your use of www.tebex.io and www.buycraft.net (together referred to as “this website”), and also any associated webstore (a “Webstore”) which utilises the Tebex webstore platform for game servers (the “Tebex Platform”), including any data you may provide through this website when you purchase a product or service.
This website is not intended for children and we do not knowingly collect data relating to children. We realise and understand that children and young people may visit this website. It is our policy to encourage all minors to consult with their parents or legal guardian before submitting any content or information to us, our commercial partners or other third parties.
It is important that you read this privacy notice together with any other privacy notice or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data.
Controller
Tebex Limited is the controller and responsible for your personal data (collectively referred to as “Tebex”, “we”, “us” or “our” in this privacy notice). We have appointed a data privacy manager who is responsible for overseeing questions in relation to this privacy notice.
Contact details
Full name of legal entity: Tebex Limited, company number 08129184 of Levy Cohen & Co, 37 Broadhurst Gardens, London, United Kingdom, NW6 3QT.
Name or title of data privacy manager: Liam Wiltshire
Email address: liam.wiltshire@overwolf.com
You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO.
Changes to the privacy notice
This version was last updated on 11 May 2018. It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.
Third-party links
This website may include links to third-party websites, plug-ins and applications. We do not control these third-party websites and are not responsible for their privacy statements.
2. The data we collect about you
Personal data means any information about an individual from which that person can be identified. It does not include anonymous data. We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
- Identity Data includes first name, last name, and username or similar identifier.
- Contact Data includes billing address, delivery address, email address and telephone numbers.
- Transaction Data includes details about payments and other details of products and services you have purchased from us.
- Technical Data includes IP address, login data, browser type and version, time zone, location, operating system and platform.
- Profile Data includes your username and password, purchases or orders, and account preferences.
- Usage Data includes information about how you use our website, products and services.
- Marketing and Communications Data includes your marketing and communication preferences.
We do not collect any Special Categories of Personal Data about you (this includes race or ethnicity, religious beliefs, sex life, sexual orientation, political opinions, trade union membership, health, genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
If you fail to provide personal data
Where we need to collect personal data by law, or under the terms of a contract with you, and you fail to provide that data when requested, we may not be able to perform the contract. In this case we may have to cancel a product or service but we will notify you at the time.
3. How is your personal data collected?
Direct interactions. You may give us your Identity and Contact Data by filling in forms, creating an account, subscribing to updates, or corresponding with us.
Automated technologies or interactions. As you interact with our website, we automatically collect Technical Data using cookies, server logs and other similar technologies.
Third parties or publicly available sources. We may receive Technical Data from analytics providers such as Google and Cloudflare, and Contact, Financial and Transaction Data from payment and delivery partners such as Help Scout and Braintree.
4. How we use your personal data
We will only use your personal data when the law allows us to — most commonly to perform our contract with you, where it is necessary for our legitimate interests, or to comply with a legal obligation. Generally, we do not rely on consent other than for sending third party direct marketing by email, which you can withdraw at any time.
Marketing
You can ask us or third parties to stop sending you marketing messages at any time. We will get your express opt-in consent before we share your personal data with any third parties outside the Tebex group for marketing purposes.
Cookies
You can set your browser to refuse all or some browser cookies. If you disable or refuse cookies, some parts of this website may become inaccessible or not function properly.
5. Disclosures of your personal data
We may share your personal data with Internal and External Third Parties (see Glossary), specific third parties such as our Webstore partners and Amazon Web Services, and parties involved in business transfers. We require all third parties to respect the security of your personal data and to treat it in accordance with the law.
6. International transfers
Many of our external third parties are based outside the EEA. Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection, for example by transferring only to adequate jurisdictions or using Standard Contractual Clauses approved by the European Commission.
7. Data security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way. We limit access to those who have a business need to know, and we have procedures to deal with any suspected personal data breach.
8. Data retention
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for. By law we have to keep basic information about our customers for up to 10 years after they cease being customers for tax purposes.
9. Your legal rights
Under certain circumstances you have the right to request access, correction, erasure, to object to processing, to request restriction of processing, to request transfer of your data, and to withdraw consent. You will not usually have to pay a fee. We try to respond to all legitimate requests within one month.
10. Glossary
Legitimate Interest means the interest of our business in conducting and managing our business to enable us to give you the best and most secure experience.
Performance of Contract means processing your data where it is necessary for the performance of a contract to which you are a party.
Comply with a legal or regulatory obligation means processing where necessary for compliance with a legal obligation that we are subject to.
Tebex Limited — VAT registered GB 167 189 962