Effective Date: 15th May, 2018
The ways we collect personal data about you and why we do so
How we use your personal data, and
The choices you have about your personal data.
THE DATA WE COLLECT
With your prior consent, we are likely to collect and process the following data in whole or in part when you use our applications.
- Identity-related data: for some of our applications, we are likely to collect data from your Facebook account, when you login using Facebook connect: Public profile (surname, forename, age, gender, email address, profile photos, hobbies), friend list
- IDFA publicity identifiers (for IOS devices) and GAID (for Android devices)
- Data pertaining to your activities on our applications and notably the way in which you interact with our applications (for instance, how and when you use our applications) and with the publicities we display (for instance, time spent on these, potential clicks)
- Data pertaining to your geographical position (IP address)
This data is collected via external tools (Software Development Kit or « SDK ») implemented by our partners, which are an integral part of the application.
You will find hereafter the list of our partners implementing SDKs through our applications:
- Games Analytics (analytics SDK) https://policies.google.com/privacy
- AppLovin (SDK advertising) https://www.applovin.com/privacy
- Admob (SDK advertising) https://support.google.com/admob/answer/6128543
- Vungle (SDK advertising) http://vungle.com/privacy/
- UnityAds (SDK advertising) https://unity3d.com/legal/privacy-policy
- Ironsource (SDK advertising) https://developers.ironsrc.com/ironsource-mobile/air/ironsource-mobile-privacy-policy/
- Facebook Audience Network (SDK advertising) https://www.facebook.com/privacy/explanation
WHY DO WE COLLECT YOUR DATA
Data collected by XRMagic. is used to:
- Provide our applications
- Guarantee use and improvement of our applications
- Develop new applications
- Understand your centers of interests and, thanks to this profiling, propose you targeted and relevant advertisements (SDK advertising),
- Make statistics on your use of the games, including the number of games played, your duration of use or the advertisements you are watching, which allows us to improve your gaming experience (analytical SDK).
- Communicate with you, notably when you contact us by any means whatsoever
We collect the data listed hereinabove, in whole or in part, only once we have your express consent for the purposes for which they are to be processed, through a pop-up in our applications.
At any time you can withdraw your consent from the “Settings” page in our various applications.
Categories of recipients of data collected
The recipients of the Data are the teams of D2M Ltd. that need to have access as well as the partners mentioned above in article 2. We may however share Data collected with our technical service providers for the aforementioned purposes. We stringently request that our partners always act in compliance with Data protection legislation applicable and grant special attention to confidentiality of this Data. By application of the applicable regulation, any sub-contractor who may process this personal data for D2M Ltd. undertakes as follows:
- to solely process data for the purpose(s) which is/are sub-contracted,
- to process data in pursuance with D2M Ltd. instructions,
- guarantee the security and confidentiality of Data.
XRMagic may also disclose/transfer your personal data to third parties in the following particular circumstances:
- by virtue of legislation, as part of legal proceedings, a dispute and/or request issued by the public authorities in your country of residence or otherwise;
- if disclosure is necessary for national security, application of legislation or any other matter of public interest;
- in the event of restructuring, transfer, merger or sale to the third party concerned.
Personal data concerning children
XRMagic does not knowingly collect any personal data concerning children under 15 years old.
Your rights concerning data collected
You have all of the following rights concerning the data we collect:
- Right to confirmation of the existence of a data processing
You are entitled to obtain from the controller confirmation as to whether or not data related to you are being processed.
- Right to access your Data
You are entitled to receive confirmation that your personal data is or is not processed and, when processed, you are entitled to access said data. This right also includes that of receiving a copy of data processed.
- Right to request rectification of your Data if incorrect.
You are entitled to request that your data be amended, updated or completed when inaccurate, incorrect, incomplete or obsolete.
- Right to request deletion of your Data
You are entitled to request deletion of your data solely on those grounds for which provision is made by applicable regulation and in particular when:
- Data is no longer necessary in light of the purposes for which it is collected or processed in any other manner;
- you withdraw consent over which processing is based, and there is no legal basis for processing;
- you object to processing and there is no overriding legitimate ground for processing;
- you consider that your data has been processed illicitly;
- your data should be deleted to respect a legal obligation.
- Right to limit processing
You are entitled to request that the data controller limit the use of your data solely on those grounds for which provision is made by applicable regulation and in particular when:
- you object to the accuracy of your Data;
- you consider that processing is illicit and you object to deletion of your data;
- data is still required for exercising or defending your rights in court even though D2M Ltd. no longer requires this data,
- The right to object to processing by withdrawing your consent (with it being reiterated that this withdrawal may not harm the legality of processing based on the consent granted prior to its withdrawal),
- The right to benefit from data mobility
You are entitled to reclaim your data provided to D2M Ltd., in a structured format, commonly used and machine-readable, and the right to transfer this data to another data controller, for instance so as to change service provider.
- Post-mortem guidelines
You have the right to provide specific or general guidelines for the retention, erasure and disclosure of your personal data to designated third parties after your death.
If you consider that D2M Ltd. has defaulted in respect of its obligations in light of your personal data, at any time you may issue a complaint or make a claim to the competent authorities.
Terms for exercising rights
You may exercise the aforementioned rights by sending an email to the following address: email@example.com
Due to the obligation of security and confidentiality in Data processing incumbent upon D2M Ltd., you are hereby informed that your request will be processed subject that you provide proof of your identity, notably by producing a scanned copy of a valid identity document or a signed photocopy of a valid identity document.
D2M Ltd. will determine whether this is admissible or not within one month following receipt of the claim. In such instances as it is deemed admissible, D2M Ltd. will provide all information requested or implement the rights claimed within the aforementioned deadline.
If, given the complexity of the claim or the number of requests received, the aforementioned deadline cannot be respected, D2M Ltd. will notify you prior to expiry of this deadline, of this deadline being pushed back by a maximum of two months following its decision.
D2M Ltd. hereby notifies you that it will be entitled, where applicable, to object to any requests which are clearly abusive (in their number, repetitive nature, or systematic).
In such an instance as D2M Ltd. does not follow up on your request, we will inform you of the aforementioned deadlines of the grounds on which our decision is based and your option to refer a complaint.
Personal data security
We take all necessary security measures so as to prevent as far as practically possible any alteration or loss of your data or any unauthorised access thereunto.
In such instances as we should be aware of any illegal access to personal data concerning you and corresponding to processing for which we are responsible, we undertake to notify you of the incident as soon as possible if this fulfils a legal requirement.
Updating the present policy
The present policy may be updated at any time, notably pursuant to legal and/or regulatory provisions and/or any recommendations of appropriate authorities. We hereby invite you to consult this page regularly.