GDPR Compliance

Last updated: December 1, 2023

Introduction

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that applies to all companies that process the personal data of individuals residing in the European Union (EU). This page outlines how Arise Crossover complies with GDPR requirements.

Data Controller

Arise Crossover is the data controller for the personal data we collect and process. As a data controller, we are responsible for ensuring that your personal data is processed in accordance with GDPR.

Legal Basis for Processing

We process your personal data on the following legal bases:

Consent

When you explicitly consent to the processing of your personal data for specific purposes, such as receiving marketing communications.

Contract

When the processing is necessary for the performance of a contract with you, such as providing our game services.

Legal Obligation

When the processing is necessary for compliance with a legal obligation to which we are subject.

Legitimate Interests

When the processing is necessary for our legitimate interests, provided that such interests are not overridden by your rights and freedoms.

Your Rights Under GDPR

Under GDPR, you have the following rights:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can request that we correct inaccurate or incomplete personal data.
  • Right to Erasure: You can request that we delete your personal data in certain circumstances.
  • Right to Restrict Processing: You can request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability: You can request that we transfer your personal data to another data controller.
  • Right to Object: You can object to the processing of your personal data in certain circumstances.
  • Right to Withdraw Consent: You can withdraw your consent to the processing of your personal data at any time.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Data Transfers

We may transfer your personal data to countries outside the European Economic Area (EEA). When we do so, we ensure that appropriate safeguards are in place to protect your personal data in accordance with GDPR.

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this GDPR notice. If you have any questions about this notice, including any requests to exercise your legal rights, please contact our DPO:

Changes to This Notice

We may update this GDPR notice from time to time. Any changes will be posted on this page, and we will notify you of significant changes when necessary.