Privacy Policy

The terms of this Privacy Policy apply to the use of the Website and Services offered by SkinrushCS.com (hereinafter the: “SkinrushCS”, “Our”, “We” or “Us”).

SkinrushCS values the privacy of its online visitors to the Website and users of its Services and complies with applicable data protection legislation to safeguard your privacy in accordance with the General Data Protection Regulation (GDPR) of the European Union.

We are committed to ensuring that Your Personal data is protected and handled responsibly. Our Privacy Policy outlines how We Process (collect, use, disclose, share, and manage) Your Personal data when You interact with Our Website and Services. By accessing or using Our Website and Services, You consent to the processing of Your Personal data as described in this Privacy Policy.

Your registration or authorization on the Website signifies Your acceptance of this Privacy Policy. If You disagree with this Privacy Policy, please refrain from using the Services and Website.

Scope of Privacy Policy

This Privacy Policy applies to all Services provided by SkinrushCS and extends to all pages of the Website.

Additionally, any other Services created by SkinrushCS that provide a link to this Privacy Policy are bound by the regulations outlined herein.

Terms and Definitions

Personal data – means any information relating to an identified or identifiable individual person – “Data subject”.

Data subject – means the individual person whose personal data is processed (hereinafter: “Data subject”, “You” or/and “User”).

Processing – means any action or set of actions with personal data.

Profiling – means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

Controller – means an individual or legal entity (and others) that determines the purposes and methods of personal data processing.

Processor – means an individual or legal entity, who processes personal data on behalf of the controller.

Recipient – means an individual or legal entity, public authority, agency, or another body, to which the personal data are disclosed, whether a third party or not.

Third party – means any other person, except the Subject of personal data, the Controller or Processor, and the Data Protection Authority to whom the Controller or Processor transfers personal data.

Consent of the data subject (hereinafter “Consent”) – means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

Personal data breach – means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored, or otherwise processed.

Co-controller – means an individual or legal entity (among others) that, in collaboration with another controller, defines the purposes and methods of processing personal data.

Data Protection Authority – means a public organization or governmental body that safeguards data subjects from unauthorized processing of their data.

Legal basis for processing – means one of the legally stipulated reasons for which the processing of personal data is permissible.

Cookies – means small text files that contain any data. Cookies are stored on the PC of Data subject to provide access to various features. Cookies facilitate the operation of the Website and allow the Website to recognize Data subject’s device and store specific information about Data subject’s preferences or past actions.

Website – means a set of interconnected web pages crafted using different programming languages. It is accessible on the internet through the address SkinrushCS.com and is supervised by the controller.

Service – means any paid and free existing and future services and offerings created by the SkinrushCS team and provided on the website for use, including those that may be added, updated, or modified.

Platform – means Website and Service together.

Social features – means the social networks that We own.

Principles Relating to Processing of Personal Data

We handle Your Personal data responsibly and ensure compliance with data protection laws, making every effort to do so. Below, We outline the principles that guide us in Processing Your Personal data.

Principle of lawfulness, fairness, and transparency.

SkinrushCS confirms that Your Personal data is processed lawfully, fairly, and transparently in accordance with the principle of “lawfulness, fairness, and transparency”.

Principle of purpose limitation.

SkinrushCS is committed to the principle that Your Personal data must be collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.

Principle of data minimization.

SkinrushCS strives to ensure that Your Personal data remains adequate, up-to-date, and confirms that such data should be limited to what is necessary for the purposes for which it is processed.

Principle of accuracy.

SkinrushCS is dedicated to ensuring that Personal Data is accurate and, when required, regularly updated.

Principle of integrity and confidentiality.

SkinrushCS strives to ensure that Your Personal data is processed in a manner that guarantees appropriate security, including protection against unauthorized or unlawful processing, as well as accidental loss, destruction, or damage.

What Personal Data Does SkinrushCS.com Process?

SkinrushCS Processes various types of Your Personal data as part of providing Our Services on the Website. This Personal data may include, but is not limited to:

Types of Personal Data Collected

  • Name and Surname, Date of birth, Country of residence, Registered address or actual place of residence
  • Personal photos
  • Email
  • Information about User social connections and contacts including friends, followers, and subscriptions
  • Payment card data, Bank account information, Payment amounts and payment methods used, Data on purchases, Transaction history
  • Device type, Unique device identifiers, Network data, Internet connection characteristics, IP address, Browser data, Operating system version
  • Steam64ID, Trade link
  • Profile information on the Website
  • Login frequency, achievements, match statistics, Gaming activity history on the Platform, Preferences and interests regarding gaming content, Types of items the User prefers to receive when opening cases, Game playtime data, Data on participation in various events, contests, tournaments, quizzes, and other gaming events
  • Any other Personal data that may be required to achieve the purposes and not prohibited by the applicable legislation.

Purpose of Collection

  • To identify the User, provide personalized services, and ensure account security
  • To analyze User behavior, improve Website functionality, and provide personalized content and Services
  • To process payments for Services and maintain financial records
  • To ensure the security and functionality of the Platform, as well as prevent fraud and abuse
  • To enhance social interaction within Our Platform, provide recommendations, and personalized content
  • To analyze the audience, personalize Services, and direct marketing efforts
  • To adapt content and Services to specific devices, ensure compatibility, and analyze resource usage
  • To provide functionality related to case opening and item exchange, as well as enhance User experience
  • To personalize offers and recommendations for case opening, improving the gaming experience
  • To analyze player behavior, determine preferences and interests, improve gameplay, and provide personalized recommendations
  • To facilitate the functionality of the item trading service, record transactions, and prevent fraud
  • To organize and conduct gaming events, award winners, and analyze User participation
  • To analyze User behavior, improve Service functionality, and provide personalized recommendations and offers
  • To analyze the effectiveness of marketing campaigns, provide personalized offers, and improve User experience
  • To detect and resolve Service functionality issues, improve User experience, and product development
  • To process payments for Services on the Platform, keep track of financial transactions, and provide Users with a history of their purchases
  • To address and resolve User inquiries, technical issues, and feedback, as well as improve customer support Services and User experience.

Source of Collection

  • Through your personal provision of such data during registration or profile activation
  • Through server logs or cookie files
  • Through your personal input of payment data during payment processing
  • Through your personal provision of such data when interacting with Our social accounts
  • Through automatic transmission of such data by your device to Our servers
  • Through the Steam platform
  • Through transaction logs associated with your account
  • Through your explicit consent to use Our Website and Services
  • Through your personal contact with Our Support
  • Through payment processing systems
  • From Third parties.

Processing of Personal Data from Third Parties

We may receive Personal data about you from Third parties, including partners with whom we collaborate on joint services or marketing initiatives, as well as from publicly available sources such as social media platforms and public databases. This information is combined with the Personal data we already hold to enhance our services, update and expand our records, and better understand your preferences and interests. This allows us to tailor our offerings and provide you with more personalized and relevant products and services. We may also use this Personal data to optimize our advertising and commercial initiatives in line with your interests and preferences.

Legal Basis

  • Your explicit consent to the processing of such information through registration or use of Our Website or Services
  • Based on legitimate interest
  • Based on the performance of necessary contractual obligations
  • Based on the need to comply with legislative requirements.

Terms

The retention periods for the above information and personal data are fully regulated and comply with the applicable legal requirements for the particular case of personal data processing.

These are just some examples of Personal data that We may Process. We strive to ensure that the Processing of Your Personal data complies with all applicable norms and data protection laws.

How Does SkinrushCS Share Personal Data with Others?

SkinrushCS adheres to high standards of your privacy and data protection. In this section, We explain how We Process and make personal information available, provided by or collected through the use of Our Services and Website.

Partnerships

We can share Your Personal data with partners We collaborate with to enhance Our Services and Website or provide additional features. These partners may include payment systems, analytical companies, and other services.

Legal Requirements

In the event of receiving requests or other written inquiries from various government authorities: judicial, law enforcement, investigative, supervisory, and others, in accordance with applicable law, We can provide access to Your Personal data.

Marketing and Advertising

We use Personal data for marketing and advertising purposes, including joint actions with advertising partners for more accurate targeting of advertising campaigns.

Analytics and Research

Your Personal data may be used for analytical purposes, such as studying user behavior and improving Our Services and Website.

Payment Processing and Transactions

Your Personal data may be transmitted to Third-party payment systems and financial institutions for Processing payments and transactions.

Transmission in Specific Situations

We can transfer Your Personal data by default to countries recognized by the EU Commission as providing an adequate level of protection, generally or partially, in specific industries.

We take all necessary measures to ensure the security and confidentiality of Your Personal data when transferring them to Third parties. Before providing Your Personal data, it is important to carefully review Our Privacy Policy.

Because we provide Our Services worldwide and Our Website is accessed through servers located in different regions, the information of a particular Data Subject may not be processed in the country in which that Data Subject resides. The level of data protection and legislation regarding the Processing of Personal Data may differ from country to country. For our part, regardless of where your Personal Data is processed, we adhere to all necessary security measures and legal requirements governing the Processing of Personal Data, including European Commission regulations, Swiss regulations, and UK regulations.

The European Commission has ruled that certain countries outside the European Economic Area (EEA) provide sufficient protection for personal information. This means that data can be transferred from European Union (EU) countries, Norway, Liechtenstein, and Iceland to such countries. The UK and Switzerland have approved similar procedures for ensuring the sufficiency of measures. We, in turn, comply directly and without delay with the relevant regulations that govern the adequacy of such measures.

By using Our Website and/or Services, You agree to the terms of this Privacy Policy. Your continued use of the Website and/or Services indicates Your ongoing consent to the Processing of your personal information as outlined in this document.

How Does SkinrushCS Protect Personal Data?

SkinrushCS takes the protection of Your Personal data very seriously and adheres to high standards of confidentiality. To protect Your Personal data on the Website, SkinrushCS employs various methods and technologies:

Data Encryption

All data transmitted through the Website, including Your Personal data, is encrypted using modern encryption methods. This helps prevent unauthorized access to the Personal data.

Server Protection

SkinrushCS maintains high security standards for its servers to prevent unauthorized access to stored Personal data.

Monitoring and Detection Systems

The SkinrushCS Website is equipped with monitoring and detection systems that constantly track Your activity and identify any suspicious or anomalous actions.

Training Employees in Cybersecurity and Data Privacy During Onboarding

SkinrushCS employees undergo training on data security and confidentiality to ensure proper handling and protection of Your Personal data.

Compliance with Legislation

SkinrushCS complies with all applicable laws and regulations related to the protection of personal data, including the General Data Protection Regulation (GDPR) in the European Union and other regional legislative acts.

Privacy Policy

SkinrushCS has a clear Privacy Policy that outlines what Personal data is collected, how it is used, and how You can manage Your Personal data.

Employees Distribute Access to Personal Data

Employees are assigned access to personal data based on necessity. This practice ensures that employees only have access to the Personal data required for their specific job duties, following a need-to-know basis.

Distributed Storage in Different Databases

Storing data across multiple databases is a method used to enhance data resilience by avoiding reliance on a single point of storage. This strategy mitigates the risk of data loss or unavailability due to database failures or other unforeseen events, thereby strengthening overall data integrity and availability.

Integration with Third-Party Software Through Official APIs

Integration with third-party software via official APIs enables secure data exchange while minimizing the potential risks associated with unauthorized integration. These standardized interfaces facilitate secure and controlled interaction between applications, ensuring the reliable transmission of data. When integrating with third-party software, it’s imperative for employees and contractors to exclusively utilize the official APIs provided by the third-party service. Any use of unauthorized integration methods or non-standard APIs is strictly forbidden.

Overall, SkinrushCS takes all necessary measures to ensure the security and confidentiality of Your Personal data, allowing You to feel protected when using the Website.

How Does SkinrushCS Delete Personal Data?

When it comes to deleting Personal data, SkinrushCS follows a meticulous Process to ensure compliance with data protection regulations and to respect Users’ privacy. The steps involved in deleting Personal data include:

Identification

We identify the specific Personal data to be deleted, ensuring accuracy and completeness in the Process.

Verification

Our team verifies the request for deletion to ensure it is legitimate and authorized by the User or in accordance with legal requirements.

Data Removal

Once verified, We proceed to remove the identified Personal data from Our systems, databases, and any associated backups.

Permanent Erasure

We ensure that the deleted Personal data is permanently erased from Our storage systems to prevent any potential retrieval or unauthorized access.

Confirmation

Upon completion of the deletion process, We provide confirmation to the User or Data Protection Authority, acknowledging the successful removal of their Personal data.

Types of Termination of the Grounds for Personal Data Processing and Conditions of Exception

ConsentIf SkinrushCS Processes Personal Data based on the Data Subject’s consent and the Data Subject withdraws this consent, SkinrushCS will promptly delete this Personal Data in accordance with the requirements of legislation provided by GDPR, which regulate procedures, deadlines, obligations, and other rights, as well as in accordance with the terms specified in this Privacy Policy.

Contractual ObligationIf SkinrushCS Processes Personal Data based on a contract between SkinrushCS and the Data Subject, or to establish such a contract, and this contract is terminated or declined, SkinrushCS will promptly delete this Personal Data in accordance with the requirements of legislation provided by GDPR, which regulate procedures, deadlines, obligations, and other rights, as well as in accordance with the terms specified in this Privacy Policy.

Legal ObligationIf SkinrushCS Processes Personal Data based on a legal obligation, SkinrushCS will promptly delete this Personal Data after the legal obligation is cancelled in accordance with the requirements of legislation provided by GDPR, which regulate procedures, deadlines, obligations, and other rights, as well as in accordance with the terms specified in this Privacy Policy.

Vital InterestIf SkinrushCS Processes Personal Data based on the Data Subject’s vital interest, SkinrushCS will promptly delete this Personal Data after the vital interest ceases in accordance with the requirements of legislation provided by GDPR, which regulate procedures, deadlines, obligations, and other rights, as well as in accordance with the terms specified in this Privacy Policy.

Legitimate InterestIf SkinrushCS Processes Personal Data based on SkinrushCS’s legitimate interest and the Data Subject objects, SkinrushCS will promptly delete this Personal Data after receiving the objection in accordance with the requirements of legislation provided by GDPR, which regulate procedures, deadlines, obligations, and other rights, as well as in accordance with the terms specified in this Privacy Policy.

Exceptions

The above rules have the following exceptions:

  • Business Needs: Timeframes may be extended, but not exceeding 6 months, if deleting the data would interrupt SkinrushCS’s ongoing Services and Website.
  • Legal Requirements: The retention period may be extended if mandated by laws or governmental orders, in which case it will be prolonged accordingly.
  • Technical Impossibility: Some information may be technically impossible or disproportionately difficult to delete, such as when deletion could compromise system integrity or information remains in backup copies. In such cases, the information may be retained.
  • Anonymization: The Data Subject’s data may be further processed for SkinrushCS’s purposes (e.g., marketing) if SkinrushCS fully anonymizes the data after the retention period expires, ensuring deletion of all personal identifiers and connections.

By adhering to these rigorous procedures, We uphold Our commitment to safeguarding Users’ Personal data and promoting trust and transparency in Our data management practices.

The Rights of Personal Data Subjects

SkinrushCS is dedicated to safeguarding the rights of Data subjects concerning the information gathered about them. As such, SkinrushCS must guarantee that the rights of the Data subjects, whose information is retained, can be fully exercised. In accordance with current legislation, You have the following rights, in particular, in accordance with legal requirements:

Right to Receive Information About Personal DataYou have the right to receive information about Your Personal data held by Us at any time.

Right of Access by the Data SubjectIt means that You have the right to obtain a copy of all the Personal data We have collected about You based on a request that is reasonable and in accordance with the law.

Right to RectificationWhen handling Your Personal data, We will strive to ensure its accuracy and relevance for the intended purposes through suitable measures. Should Your Personal data be inaccurate or incomplete, You have the right to request its correction.

Right to Erasure (“Right to be Forgotten”)You may also have the right to request the deletion or restriction of Processing of Your Personal data if You deem it necessary. At the same time, We will review Your request on this matter and, in accordance with the law, make a lawful decision or any other decision not prohibited by law.

Right to Restriction of ProcessingThe right to control and limit how one’s information is processed extends to all Parties handling the Personal data, including recipients of that data.

Right to Data PortabilityYou shall have the right to receive the Personal data concerning You, which You have provided to Us, in a structured, commonly used, and machine-readable format and have the right to transmit those data to another controller without hindrance from Us.

Right of Withdrawal of ConsentIf You have consented to the collection, Processing, and use of Your Personal data, You may withdraw Your consent at any time with a future action, but the lawfulness of the Processing carried out on the basis of the consent up to the time of withdrawal will not be affected.

Right to ObjectIf information is Processed based on a legal basis other than Consent, You have the right to object or halt the Processing if deemed appropriate.

Automated Individual Decision-Making, Including ProfilingYou have the right not to be subject to a decision based solely on automated processing, including Profiling, which produces legal effects concerning You or similarly significantly affects You.

Right to the Protection of the RightsYou also have the right to lodge a complaint with the competent supervisory authority if You believe that the Processing of Your Personal data is not lawful.

Privacy Policy Update

SkinrushCS reserves the right to amend this Privacy Policy at any time.

SkinrushCS will notify you of any changes by updating this Privacy Policy, publishing the revised Privacy Policy, and/or through other means of communication.

Please ensure that you review the updated Privacy Policy. By continuing to use the Website and/or Services after SkinrushCS has published a revised Privacy Policy, you consent to be bound by the modified Privacy Policy.

If you do not agree to the updated Privacy Policy, you shall discontinue using the Website or Services.

Applicable Law

The Privacy Policy is designed to comply with applicable law, including the provisions of the European Union General Data Protection Regulation (GDPR).

Confirmation of Acceptance of the Privacy Policy

By using Our Website and/or Services, you confirm that you have previously agreed to and accepted the terms of this Privacy Policy. Your continued use of the Website and/or Services reaffirms your ongoing consent to the processing of your personal information in accordance with the provisions outlined herein.

Data Controller Details

The controller of personal data is SkinrushCS.com.

More details about the Data Controller are specified in the relevant section of the Terms of Use.