Policy key definitions:
- "I", "our", "us", or "we" refer to the organisation, SkyPrison.
- "you", "the user" refer to the person(s) using this website.
- GDPR means General Data Protection Act.
- PECR means Privacy & Electronic Communications Regulation.
- ICO means Information Commissioner's Office.
- Cookies mean small files stored on a users computer or device.
Processing of your personal data
Under the GDPR (General Data Protection Regulation) we control and/or process any personal information about you electronically using the following lawful bases.
- We are exempt from registration in the ICO Data Protection Register because we only process personal data for core business purposes.
- Lawful basis: Legitimate interests
The reason we use this basis: We have an interest in giving our users a personalised experience on our services by supplying individual accounts and unique access levels on the website, and features such as private inventories in our game servers.
We process your information in the following ways: We do not require any personal data from users to access our base services with the exception of IP Address (including you username and UUID on game servers) which are automatically logged. This is to create a profile in which further non personal information about you is stored in game (such as balance, homes etc), and for statistical and administrative purposes on our website. This is also kept in logs, which are typically kept for 3-6 months (this is not guaranteed). The only other piece of personal information we require is an email address to create an account on our website, your username is pulled from the data have previously collected on our game servers. This is so we can confirm you are the legitimate account holder and to allow you to recover your password if it is lost. All web-based notifications can be opted into (this does not include marketing emails, these are treated separately). All other data you can enter is done so optionally, and is not used or processed by us in any way other than to display it on the website where it is intended to provide a personalised experience. This can be changed, updated or removed at any time by the user. If you wish to delete your personal data, you can do so by requesting this from an admin on the site or using the contact form built into the website.
Data retention period: We retain your data for up-to 3.5 years since you last used our services. This is treated on a per service basis.
Sharing your information: We do not share your information with third parties in any way.
What data we collect: Automatically Collected IP Address, web browser version, username, UUID. Optionally Collected name(s), email address, occupation, age, gender, location, avatar/photo, discord, skype, facebook and twitter. (this excludes any other information that you choose to post using the tools available).
All donations are handled by our partners Buycraft, you can read more about they handle data in the legal department of their website. We store some data which is collected by them, including IP Addresses, Email Addresses, Date of Purchase and Purchase amount for your own convenience as well as to help prevent fraud and other crime.
Your individual rights
Under the GDPR your rights are as follows. You can read more about your rights in details here;
- the right to be informed;
- the right of access;
- the right to rectification;
- the right to erasure;
- the right to restrict processing;
- the right to data portability;
- the right to object; and
- the right not to be subject to automated decision-making including profiling.
We handle subject access requests in accordance with the GDPR.
Some cookies are required to enjoy and use the full functionality of this website. Disabling them may cause un expected behaviour which we cannot be responsible for, and will not provide assistance with issues arising from this.
Data security and protection
We ensure the security of any personal information we hold by using secure data storage technologies and precise procedures in how we store, access and manage that information. Our methods meet the GDPR compliance requirement.
Transparent Privacy Explanations
We have provided some further explanations about user privacy and the way we use this website to help promote a transparent and honest user privacy methodology.
Sponsored links, affiliate tracking & commissions
Clickable sponsored or affiliate links may be displayed as a website URL or as a titled text link.
Clicking on any adverts, sponsored or affiliate links may track your actions by using a cookie saved to your device. You can read more about cookies on this website above. Your actions are usually recorded as a referral from our website by this cookie. In most cases we earn a very small commission from the advertiser or advertising partner, at no cost to you, whether you make a purchase on their website or not.
We use advertising partners in these ways to help generate an income from the website, which allows us to continue our work and provide you with the best overall experience and valued information.
If you have any concerns about this we suggest you do not click on any adverts, sponsored or affiliate links found throughout the website.
Email marketing messages & subscription
Under the GDPR we use the consent lawful basis for anyone subscribing to our newsletter or marketing mailing list. We only collect certain data about you, as detailed in the "Processing of your personal date" above. Any email marketing messages we send are done so through an EMS, email marketing service provider. An EMS is a third party service provider of software/applications that allows marketers to send out email marketing campaigns to a list of users.
Email marketing messages that we send may contain tracking beacons / tracked clickable links or similar server technologies in order to track subscriber activity within email marketing messages. Where used, such marketing messages may record a range of data such as; times, dates, I.P addresses, opens, clicks, forwards, geographic and demographic data. Such data, within its limitations will show the activity each subscriber made for that email campaign.
Any email marketing messages we send are in accordance with the GDPR and the PECR. We provide you with an easy method to withdraw your consent (unsubscribe) or manage your preferences/the information we hold about you at any time. See any marketing messages for instructions on how to unsubscribe or manage your preferences, you can also unsubscribe from all MailChimp lists, by following this link, otherwise contact the EMS provider.
We do not currently use an EMS system, information will be provided here when we do.
Accessing and updating your information
We ensure you are provided with tools to access, update, and delete to your personal information. There are a few cases in which we have to keep information for legitimate legal purposes, such as IP addresses. When updating your information, we may ask you to verify your identity before we can act on your request. You should contact a site administrator if you have any issues with this, or would like your personal data removing.
We work hard to protect our users from unauthorised access to or unauthorised alteration, disclosure or destruction of information we hold and undertake reasonable security measures with appropriate confidentiality, integrity, and availability protections. However, since no software or storage system is 100% secure, we cannot guarantee the security of your information associated with the Services, or any other service for that matter. You can help protect your account information by using unique and hard-to-guess passwords.
Children Under 13
We do not knowingly collect information for any child under the age of 13. If you are the parent or guardian of a child under the age of 13 and have a concern regarding your child’s information, please contact us using the form on this website. If you are under 13, you must seek a parent or guardians consent before using our services.
We reserve the right to change this Policy from time to time. We will post any Policy changes on this page, including material changes. By using our services, you agree to be bound by this policy and should review this page periodically to check for updates.
If you have questions or data requests regarding this policy or your privacy, please contact us using the form on this site.
Last Updated: 25th May 2018.