Privacy Policy

Date of Entry into Force: 04 November 2024

Welcome to Viresta s.r.o. (“Company,” “we,” or “our”). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, store,

and safeguard your personal data when you visit our website or use our services. By using our site, you agree to the terms described in this policy.

About Us as Data Controller

Viresta s.r.o., registered in the Czech Republic, acts as the data controller for your personal data collected on this site. As a data controller, we determine the purposes and means of processing your personal data

in accordance with the General Data Protection Regulation (GDPR) and applicable Czech and EU data protection laws.

Contact Information for Data Controller:

  1. Name: Viresta s.r.o.
  2. Email: support@ai-whatever.com

For any questions, concerns, or if you wish to exercise your rights regarding personal data, please reach out to us using the above contact information. We prioritize transparency and the lawful processing of your data,

protecting your privacy at every stage.

Types of Data We Collect

To deliver, enhance, and personalize our services, we may collect a variety of personal information, including but not limited to:

  1. User Account Data: Username, login credentials, account preferences, activity logs, session data, and associated identifiers like steam ID.
  2. Contact Information: Phone number, email, and residence/billing addresses.
  3. Identity Verification Data: Full legal name, government-issued identification numbers (such as national ID), date of birth, and documents verifying your identity.
  4. Authentication Data: Biometric data (e.g., facial or fingerprint recognition) and multi-factor authentication details.
  5. Financial and Payment Data: Bank account details, credit card numbers, payment history, and transaction details.
  6. Order and Transaction Data: Information about your purchases, order history, refund and cancellation data, and account balance.
  7. Legal and Compliance Data: Data collected to meet anti-money laundering (AML), know-your-customer (KYC), and other regulatory requirements, including risk assessments and sanction checks.
  8. Support and Communication Data: Records of support requests, communications with us (emails, calls), and user feedback.
  9. Usage and Technical Data: Browser, device type, IP address, operating system, technical logs, cookies, and related identifiers.
  10. Marketing Preferences: Subscription status, communication preferences, and user interests.
  11. Surveillance Data: Video surveillance recordings from our premises where applicable, with associated metadata.

We only collect this data to the extent necessary for lawful purposes outlined in this policy.

Sources of Data Collection

Personal data is collected from both direct and indirect sources:

  1. Directly from You: Information you voluntarily share with us through site interactions, forms, or other direct engagements.
  2. Indirect Sources: Information from third parties, such as analytics providers, state authorities, our business partners, or public sources.

Why We Process Your Data

We process your data under the following purposes and legal bases as permitted under GDPR and EU laws:

  1. Providing Services You Request: We use personal data as required to deliver our services to you. Legal Basis: Contractual Necessity.
  2. Creating and Managing Your Account: For account creation, maintenance, and management. Legal Basis: Contractual Necessity.
  3. Verifying Identity and Authenticating Users: Data used for verification and security protocols. Legal Bases: Legal Obligation, Legitimate Interests.
  4. Managing Orders and Transactions: To facilitate purchases, billing, and refunds. Legal Bases: Contractual Necessity, Legitimate Interests.
  5. User Support and Communications: To respond to inquiries and provide support. Legal Bases: Contractual Necessity, Legitimate Interests.
  6. Marketing and Content Personalization: To provide tailored offers, updates, and promotions. Legal Bases: Consent, Legitimate Interests.
  7. Risk Management: Assess and manage business risks. Legal Bases: Contractual Necessity, Legal Obligations, Legitimate Interests.
  8. Fraud Prevention: To detect, prevent, and respond to fraudulent activity. Legal Bases: Legal Obligation, Legitimate Interests.
  9. Legal Compliance and Security: To meet regulatory obligations, including GDPR. Legal Bases: Legal Obligation, Public Interest.
  10. Service Improvement: Enhancing website functionality and service offerings. Legal Basis: Legitimate Interests.

Sharing Data with Third Parties

We may share personal data with third parties only when necessary and for specific purposes:

  1. Service Providers: Includes payment processors and data storage services.
  2. Compliance with Legal Obligations: Sharing required for regulatory or legal compliance.
  3. With Your Consent: Data sharing authorized by you.

Your Privacy Rights

Under GDPR and EU laws, you have rights regarding your personal data:

  1. Right of Access: Request details on the processing of your personal data.
  2. Right to Rectification: Correct inaccurate or incomplete information.
  3. Right to Erasure: Request deletion of data in specific circumstances.
  4. Right to Restrict Processing: Limit data processing in certain cases.
  5. Right to Data Portability: Obtain data in a structured, machine-readable format.
  6. Right to Object: Object to data processing, including for direct marketing.
  7. Right to Withdraw Consent: Withdraw any previously given consent.

Please note that these rights are subject to legal limitations. We may require verification of your identity before processing your request.

How We Secure Your Data

We use technical and organizational measures to protect your data. This includes encryption, secure servers, and regular security assessments. While we prioritize data security, we encourage users to follow cyber hygiene practices.

International Data Transfers

If data is transferred outside the EEA, we implement GDPR-compliant safeguards, such as standard contractual clauses or comparable frameworks.

Data Retention Period

Personal data is stored as long as necessary to fulfil the purposes in this policy, and only as long as legally required. When retention is no longer needed, data is securely deleted or anonymized.

Protection of Children’s Data

Our site and services are intended for users aged 18 and older. We do not knowingly collect data from minors.

Required vs. Optional Data

Certain data is essential to our services; other information is optional but may enhance your experience.

Automated Decision-Making and Profiling

We use automated tools for fraud detection, personalizing content, and other business functions. You may contact us if you have concerns about these processes.

Filing Complaints or Resolving Disputes

If you have concerns about data handling, contact us at support@ai-whatever.com. You may also file a complaint with the Czech supervisory authority or the appropriate data protection authority in your jurisdiction.

Policy Updates

This policy may be updated to reflect changes in our practices or legal requirements. We recommend regular reviews of this policy, which we will notify you of by email or other means if substantive changes are made.

Contact Us

For further information or questions about this policy, please contact us at support@ai-whatever.com. We are committed to addressing your inquiries promptly.