Data Controller: Mohamed Hamdouni (Swiplay)
Contact: contact@swiplay.com
1. Data Collection
We collect the following data:
- Identity: Name, Email, Profile Picture.
- Professional: Business ID (SIRET), VAT Number, Social profiles.
- Financial: Transactions are processed via secure bank transfer. Swiplay never stores full credit card numbers.
- Technical: IP Address, Logs, Session Cookies.
2. Purpose of Processing
Data is processed for:
- Account management and Authentication.
- Execution of billing and payment mandates (Legal obligation).
- Fraud prevention and Anti-Money Laundering (KYC).
- Service improvement (anonymized analytics).
3. Data Processors
Data is shared with compliant third-party providers:
- Hosting: Netcup GmbH (Germany/EU).
- Payments: Bank payment and identity verification providers.
- Auth: Google, Twitch, TikTok (USA - Data Privacy Framework).
- Media Storage: MinIO (Self-hosted EU).
4. Data Retention
- Account data: Until account deletion.
- Billing data: 10 years (Legal accounting obligation).
5. Your Rights (GDPR / CCPA)
Under GDPR and CCPA, you have the right to access, rectify, delete ("right to be forgotten"), and port your data.
To exercise these rights, contact: contact@swiplay.com