Privacy Policy

Last updated January 25, 2023

SKINS4CS.COM ("us", "we", or "our") is dedicated to protecting your personal information and your right to privacy.

In this Privacy Policy (“Policy) we explain how we handle personal data of our Users when they visit our website and use our services. If You have any concerns about this Privacy Policy ("Policy") or our protection of personal information, please contact us by email [email protected].

What personal data we collect

We collect and process information about your use of our website and its services. Personal data we collect from you may include:

Account data

This is the personal data that you submit or that we collected in order for you to sign up for and use the Service.

Personal data collected from third parties

We receive User data from a third party, Valve Corporation, when you sign in to our website using your Steam account. Personal data we collect are Steam ID, avatar, and username. It enables us to recognize your Steam community profile and have access to public information about your Steam account, including a list of virtual items you own.

Personal data collected directly from you

In order to create your account we will ask you to provide your email. We will also use it to communicate with you the latest news about our Service.

When you sign in, we will automatically create your Skins4cs account and assign it with an account ID (the "Skins4cs ID") which later will be used to refer to your Skins4cs Account without exposing your personal information. You may also choose to provide us with more personal data in order to personalize your account.

Usage data

The information collected directly and/or indirectly when you are using the Service through the Website includes IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views, and website navigation paths, as well as information about the timing, frequency, and pattern of service use. We collect such information through the use of cookies and other similar technologies.

We may also collect Information you may provide when paying for a virtual item or purchasing a product or service from us, including information required to process your orders with the relevant payment merchant, which may include the amount of any transaction but will not include your financial information, which will only be submitted directly to the payment merchant under secure protocols.

We also use “Cookies”, which are text files placed on your computer, and similar technologies to help us personalize the Service for you, analyze how you use our Service, and improve the Service we offer, improve marketing, analytics, and/or enhance the functionality and performance of the Website and Application. Please see our Cookies Policy for more details on the usage of cookies.

Transaction data

The payment operations are carried out entirely through the secure server of the payment service providers. We may only store your deposit and withdrawal history and the limited payment information such as the last four digits of your credit card, bank issuer, etc. The transaction data is processed in order to supply products and services and to retain correct records of those transactions. The legal basis for this processing is the performance of a contract between you, other Users, and us and/or taking steps, at your request, to enter into such a contract, as well as our legitimate interests, which include the correct administration of our website and company.

By pressing “Pay” button, you fully accept and authorize payment service providers to process and store your payment credentials for subsequent use in one or more transaction(s), initiated by you with the Company.

Sharing your personal data

We do not sell your personal data. We may disclose personal data to the following parties:

Payment service providers used by us to process your payments, transfer funds and deal with complaints and queries relating to such payments and transfers (these companies can be based anywhere in the world, but the majority are in the European Union);
Providers of hosting, maintenance, and security services retained by us to run the Website (these companies may be based anywhere in the world but the majority are located in the European Union);
Advertising and marketing companies that collect Personal Data from various sources in order to evaluate certain personal factors in relation to the data subject, conduct marketing research, and provide advertising and marketing services to third parties (these companies can be located anywhere in the world, but the majority are in the European Union);
Analytic services providers such as Google Analytics;
Valve Corporation to carry out your purchases;
Government authorities, including tax officials and police (government authorities from any country, but mostly European Union government authorities).

Data retention

We keep your personal data as long as your account exists, or until we need it for the proper functioning of our service, the compliance of our legal obligations, or to protect legitimate interests, or during the validity of your consent as stated in this Privacy Policy. After you deactivate your account and/or make a request, we will delete and/or anonymize your personal data within 30 days, so that it no longer identifies you, unless we are legally permitted or obligated to retain certain personal data, such as the following:

If there is an unresolved issue with your account, such as a pending credit and/or unresolved dispute, we will keep the necessary personal data until the issue is resolved.
Where we need to retain the personal data for our legal, tax, audit and accounting obligations or any other legal obligation, we will retain the personal data necessary for the required period by applicable law.
Where necessary for our legitimate business objectives, such as fraud prevention, and/or to guarantee our Users' security.

Your rights related to personal data

Under the General Data Protection Regulation (GDPR), you have the right to request access to the personal data that we hold about you. This includes the right to know what data is held, where it has come from, and why it is being processed. However, we are not obliged to provide this information if it would adversely affect the rights and freedoms of others, or if it is subject to certain exceptions such as national security or legal proceedings.

Rectification of your personal data

Under the GDPR, you also have the right to have inaccurate or incomplete personal data rectified. If you believe that the data held by us is inaccurate or incomplete, you can make a request to have this data rectified.

We will rectify this data as soon as possible and will inform you of any rectifications made.

Erasure of your personal data

You can make a request for the erasure of your personal data in the following circumstances:

when the personal data are no longer required for the purposes for which they were collected or otherwise processed;
if you have withdrawn your consent for the processing of your data and there is no other legal basis to process data;
when you object to the processing under certain rules of applicable data protection laws;
when the processing is for direct marketing purposes;
when the personal data have been unlawfully processed.

There are, however, exceptions to the right to erasure. Exclusions include when processing is required:

to exercise our right to free expression and information;
to comply with our legal obligations;
to establish, exercise, or defend legal claims.

Data processing restriction

You also have the right to restrict the processing of your personal data. You can make a request for the restriction of processing if you believe that the data is inaccurate, or if you have objected to the processing of the data.

In this case we will inform you if we have disclosed the data to any third parties, and will inform those parties that the data should no longer be processed. We will also inform you when the restriction of processing has been lifted.

Data processing objection

You have the right to object to the processing of your personal data that is based on our legitimate interest. We will not continue to process the personal data unless we can demonstrate legitimate grounds for the process which overrides your interest and rights or due to legal claims.

Exception to your rights

It is important to note that there are some exceptions to your rights under the GDPR. For example, if the data is necessary for the exercise of the right of freedom of expression and information, or for the establishment, exercise, or defence of legal claims, the organization may not be obliged to comply with your request.

In addition, there are some cases where we may be able to restrict or refuse your right to access your personal data. This includes cases where the data is subject to legal privilege, or if the data is necessary for the prevention or investigation of a crime.

Personal data breach

A personal data breach may result in physical, material, or non-material damage to your rights and freedoms if not treated appropriately and immediately. As a result, as soon as we become aware of a personal data breach, we will notify the Commissioner for Personal Data Protection without undue delay and, where possible, within 72 hours, unless we are able to demonstrate, in accordance with the accountability principle, that the personal data breach is unlikely to result in a risk to your rights and freedoms. If such notification cannot be made within 72 hours, the reasons for the delay shall be included in the notification without undue delay.