Privacy Policy

Last updated: 29/04/2025

1. INTRODUCTION

GameDataCore.AI Ltd ("GameDataCore.AI," "we," "our," or "us") is committed to protecting your privacy and ensuring your personal information is handled in a safe and responsible manner. This Privacy Policy explains how we collect, use, store, protect, and share your personal data when you visit our website at www.gamedatacore.ai ("Site") or use our AI-powered game intelligence platform ("Platform").

This Privacy Policy applies to all users of our Site and Platform, including game developers, publishers, studio executives, investors, and other industry professionals. Please read this Privacy Policy carefully to understand our practices regarding your personal data and how we will treat it.

2. WHO WE ARE

GameDataCore.AI Ltd is a data controller registered in the United Kingdom with company registration number 16376407. Our registered office is located at 95A Gloucester Road, Brighton, BN1 4AP, UK.

For questions regarding this Privacy Policy or our data practices, please contact:

Data Protection Officer

Justin French

GameDataCore.AI Ltd

95A Gloucester Road

Brighton, BN1 4AP, UK

Email: privacy@gamedatacore.ai

3. INFORMATION WE COLLECT

We collect different types of information depending on how you interact with our Site and Platform:

3.1 Information You Provide to Us

  • Account Information: When you register for an account, we collect your full name, email address, company name, job title, and password.
  • Billing Information: For paid subscriptions, we collect payment information, billing address, and transaction history. Note that payment processing is handled by Paddle, who acts as the Merchant of Record for all transactions.
  • Communication Information: When you contact us, we collect the information you provide in your communications, including email correspondence and support requests.
  • Profile Information: Any additional information you provide to complete your profile.
  • Feedback and Survey Responses: Information you provide in response to surveys, feedback forms, or feature requests.

3.2 Information We Collect Automatically

  • Usage Data: Information about how you use our Site and Platform, including pages visited, features used, actions taken, time spent, and interaction data.
  • Device Information: Information about the device you use to access our Site and Platform, including device type, operating system, browser type, IP address, and mobile device identifiers.
  • Log Data: Server logs, error reports, security incidents, and performance data.
  • Cookies and Similar Technologies: We use cookies, web beacons, and similar technologies to collect information about your browsing activities. See our Cookie Policy section for more details.

3.3 Information We Collect From Third Parties

  • Integration Data: If you choose to integrate our Platform with third-party services (such as issue tracking systems, project management tools, or game store platforms), we may receive information from these services in accordance with their terms and your privacy settings.
  • Public Platform Data: Our Platform collects publicly available information from gaming platforms (such as Steam, Reddit, Discord) related to games, reviews, discussions, and community sentiment. This data generally does not include personal information about you unless you are a game developer or publisher associated with a specific title.

3.4 Game Platform Data Collection

Our platform collects publicly available information from gaming platforms like Steam, Discord, Reddit, and other sources through several methods:

  • Public APIs: We utilize official application programming interfaces (APIs) provided by platforms when available, including our commercial agreement with Twitch for the IGDB API.
  • Web Scraping: Where necessary and permitted by the platform's terms of service, we may use automated tools to collect publicly available information.

The information collected includes:

  • Game metadata (titles, release dates, developers, publishers)
  • Public user reviews and ratings
  • Public discussion threads and comments
  • Public metrics such as player counts, review scores, and release information

This collection constitutes fair use as we transform the data to provide analytics and insights, which in turn is likely to increase use of these platforms by our users. We respect "robots.txt" files and rate limitations to minimise our impact on these services.

We do not collect non-public information from these platforms without proper authorisation.

4. HOW WE USE YOUR INFORMATION

We use your personal information for the following purposes:

4.1 To Provide and Improve Our Services

  • To create and manage your account
  • To provide access to our Platform and its features
  • To process transactions and manage subscriptions
  • To respond to your inquiries and provide customer support
  • To analyse usage patterns and improve our Site and Platform
  • To develop new features and services
  • To ensure the security and integrity of our services
  • To prevent and address technical issues, fraud, or illegal activity

4.2 For Communication and Marketing

  • To communicate with you about your account or transactions
  • To send important notices, updates, security alerts, and support messages
  • To provide information about new features, services, and content
  • To send marketing communications (with your consent where required by law)
  • To conduct surveys and collect feedback

4.3 For Legal and Operational Purposes

  • To comply with legal obligations
  • To enforce our Terms of Service
  • To protect our rights, privacy, safety, or property
  • To protect against legal liability

5. LEGAL BASIS FOR PROCESSING

Under the General Data Protection Regulation (GDPR), we process your personal data on the following legal grounds:

  • Contract: Processing is necessary for the performance of our contract with you when you use our Platform or to take steps at your request before entering into a contract.
  • Legitimate Interests: Processing is necessary for our legitimate interests, such as managing our business, providing and improving our services, marketing our services, and protecting against fraud and liability, provided your interests and fundamental rights do not override those interests.
  • Legal Obligation: Processing is necessary to comply with our legal obligations.
  • Consent: We process certain data based on your explicit consent, such as for marketing communications. You can withdraw this consent at any time.

6. COOKIES AND SIMILAR TECHNOLOGIES

6.1 What Are Cookies

Cookies are small text files that are placed on your device when you visit our Site. They allow us to recognise your device and remember certain information about your visit.

6.2 Types of Cookies We Use

  • Essential Cookies: Necessary for the Site to function properly. They enable basic features like page navigation and access to secure areas.
  • Analytical/Performance Cookies: Allow us to recognise and count visitors and see how they move around our Site. This helps us improve the way our Site works.
  • Functionality Cookies: Enable our Site to remember choices you make and provide enhanced, personalised features.
  • Marketing/Targeting Cookies: Used to track visitors across websites to enable publishers to display relevant advertisements.

6.3 Cookie Management

You can manage cookies through your browser settings. Most browsers allow you to block or delete cookies. However, if you block essential cookies, you may not be able to use all the features of our Site.

7. DATA SHARING AND DISCLOSURE

We may share your personal information with the following categories of recipients:

7.1 Service Providers

We share information with third-party service providers who help us operate our business and deliver services to you, including:

  • Paddle (who acts as the Merchant of Record for all transactions)
  • Cloud hosting providers
  • Analytics providers
  • Customer support services
  • Email service providers

These service providers are contractually obligated to use your personal data only to provide services to us and in accordance with applicable data protection laws.

7.2 Aggregated or De-identified Data

We may share aggregated or de-identified data that cannot reasonably be used to identify you with third parties for industry analysis, research, and similar purposes.

7.3 Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of our assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.

7.4 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

7.5 With Your Consent

We may share your information with third parties when we have your consent to do so.

8. DATA RETENTION

We maintain different retention policies depending on the type of data we process:

8.1 Account Information

We retain your account information for as long as your account remains active. After account closure, we retain this information for up to 12 months to facilitate account reactivation and address any post-closure inquiries.

8.2 Public Game Data

  • Game Metadata: Retained indefinitely as historical record (non-personal data)
  • Public Reviews and Discussions: Retained for the lifetime of the Platform to ensure comprehensive trend analysis and historical context

8.3 Usage Data

  • Detailed Usage Logs: Retained for 90 days for security and debugging purposes
  • Aggregated Usage Statistics: Retained for up to 24 months for product improvement

8.4 Payment Information

  • Billing records are retained for 7 years to comply with tax and accounting regulations
  • Detailed payment information is not stored by us but by our Merchant of Record, Paddle, according to their retention policies

8.5 Communication History

Support communications and correspondence are retained for 24 months after the resolution of the inquiry.

To request deletion of your data before these retention periods expire, please contact privacy@gamedatacore.ai. Note that certain data may be retained despite such requests if required by law or necessary for legitimate business purposes, such as fraud prevention or financial record-keeping.

9. DATA SECURITY

We have implemented appropriate technical and organisational measures to protect your personal data from unauthorised access, use, disclosure, alteration, or destruction. These measures include:

  • Encryption of sensitive data
  • Regular security assessments
  • Access controls and authentication procedures
  • Employee training on data protection
  • Secure development practices
  • Physical security controls

However, no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

10. INTERNATIONAL DATA TRANSFERS

GameDataCore.AI Ltd is based in the United Kingdom, and the information we collect may be stored and processed in the UK and other countries where we or our service providers operate.

If we transfer your personal data to countries outside the UK, European Economic Area (EEA), or other regions with data protection laws that may differ from those in your country, we will ensure that appropriate safeguards are in place to protect your personal data and to comply with applicable data protection laws. These safeguards may include:

  • Standard Contractual Clauses approved by the European Commission
  • Binding Corporate Rules
  • Adequacy decisions by the European Commission

11. YOUR PRIVACY RIGHTS

Depending on your location, you may have certain rights regarding your personal information. These may include:

11.1 For EEA, UK, and Similar Jurisdictions

  • Right to Access: You have the right to request information about the personal data we hold about you and to obtain a copy of it.
  • Right to Rectification: You have the right to correct inaccurate or incomplete personal data we hold about you.
  • Right to Erasure: You have the right to ask us to delete your personal data in certain circumstances.
  • Right to Restriction of Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
  • Right to Object: You have the right to object to the processing of your personal data in certain circumstances.
  • Right to Withdraw Consent: Where we process your personal data based on your consent, you have the right to withdraw your consent at any time.

11.2 For California Residents

Under the California Consumer Privacy Act (CCPA), California residents have specific rights regarding their personal information, including:

  • The right to know what personal information we collect and how we use it
  • The right to request deletion of your personal information
  • The right to opt-out of the sale of your personal information (note that we do not sell personal information as defined by the CCPA)
  • The right to non-discrimination for exercising your privacy rights

11.3 How to Exercise Your Rights

To exercise any of these rights, please contact us at privacy@gamedatacore.ai. We may need to verify your identity before fulfilling your request. We will respond to your request within the timeframe required by applicable law.

12. CHILDREN'S PRIVACY

Our Site and Platform are not directed at children under the age of 16, and we do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe we have collected information from your child, please contact us at privacy@gamedatacore.ai.

13. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. If we make material changes to this Privacy Policy, we will notify you by posting the revised policy on our Site with an updated effective date, or by other means as required by law. We encourage you to review this Privacy Policy periodically to stay informed about our data practices.

14. CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Data Protection Officer

Justin French

GameDataCore.AI Ltd

95A Gloucester Road

Brighton, BN1 4AP, UK

Email: privacy@gamedatacore.ai

If you are located in the EEA or UK and have concerns about our data practices that we have not addressed satisfactorily, you have the right to lodge a complaint with your local data protection authority.

15. AUTOMATED DECISION-MAKING AND PROFILING

Our Platform utilises automated processing techniques to analyse game-related data and provide insights. This processing may include:

  • Sentiment Analysis: Automated categorisation of user reviews as positive, negative, or neutral
  • Issue Categorisation: Classification of user feedback into specific categories and feature areas
  • Trend Detection: Identification of patterns in player sentiment and market response

These automated processes help us deliver valuable insights, but do not constitute automated decision-making with significant effects as described in Article 22 of the GDPR, as:

  1. All final decisions regarding game development or business strategy are made by human users, not our systems
  2. Our platform serves as a decision support tool rather than an automated decision-maker
  3. We provide transparency about the factors considered in our algorithms' analyses

You have the right to:

  • Request human intervention in the interpretation of automated analysis
  • Express your point of view on the results of automated processing
  • Contest any conclusions derived from our automated processing

To exercise these rights, please contact us at privacy@gamedatacore.ai.

16. DATA BREACH NOTIFICATION

In the unlikely event of a data breach that compromises your personal information, we will follow these procedures:

  1. Identification and Investigation: We will promptly investigate suspected breaches to determine the nature and scope of the incident.
  2. Containment and Mitigation: We will take immediate steps to contain the breach and mitigate potential harm.
  3. Notification Timeline:
    • If the breach is likely to result in a high risk to your rights and freedoms, we will notify affected users without undue delay and, where feasible, within 72 hours of becoming aware of the breach.
    • We will notify relevant supervisory authorities in accordance with applicable laws, including the UK Information Commissioner's Office and other relevant data protection authorities.
  4. Notification Content: Our notification will include:
    • A description of the nature of the breach
    • The categories and approximate number of individuals concerned
    • The name and contact details of our Data Protection Officer
    • The likely consequences of the breach
    • Measures taken or proposed to address the breach and mitigate potential adverse effects
  5. Ongoing Updates: We will provide affected users with ongoing updates as necessary.

We maintain a data breach register and regularly review and update our security measures to prevent future breaches.