General Information

This privacy policy applies to the use of our games on all platforms. Additional privacy information may be available for individual games. In such cases we provide that individual information in the respective games or their respective websites.

Responsible Entity

Below we explain to you which personal data is collected and processed by us when using our games and services.

Medieval Empires PTE. LTD.

160 Robinson Road, #14-04 Singapore Business Federation Centre

Singapore (068914)

eMail: info@medievalempires.com.

Our EU-Representative in accordance with Art. 27 GDPR is:

MoonTech GmbH; Kleinenbroicher Straße 22, 41238 Mönchengladbach

Personal data are individual details about personal or factual circumstances of a specific or identifiable natural person, this means all information that relates to a person.

Legal Basis

As far as a legal basis is mentioned in this Privacy Policy, they relate to the General Data Protection Regulation. We collect and process personal data based on the following statutory regulations:

• Consent according to Article 6 paragraph 1  (a) General Data Protection Regulation (GDPR). Consent is any voluntary expression of intent, in an informed and unequivocal manner, in the form of a statement or other unambiguous confirmatory act, which indicates that the data subject consents to the processing of his personal data.
• Necessity to fulfill the contract or carry out preparatory actions in accordance with Article 6 para. 1 (b) GDPR, this means that the data is required so that we can fulfill the contractual obligations to you or we need the data to prepare a contract closure with you.
• Processing to fulfill legal obligations under Article 6 para. 1 (c) GDPR,this means that a processing of the data is required by law or other regulations.
• Processing for the protection of legitimate interests in accordance with Article 6 para. 1 (f) GDPR,this means that processing is necessary to safeguard legitimate interests on our part or by third parties, unless the interests or fundamental rights and freedoms on your part that require the protection of personal data prevail.

Rights of the Data Subjects

You are entitled to the following rights with regard to the processing of data by us in accordance with the respectively listed articles of the General Data Protection Regulation:

• Information Right pursuant to Article 15 GDPR,i.e. the right to be informed about how your personal data is processed and which personal data is processed by us,
• Right of rectification pursuant to Article 16 GDPR- i.e. the right to request the rectification of inaccurate personal data relating to you without undue delay, including the completion of incomplete data,
• Right to erasure ("right to be forgotten") pursuant to Article 17 GDPR- i.e. the right to request the erasure of your personal data, provided that certain conditions are met,
• Right to restriction of processing pursuant to Article 18 GDPR - i.e. the right to request the restriction of the processing of your personal data, provided that certain conditions are met,
• Right to data portability pursuant to Article 20 GDPR- i.e. the right to demand that you receive your personal data that you have provided in a structured, common and machine-readable format and the right to transfer it to a third party, provided that certain conditions are met,
• Right to object in accordance with Article 21 GDPR- i.e. the right to object to the processing of your personal data where the processing is based on our legitimate interests, provided that certain conditions are met.
• Without prejudice to any other administrative or judicial remedy, you shall have the right to complain to a supervisory authority, in particular in the Member State of your place of residence, employment or the place of the alleged infringement, if you believe that the processing of the personal data is violating the GDPR.

Data Erasure and Storage Duration

The personal data of the data subject will be deleted or blocked as soon as the purpose of the storage is deleted. In addition, storage may take place if provided for by the European or national legislator in EU regulations, laws or other regulations to which the processor is subject. Blocking or deletion of the data also takes place if a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for conclusion of a contract or fulfillment of the contract.

Actual data processing

All data transfer is encrypted.

Scope of data collection

When using our game we will collect general data which include:

• actions taken in the game
• play time and length and numbers of playing sessions
• game settings
• user names / player character names
• digital content purchased
• country of residence
• hardware information
• operating system
• IP adress

The IP address is only collected for the transfer of data and the analysis of the location and then anonymized. We store the data in a game database which is operated by MongoDB Inc. (United States of America) and which is hosted by Amazon Web Services Inc. (United States of America). Furthermore, subject to your consent, such data is processed by our analytics software hosted and operated by Unity Software Inc. based in the United States of America.

All game related data is also processed by Moon Tech GmbH based in Germany, who is the developer of the Game.

Legal Basis

Legal basis is Art. 6 para- 1 (a) and (f) GDPR for the analytics services used. .Legal basis for storing the information in our game database is Art. 6 para 1 (b) GDPR as such data is necessary to offer a consistent game world to the players.

The legitimate interest is to enable us to improve our game based on the playing experience of our players.

The legal basis for the transfer of data to our service providers is Article 28 para. 3, 6 and 7, Article 46 para. 2 (c) GDPR GDPR in conjunction with the use of the standard clauses of the EU Commission.

The legal basis for the processing of the data by Moon Tech GmbH is Art. 28 para. 3 GDPR.

Purpose of data processing

The purpose is to use such aggregated data to analyze what parts of our game our players prefer, if parts of our games are not accessible or should be improved. Furthermore the action taken in the game are required to provide a consistent game experience. Processing the developer is required for additional development and maintenance.

Duration of storage

The IP address is anonymized upon after using the IP address to analyze the user’s country of origin. The game play data is stored permanently as long as you do not delete your game account.

Objection and removal possibility

You may at any time deactivate the analytics functions in the option menu of our games.

Scope of data collection

We are using a tool called Unity Cloud Diagnostic for the collection of error reports in case the game should unintentionally quit to function. In such case a window will be displayed asking you if you want to issue a crash report. If you agree to such sending such report a screenshot of the game and technical data about your computer, including unique device identifiers of your hardware, your installed operation system, driver information and version numbers, language and other settings, screen resolution, mouse positioning as well as any information you wish to provide manually. The Tool is operated and hosted by Unity Software Inc. (United States of America).

Legal Basis

Legal basis for processing the data is Art. 6 para. 1 lit a) GDPR based on your express consent. The legal basis for the processing by Unity Software Inc. is Article 28 para. 3, 6 and 7, Article 46 para. 2 (c) GDPR GDPR in conjunction with the use of the standard clauses of the EU Commission.

Purpose of data processing

The purpose is the maintenance of the game and the correction of software errors as well as assisting you in case of specific problems of your computer system with the game.

Duration of storage

The data is stored as long as it is relevant for the purpose and is thereafter either anonymized or deleted. Usually this is the case after 3 months.

Objection and removal possibility

You can at any time request the deletion of any personal identifiable data that is part of the crash report by sending an email to : info@medievalempires.com.

Scope of data collection

When purchasing digital content for our game the following data regarding your ownership is stored on the Polygon Blockchain which is operated by Polygon Labs UI (Cayman) Ltd. (Cayman Islands):

Wallet-ID and an ID representing the digital content purchased.

Please find Polygon’s privacy policy here: https://polygon.technology/privacy-policy#05

Legal Basis

The legal basis for the transfer is Art. 6 para. 1 (b) GDPR since we are obliged under our purchase agreement to write the ownership data to the blockchain. Polygon is a separate data controller.

Purpose of data processing

The purpose is to securely store your ownership status as the owner of the purchased digital content.

Duration of storage

The storage is permanent

Objection and removal possibility

Once data has been written on the Polygon Blockchain it can no longer be removed.

Scope of data processing

If you contact us via email or provide us on other channels with your e-mail address for support for any of our games or other questions, we may subsequently use your e-mail address to send you e-mails regarding the reason for you contacting us. Such e-mail addresses as well as the content of your messages is stored for with our e-mail service provider, Microsoft Corp., who may also process data outside of the European Union, especially in the United States of America.If you contact us via email or provide us on other channels with your e-mail address for support for any of our games or other questions, we may subsequently use your e-mail address to send you e-mails regarding the reason for you contacting us. Such e-mail addresses as well as the content of your messages is stored for with our e-mail service provider, Microsoft Corp., who may also process data outside of the European Union, especially in the United States of America.

It is also possible to subscribe to a free newsletter for our games, which provides information about our existing and upcoming games. When subscribing to the newsletter, the data from the input mask is transmitted to us. In this case, the date and time of registration for the newsletter as well as the IP address used will also be stored. In the context of the confirmation of the newsletter registration, the date and time at which you click on the confirmation link for the newsletter registration as well as the IP address used are also stored.

In order to send the newsletter, your e-mail address will be passed on to an external service provider, who will send the newsletter on our behalf. We may use either Microsoft Corp. or Amazon Web Services Inc. for sending such emails. No further use is made by the service provider. The service provider is based within the United States of America.

Legal basis

The legal basis for the processing of data when registering directly for the newsletter is Art. 6 para. 1 lit a GDPR.

The legal basis for the transfer of data to our newsletter service provider as well as our e-mail service provider, is Art. 28 Para. 3 , 6 GDPR in conjunction with the use of the standard clauses of the EU Commission.

The legal basis for contacting you via e-mail and storing such communication if you provided us your e-mail address is Art. 6 para 1 lit. a, b, c or f GDPR, which depends on the content and the relation, as your consent is provided when contacting us, the communication may relate to an ongoing contract or may be considered a trade document in accordance with trade and tax law which we are obliged to store, but also it may be in our legitimate interest in case we wish to document our legal compliance.

Purpose of the data processing

The purpose of storing the e-mail address is to enable electronic contact for information purposes. The date and IP address of the registration as well as the confirmation of the registration are recorded in order to document the consent to the newsletter dispatch in an evidence-proof manner and to exclude misuse. The information is passed on to the service provider for the purpose of sending the newsletter in bulk. In case the communication is considered a trade document the purpose is also to comply with mandatory storage obligations.

Duration of storage

Insofar as you have expressly consented to receive the newsletter, we will only delete or block the e-mail address for dispatch if you revoke your consent. The data of the confirmation of the newsletter order will be stored for the same length of time. We will delete email communication after 2 years, unless such communication has to be stored for longer under applicable tax and trade laws.

Possibility of objection and removal

You can object to the use with effect for the future of each newsletter by clicking on a link provided there. You can also object to future use by sending an e-mail to [ADD EMAIL]. In the case of an objection by e-mail, the implementation of the deletion or blocking may take up to 2 working days; during this period, mailings may still be made.

If you request us to delete email communication with you we will comply accordingly, unless we are legally obliged to store such data or it is required for legal defense.

Scope of Data Collection

When visiting our website, the following data is collected and stored by our web server:

• Information about the browser type and version used
• The operating system of the user
• The IP address of the user
• Date and time of access

The data is stored in the log files of our hosting provider. This data is not stored or processed together with other personal data of the user. Our hosting provider is Amazon Web Services Inc. based in the United States of America. .

Legal basis

The legal basis for processing the data is Art. 6 para. 1 (f) GDPR

The legal basis for the transfer of data to Amazon Web Services is Article 28 para. 3, 6 and 7, Article 46 para. 2 (c) GDPR. The standard contractual clauses of the EU Commission are used in contractual relation with the provider.

The legitimate interest within the meaning of Art. 6 para. 1 (f) GDPR therefore lies in the functionality of our website and its availability.

Purpose of data processing

The temporary storage of the IP address by the system is necessary to allow delivery of the website to the computer of the user. To do this, the user's IP address must be kept for the duration of the session.

The data is stored in order to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

Duration of storage

The logfiles will be deleted after sixty days at the latest, unless there is a need to keep the data for the aforementioned purpose due to specific events.

Objection and removal possibility

The collection of data for the provision of the website and the storage of the data in log files is essential for the operation of the website. There is consequently no possibility of objection by the user.

Scope of data processing

Our websites uses Google Analytics, a web analytics service provided by Google Ireland Ltd. ("Google"). This software collects information about how you use the website and compiles various statistics if you provide your consent. The increased usage data include in particular the concrete selection of links, the length of stay on individual pages and the order of use of the website, the frequency of the page request. This data is collected together with your IP address.

In particular, the following information is collected:

• Information about the type of browser and the version used
• The operating system of the user
• The user's Internet service provider
• The IP address of the user
• Date and time of access
• Websites from which the user's system accesses our website
• Websites that are accessed by the user's system via our website

Google Analytics uses so-called "cookies", text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by cookies about your use of this website is usually transmitted to a Google server in the USA and stored there.

We have activated a so-called IP anonymization on the website, this means that the IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area prior to retransmission to the USA.

Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. Google itself describes here https://www.google.com/policies/privacy/ its data processing activity.

The data processing is essentially carried out by Google itself. Despite IP anonymization, the data is not anonymous and can be merged with other data by Google. Google can use the data for any of its own purposes, such as profiling, as well as link it with other data such as any Google accounts and also pass it on to associated US companies, e.g. Google LLC. Legal basis.

The legal basis for the processing of data when using the website is Article 6 para. 1 (a) GDPR in the form of your express consent.

Legal basis

The legal basis for the transfer of data to Google is Article 28 para. 3, 6 and 7, Article 46 para. 2 (c) GDPR and Art. 6 para. 1 (a) GDPR. For any subprocessing done by Google outside of the EU Google employs the standard contractual clauses of the EU commission.

Purpose of data processing

The purpose of the processing is to analyze this website and the usage behavior of its visitors

Duration of storage

We ourselves no longer have access to personal data after anonymization by Google. With regard to a use by Google, the duration of the storage is not known.

Objection and removal possibility

You can prevent the storage of cookies, including the generation and transmission of data to Google, by restricting or prohibiting the use of cookies in your browser software. This may result in the deactivation of non-Google-related cookies as well as the inability to use all functions of this website to the full extent.

You can prevent the collection of the data generated by the cookie regarding your use (including your IP address) and their transmission to Google as well as the processing of this data by Google by downloading the browser plugin available under the following link and to install [Http://tools.google.com/dlpage/gaoptout?hl=de].

In addition, you can also revoke your consent to data collection at any time in our Cookie Bar. For this purpose, a cookie is then stored so that we can recognize that you have not consented to the use of Google Analytics.

Scope of data processing

We have integrated a meta pixel on our site, a service of the Meta Platforms Ireland Limited.

Website: https://www.facebook.com.

Privacy policy: https://www.facebook.com/about/privacy

On the one hand, the service enables us to determine the visitors to our website as the target group for the display of so-called "Facebook ads". This means that we can use the usage data obtained in this way to display the Facebook ads we have placed in a freely selectable manner to those users on Facebook and within the services and partners cooperating with Facebook (more at https://www.facebook.com/audiencenetwork/) who have visited our website or fulfil certain characteristics (for example, identify certain areas of interest or have (not) carried out certain actions on our website). In turn, we transmit this data to Meta in order to be able to select and address such users (so-called "Custom Audiences"). On the other hand, the Meta pixel allows us to analyse the effectiveness of advertisements for market research purposes but also for product optimisation. Facebook provides more information at https://www.facebook.com/privacy/explanation.

Legal basis

The legal basis for the processing of the data is Art. 6 para. 1 lit. a DSGVO in conjunction with the consent given via cookie banner confirmation.

Purpose of the data processing

The processing serves the purpose of analysing this website and the usage behaviour of its visitors. In addition, the processing serves in particular the tracking and interest/behaviour-related profiling for marketing, remarketing, conversion measurement, reach measurement and target group formation purposes.

Duration of storage

Facebook specifies the duration of data storage here: https://www.facebook.com/privacy/explanation

Option to object and remove

You can prevent the storage of cookies, including the generation and transmission of data to Facebook, by restricting or prohibiting the setting of cookies in your browser software. This may result in non-Facebook related cookies being deactivated and not all functions of this website can be used to their full extent.

You can prevent the collection of the data generated by the cookie and related to your use (incl. your IP address) and its transmission to Facebook, as well as the processing of this data by Facebook, by using the opt-out option at the following link: https://www.facebook.com/settings?tab=ads.

In addition, you can also revoke your consent to data collection at any time in our Cookie Bar. For this purpose, a cookie is then stored so that we can recognize that you have not consented to the use of Meta Pixel.

Scope of data processing

On our websites, we occasionally integrate content from social media or videos from video portals. In this case, this content is initially not loaded. Only when you click on a correspondingly marked link with information about the respective provider of the integrated content, this content will be loaded. In doing so, a direct connection to the web server of the respective provider is established and the respective provider may process your personal data. What data this is can be found in the respective data protection declarations of the providers:

Google / YouTube provides privacy information here: https://policies.google.com/privacy

Meta / Facebook provides privacy information here: https://www.facebook.com/policy.php

Twitter provides privacy information here: https://twitter.com/de/privacy

Legal basis

The legal basis for enabling data collection by the respective content provider is your express consent pursuant to Ar. 6 para. 1 lit. a DSGVO by selecting the corresponding link despite a corresponding notice.

Purpose of data processing

The purpose of enabling the collection by the content providers is to enable access to further content of interest to the visitor within the scope of our Internet offer.

Duration of storage

We do not store any data.

Option to object and remove

You can decide for each embedded content whether you want to give the corresponding consent. Claims regarding objection or removal must then be addressed to the data-collecting agency.