This Privacy Policy explains how FLASHMUNK (“we”, “us”, “the Website”) may collect, use, share, and store your data when you use our services. We try to keep it simple and practical. If you have questions, please contact us.
1) What data we may collect
- Account & profile: email, username, basic profile details you provide (if you register).
- Order & service data: order number, products, amounts, timestamps, delivery status, game account/region/server info you submit for delivery.
- Payment-related data: payment channel, transaction references, payment status; we typically do not store full card numbers (handled by payment providers), but we may receive partial identifiers or risk signals.
- Device & network: IP address, device/browser info, approximate location (derived), cookies/IDs, logs for security and performance.
- Customer support records: messages, email conversations, screenshots or attachments you send, and resolution notes.
- KYC / compliance materials (if required): identity documents or verification materials for certain high-risk, large-value, or abnormal transactions.
2) Why we collect and use data
- Service delivery: create orders, process payments, deliver top-ups, and handle exceptions.
- Customer support: respond to inquiries, verify orders, and resolve disputes.
- Risk control & anti-fraud: detect suspicious activities, prevent stolen payments, abuse, or account takeovers.
- Compliance: meet regulatory and payment-channel requirements (e.g., AML/anti-fraud obligations) when applicable.
- Analytics: understand usage trends and improve product experience (usually in aggregated form).
3) Who we may share data with
We may share limited data with third parties when necessary, for example:
- Payment providers and related partners to complete transactions, manage risk, handle disputes/chargebacks.
- Risk control / anti-fraud services to help detect abnormal transactions (typically via risk signals and transaction context).
- Cloud / infrastructure vendors (hosting, storage, email delivery, logging, customer support tools) to operate the Website.
- Regulators / law enforcement if required by law, legal process, or for serious suspected fraud/illegal activity.
We generally avoid sharing unnecessary personal details. When possible, we limit sharing to what is relevant and proportionate.
4) How long we keep data
- We keep data for as long as needed to provide services, handle support and disputes, and meet legal/compliance requirements.
- For transaction, security, and risk-control logs, retention may be several years and in many cases typically not less than 5 years, depending on regulations, payment-channel rules, and risk needs.
- If you request deletion, we will consider it where feasible, but some data may still be retained for compliance, security, or dispute handling.
5) Cookies and similar technologies
- We may use cookies/local storage to keep you signed in, remember preferences (like language), and protect against abuse.
- We may also use limited analytics cookies to understand how pages are used and improve performance.
- You can usually manage cookies through your browser settings, but disabling them may affect some functions.
6) Your rights and choices
Depending on your region, you may have rights such as:
- Accessing and correcting your account information.
- Requesting deletion or restriction of certain data (subject to legal/compliance needs).
- Requesting a copy/export of certain data you provided.
- Withdrawing consent where we rely on consent for specific processing (if applicable).
- Objecting to certain processing in specific cases (where applicable).
To exercise these rights, contact us. We may ask for reasonable verification to protect your account.
7) Data security (high-level)
- We use reasonable technical and organizational measures (e.g., access control, encryption in transit, logging, and internal procedures).
- No online system is 100% secure, but we work to reduce risks and respond to incidents in a responsible way.
8) Compliance / AML reference
For certain transactions, we may apply enhanced verification or monitoring consistent with our compliance approach. See: AML & Anti-Fraud Compliance Policy.
9) Contact & updates
- Contact: hello@flashmunk.com
- We may update this Policy from time to time. The latest version will be posted on the Website and generally takes effect when published.