Privacy policy

PRIVACY POLICY

This data protection information applies to data processing by: Untold Tales S.A., having its registered office in Poland, Warsaw (01-830), at Aleja Zjednoczenia 36, registered by the District Court for the City of Warsaw in Warsaw, XII the Commercial Division of the National Court Register under the number KRS: 0000860756, VAT ID (NIP): 1182213801, e-mail: contact@untoldtales.games (hereinafter as Company”).

The Company’s data protection officer can be reached at the aforementioned address or under e-mail: gdpr@untoldtales.games.
THIS IS A LEGALLY BINDING AGREEMENT BETWEEN YOU AND THE COMPANY, AND BY USING THE WEBSITE AND SERVICES, YOU AGREE TO THE TERMS OF THIS AGREEMENT.
This Privacy Policy will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.  

If we make any material changes to this Privacy Policy, we will notify you either through the email address you have provided us or by placing a prominent notice on our website.

Whenever the document mentions GDPR it shall mean Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)

Collection and storage of personal data and the purpose of their use

Our Website

When accessing our website https://untoldtales.games/pl/, the browser used on your end device automatically sends information to our website’s server. This information is stored temporarily in a so-called log file. The following information is collected and stored without any action on your part, until its automatic erasure:

  1. IP address of the accessing computer;
  2. Date and time of the access;
  3. Name and URL of the retrieved file;
  4. Website from which access was made;
  5. Browser used and, where applicable, the operating system of your computer and the name of your access provider.

The data mentioned above, will be processed by us for the following purposes:

  1. Guaranteeing the smooth connection setup of the website;
  2. Guaranteeing the comfortable use of our website;
  3. Evaluating system security and stability, and
  4. Other administrative purposes.

The legal basis for the data processing is Art. 6 (1) f GDPR. Our legitimate interest is derived from the purposes listed above for data collection. 

On our website we also use cookies and analytical services – Google Analytics / Google Tag Manager.

Newsletter
Provided you have given your explicit consent, in accordance with Art. 6 (1) a GDPR (providing off an e-mail address is considered sufficient), we shall use your e-mail address in order to send you our newsletter on regular basis. However you may, at any given moment unsubscribe e.g. via a link at the end of each newsletter (provided at the bottom of each send newsletter message)., or by sending an e-mail requesting cancelling subscription of a newsletter to e-mail address marketing@untoldtales.games.

Contacting us via form

We process data for the purpose of making contact in accordance with Art. 6 (1) a GDPR on the basis of your voluntary consent.
You can ask us questions or contact us via a special form on our website. The data provided there, such as name, surname, e-mail address and other provided by you in the message, are processed and stored by us only to enable us to answer your question. The data is then deleted by us.

When applying for a job

When applying for a job, the following data will be collected from you:

  1. Name and surname;
  2. Residential address;
  3. Telephone number;
  4. E-mail address;
  5. Other info provided by you in curriculum vitae.;

data is collected in accordance with Art. 6 (1) a GDPR on the basis of the consent you have given voluntarily, in order to carry out the recruitment process. After completing the process, your data will be deleted, unless you consent to their further storage and processing in subsequent recruitments.

Forwarding data

Your personal data will not be transferred to any third party for any purpose other than those listed below.
We shall forward your personal data to third parties only if you have given your explicit consent, in accordance with Art. 6 (1) a GDPR if under Art. 6 (1) f GDPR the transfer is necessary for the establishment, exercise or defence of legal claims, and there is no reason to assume that you have an overriding interest, which must be protected, in the non-forwarding of your data in the event that there is a legal obligation to forward the data under Art. 6 (1) c GDPR and if this is legally permissible and necessary under Art. 6 (1) b GDPR for the processing of contractual relationships with you.

Cookies

We use cookies on our website. These are small files that are created automatically by your browser and stored on your end device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not cause any damage to your end device, and do not contain any viruses, Trojans or other malware.

The cookie contains information derived in connection with the specific end device used in each case. However, this does not mean that we gain knowledge of your identity by these means.

Our website uses cookies, as almost all websites do, to help provide you with the best experience we can. Cookies are small text files that are placed on your computer or mobile phone when you browse websites.

Our cookies help us:

  1. Make our website work as you’d expect
  2. Remember your settings during and between visits
  3. Improve the speed/security of the site
  4. Continuously improve our website for you
  5. Make our marketing more efficient

We do not use cookies to:

  1. Collect any personally identifiable information (without your express permission)
  2. Collect any sensitive information (without your express permission)
  3. Pass data to advertising networks
  4. Pass personally identifiable data to 3rd parties
  5. Pay sales commissions

The data processed with cookies are necessary for the aforementioned purposes to protect our legitimate interests and those of third parties pursuant to Art. 6 (1) f GDPR. Most browsers accept cookies automatically. However, you can configure your browser in such a manner that no cookies are stored on your computer, or a notification always appears before a new cookie is installed. However, the complete deactivation of cookies may mean that you cannot use all of the functions of our website.

Analytical tools

Tracking tools

The tracking measures listed below and used by us are conducted on the basis of Art. 6 (1) f GDPR. With the tracking measures used, we aim to safeguard the needs-based design and ongoing optimisation of our website. On the other hand, we use tracking measures in order to record and analyse statistics for the purpose of optimising our offer for you. These interests are deemed to be legitimate under the aforementioned regulations. Each of the data processing purposes and data categories should be taken from the respective tracking tools.

Social media plugins

On the basis of Art. 6 (1) f GDPR, we use social plugins of the social networks Facebook, Reddit, Tiktok, Twitter and Instagram on our website, in order to make ourselves better known. The underlying advertising purpose is deemed to be a legitimate interest as defined by the GDPR. 

At the bottom of our website, under the About Us tab, there are icons that redirect you to our profiles on third party sites such as Twitter, Facebook, LinkedIn and Discord.

By clicking on the icons, you go to the websites of the providers of these social media providers and are subject to their privacy policy. We have no influence on the manner or scope of the data processed or collected by them. Responsibility for data protection-compliant operation lies with each respective provider. We integrate these plugins by means of the so-called two-click method, in order to protect visitors to our website as well as possible.
We do not take responsibility for the manner, quality and scope of data processing and collection by social media providers.

Facebook
Facebook’s privacy policy can be found at this link, read them before going to their website https://www.facebook.com/privacy/explanation

The type of information we collect depends on how you will use Facebook products. Facebook collects content, messages and other information received from you when you use their products, such as the data you provide when registering for a Facebook account, creating or sharing content, and when exchanging messages and other communications with others. Facebook collects information about the people, pages, accounts, tags and groups you are connected to and your interactions with them in our products, such as which people you communicate with most or which groups you belong to. We also collect contact details if you send, sync, or import them from your device (e.g. in the form of an address book, call log, or text message log) and use it for activities such as helping you and other users find people they may know and to other purposes set out in detail in their privacy policy. Facebook collects information about how you use our products, such as the types of content you display or respond to, the features you use, the actions you take, the people or accounts you interact with, and the dates, frequency and duration of your activities. Facebook collects information from computers, telephones, Internet-connected TVs and other connected devices (as well as information about these devices) with which you use our products and we combine information from the various devices you use. For example, it uses information collected about your use of our products on your phone to better personalize the content (including advertising) or features you see when you use our products on another device, such as a laptop or tablet, or to check if whether you are taking action on another device in response to an ad we show to you on your phone. Information that Facebook obtains from those devices on which you use Facebook products includes information about device, device operation, identifiers, device signals, data from device settings, network and connections, cookie data.
For

Twitter
Twitter’s privacy policy can be found at this link, read them before going to their website https://twitter.com/en/privacy

Remember that every time you use Twitter, even if you’re just looking at Tweets, Twitter receives some personal information from you like the type of device you’re using and your IP address. You can choose to share additional information with Twitter.

You can manage the account settings to limit the data Twitter collect’s from you and how Twitter uses it, and to control things like account security, marketing preferences, apps that can access your account, and address book contacts you’ve uploaded to Twitter. 

Your Tweets, content you’ve read, Liked, or Retweeted, and other information are used to determine what topics you’re interested in, your age, the languages you speak, and other signals to show you more relevant content. 

Instagram
Instagram’s privacy policy can be found at this link, read them before going to their website https://www.instagram.com/terms/accept/

Instagram receives various information from your device, such as how you touch and scroll through interface elements, which helps us distinguish people from bots and detect fraud.

Instagram may use and share this information for research purposes.

Data collected from Facebook and aggregate allows Instagram to personalize the content displayed to you, including ads.

We display ads without telling advertisers who you are. For more information on what we share with advertisers and partners, please visit the indicated page. Note Instagram is owned by Facebook. 

Discord
Discord’s privacy policy can be found at this link, read them before going to their website  https://discord.com/privacy

When a User interacts through the Discord services, Discord owners receive and store certain information such as the IP address, device ID and the User’s activity on the services. Discord may store such information or it may be placed in databases owned and operated by affiliates, agents or service providers. The Services may use such information and combine it with other data to track, for example, the total number of visitors to the Site, the number of messages sent by users, and the sites from which visitors come to Discord.

Rights of the data subject

You have the right:

  1. pursuant to Art. 15 GDPR, to demand information about your personal data that we have processed. In particular, you can obtain information about the purposes of the processing, The categories of personal data concerned, the recipients or category of recipients to whom you data have been or will be disclosed, the envisaged period for which the data will be stored, the existence of the right to request rectification, erasure, or restriction of the processing, or to object to it, the right to lodge a complaint with a supervisory authority, the source of your data, if these have not been collected by us, and on the existence of automated decision-making, including profiling, and any other meaningful information about their details or the logic involved;
  2. pursuant to Art. 16 GDPR, to demand the immediate rectification or completion of inaccurate personal data stored by us;
  3. pursuant to Art. 17 GDPR, to demand the erasure of personal data stored by us, unless their processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defence of legal claims;
  4. pursuant to Art. 18 GDPR, to demand the restriction of the processing of your personal data in cases where you contest the accuracy of the data, where the processing is unlawful yet you oppose the erasure of the personal data, where we no longer need the data but you still require them to establish, exercise or defend legal claims, or where you have objected to the processing of the data pursuant to Art. 21 GDPR;
    pursuant to Art. 20 GDPR, to obtain your personal data that you have provided to us in a structured, commonly used and machine-readable format and to demand the transfer of these data to another controller;
  5. pursuant to Art. 7 (3) GDPR, to withdraw your consent at any time, which will mean that in future we may no longer carry out the data processing that was contingent upon this consent and
    pursuant to Art. 77 GDPR, to lodge a complaint with a supervisory authority. In general you can contact the supervisory authority of your usual residence or place of employment, or that of our company headquarters for this purpose.

Right of objection

As long as your personal data is processed on the basis of legitimate interests in accordance with Art. 6 (1) f GDPR, you have the right, under Art. 21 GDPR, to object to the processing of your personal data, provided there are reasons relating to your particular situation or if the objection relates to direct marketing. In the latter case, you have a general right to object, which shall be implemented by us without any reference to a particular situation.
If you wish to avail of your right to withdraw or object, an e-mail to “mail address” will suffice.

Data security

During your visit to our website we use the widespread SSL (Secure Socket Layer) method in combination with the currently highest encryption level that is supported by your browser. This is generally a 256-bit encryption. If your browser does not support 256-bit encryption, we revert instead to 128-bit v3 technology. You can see whether individual pages of our website are transmitted in encrypted form by means of the closed illustration of the key or lock symbol in your browser’s status bar.

Furthermore, we avail of suitable technical and organisation security measures in order to protect your data against random or deliberate manipulation, partial or complete loss, destruction, or unauthorised third-party access. Our security measures are improved on an ongoing basis in accordance with technological developments.