GDPR Compliance

1. Introduction to GDPR

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that gives individuals control over their personal data. At maphoriq.com, we are committed to protecting your privacy and complying with GDPR requirements.

2. Your Rights Under GDPR

Under GDPR, you have the following rights regarding your personal data:

2.1 Right to Access

You have the right to request copies of your personal data. We will provide this information in a commonly used electronic format.

• Request what data we hold about you
• Receive a copy of your data
• Understand how we use your data
• Know who we share your data with

2.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data.

• Update incorrect information
• Complete incomplete data
• Ensure accuracy of your records

2.3 Right to Erasure

Also known as the "right to be forgotten," you can request deletion of your personal data when:

• The data is no longer necessary for its original purpose
• You withdraw consent and there is no other legal basis
• You object to processing and there are no overriding grounds
• The data was unlawfully processed
• Deletion is required for legal compliance

2.4 Right to Restriction of Processing

You can request that we limit how we use your data when:

• You contest the accuracy of the data
• Processing is unlawful but you prefer restriction over erasure
• We no longer need the data but you need it for legal claims
• You have objected to processing pending verification

2.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format and transmit it to another controller.

• Receive data in machine-readable format
• Transfer data to another service provider
• Request direct transmission where technically feasible

2.6 Right to Object

You have the right to object to processing of your personal data based on:

• Legitimate interests
• Direct marketing purposes
• Scientific or historical research
• Statistical purposes

2.7 Rights Related to Automated Decision Making

You have the right not to be subject to decisions based solely on automated processing that produce legal effects or similarly significant effects.

3. How to Exercise Your Rights

To exercise any of your GDPR rights, you can contact us through:

• Email: support@maphoriq.com (24-hour support)
• Alternative Email: info@maphoriq.com
• General Contact: contact@maphoriq.com

Request Process

When you submit a request:

• We will verify your identity for security purposes
• We will respond within 30 days
• We may extend this period by two months for complex requests
• We will inform you of any delays and reasons
• We will provide information free of charge
• We may charge a fee for manifestly unfounded or excessive requests

4. Data We Collect

We collect and process the following categories of personal data:

4.1 Identity Data

• Age verification information
• Username or display name

4.2 Contact Data

• Email address
• Communication preferences

4.3 Technical Data

• IP address
• Browser type and version
• Device information
• Operating system
• Time zone settings

4.4 Usage Data

• Pages visited
• Game play statistics
• Time spent on site
• Interaction with features

4.5 Marketing and Communications Data

• Newsletter subscriptions
• Marketing preferences
• Communication history

5. Legal Basis for Processing

We process your personal data under the following legal bases:

5.1 Consent

You have given clear consent for us to process your personal data for specific purposes, such as:

• Marketing communications
• Optional cookies and tracking
• Newsletter subscriptions

5.2 Contract Performance

Processing is necessary for a contract with you or to take steps at your request before entering a contract:

• Providing social casino services
• Managing your account
• Customer support

5.3 Legal Obligations

Processing is necessary for compliance with legal obligations:

• Age verification requirements
• Record keeping obligations
• Responding to legal requests

5.4 Legitimate Interests

Processing is necessary for our legitimate interests or those of a third party:

• Website security and fraud prevention
• Service improvement and development
• Analytics and performance monitoring
• Business administration

6. How We Protect Your Data

We implement appropriate technical and organizational measures to ensure data security:

6.1 Technical Measures

• Encryption of data in transit and at rest
• Secure socket layer (SSL) technology
• Regular security updates and patches
• Firewalls and intrusion detection systems
• Secure backup procedures

6.2 Organizational Measures

• Access controls and authentication
• Staff training on data protection
• Data protection policies and procedures
• Regular security audits
• Incident response plans

6.3 Data Breach Procedures

In the event of a data breach:

• We will assess the risk to individuals
• We will notify supervisory authorities within 72 hours if required
• We will inform affected individuals without undue delay
• We will document all breaches
• We will take steps to prevent future breaches

7. Data Retention

We retain personal data only for as long as necessary:

7.1 Retention Periods

• Account Data: While active and 2 years after last activity
• Contact Inquiries: 3 years after resolution
• Marketing Data: Until consent is withdrawn
• Legal Compliance Data: As required by law
• Analytics Data: Aggregated and anonymized indefinitely

7.2 Deletion Procedures

After retention periods expire:

• Data is securely deleted or anonymized
• Backups are overwritten according to schedule
• Third-party processors are instructed to delete data

8. International Data Transfers

Your data may be transferred outside the European Economic Area (EEA). When this occurs:

8.1 Safeguards

• We use European Commission approved standard contractual clauses
• We ensure adequate protection through binding corporate rules
• We rely on adequacy decisions where applicable
• We obtain your explicit consent when required

8.2 Transfer Locations

Data may be transferred to:

• New Zealand (our primary location)
• Service providers in various jurisdictions
• Cloud storage facilities

9. Cookies and Tracking

We use cookies and similar technologies. You have control over these through:

9.1 Cookie Categories

• Essential Cookies: Required for site functionality (cannot be disabled)
• Analytics Cookies: Help us understand site usage (optional)
• Marketing Cookies: Used for advertising purposes (optional)

9.2 Managing Cookies

You can control cookies through:

• Our cookie consent banner
• Cookie preference center
• Browser settings
• Third-party opt-out tools

10. Withdrawing Consent

Where processing is based on consent, you can withdraw it at any time:

10.1 How to Withdraw

• Email us at support@maphoriq.com
• Use unsubscribe links in marketing emails
• Adjust cookie preferences in our settings
• Contact us through any provided method

10.2 Effect of Withdrawal

• We will stop processing based on that consent
• Withdrawal does not affect prior lawful processing
• Some services may become unavailable
• We may still process data under other legal bases

11. Children's Privacy

Our services are not intended for individuals under 18 years of age:

• We do not knowingly collect data from minors
• We implement age verification measures
• Parents can contact us if they believe we have collected data from their child
• We will promptly delete any data from individuals under 18

12. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe we have violated your data protection rights.

12.1 New Zealand Privacy Commissioner

Office of the Privacy Commissioner
PO Box 10094
Wellington 6143
New Zealand

Website: www.privacy.org.nz

12.2 European Data Protection Authorities

If you are in the EU/EEA, you can contact your local data protection authority. A list is available at: www.edpb.europa.eu

13. Updates to This Page

We may update this GDPR information from time to time to reflect:

• Changes in data protection laws
• Changes in our data processing practices
• New features or services
• Feedback from supervisory authorities

We will notify you of significant changes through our website or by email.