Privacy Policy
This policy describes how PlayServ Limited (“PlayServ,” “we,” “our,” or “us”), a company incorporated in the Republic of Cyprus and registered at Archiepiskopou Makariou III, 95, CHARITINI COURT, 1st floor, Flat/Office 102, 1071, Nicosia, Cyprus (company number HE 491652), collects, uses, stores, and protects personal information when you access or use our services.
1. Applicability of this Privacy Policy
This policy applies to our online services, mobile and desktop applications, the website playserv.com, and other interactions including customer support and community forums.
Exclusions:
- Third-party applications integrated with the Services.
- Data handled by Customers where we serve as Data Processor rather than Controller.
2. Types of personal data we collect
- Account information — name, email address, password, professional role.
- Billing data — billing addresses and payment details (handled via PCI-compliant processors).
- Technical & usage data — IP addresses, browser types, device identifiers, interaction logs.
- Location data — approximate location derived from IP address or business address.
- Cookie data — used for sessions and, with your consent, aggregate traffic measurement. See our Cookie Policy.
- AI interaction data — prompts and metadata from integrated AI features.
Website analytics (Google Analytics 4)
On playserv.com we use Google Analytics 4, configured in Consent Mode v2, to understand aggregate site usage:
- What is collected — pages viewed, approximate location, device and browser type, and interaction events, used only for aggregate usage statistics. Advertising features are permanently disabled: ads personalisation and cross-site tracking signals are always set to “denied.”
- Before you consent — no analytics cookies are set. Google Analytics receives only anonymous, cookieless pings that contain no identifiers and are used solely for aggregate modelling.
- If you click “Accept all” — Google Analytics cookies (_ga, _ga_<container>) are set. See the Cookie Policy for details.
- Legal basis — your consent (Article 6(1)(a) GDPR) for analytics cookies; our legitimate interest (Article 6(1)(f) GDPR) for aggregate, cookieless visit counts.
- Recipient — Google Ireland Ltd; data may be processed in the EU and the United States under European Commission adequacy decisions and Standard Contractual Clauses.
- Retention — 2 to 26 months, according to our Google Analytics retention settings.
- Withdrawing consent — choose “Essential only” in the banner, or click “Cookie settings” in the footer at any time to change your choice.
3. Legal bases for processing
Under Regulation (EU) 2016/679 (GDPR) and Cyprus Law 125(I)/2018, processing occurs on one or more of the following bases:
- Performance of a contract — to deliver the Services you've signed up for.
- Legitimate interests — security, fraud prevention, and product improvement.
- Consent — for marketing communications and specific data-sharing activities.
- Legal obligation — tax, labour, and regulatory compliance.
4. How we share personal data
We do not sell personal data. Sharing is limited to:
- Sub-processors — cloud hosting, customer support, and analytics vendors bound by data-processing agreements.
- Corporate affiliates — within our company group.
- Legal compliance — where required under EU or Member-State law.
- Business transfers — during mergers, acquisitions, or reorganisations.
5. International data transfers
Data is stored preferentially within the EEA. Some processing may occur outside the EEA (including in the United States), using one or more of the following safeguards:
- European Commission adequacy decisions.
- Standard Contractual Clauses (SCCs).
- EU-U.S. Data Privacy Framework certifications.
6. Data retention
- Account data — retained for the duration of the active account.
- Legal records — up to 10 years, as required by EU tax law.
- Deletion — secure deletion or anonymisation once data is no longer required.
7. Your GDPR rights
You have the right to:
- Access your data.
- Rectify inaccurate data.
- Request erasure (“right to be forgotten”).
- Restrict processing.
- Data portability.
- Object to processing.
- Withdraw consent at any time.
To exercise any of these rights, email contact@playserv.com.
8. Security
We implement technical and organisational measures including encryption at rest and in transit. We recommend you use a strong password and enable two-factor authentication on your account.
9. Age restrictions
The Services are not intended for individuals under 18. If personal data about a minor is collected inadvertently, it will be deleted immediately upon discovery.
10. Changes to this policy
We may update this policy to reflect legal or business-practice changes. Material changes will be communicated by email or via a Service notice before they take effect.
11. Contact us & supervisory authority
ATTN: Data Protection Officer
Archiepiskopou Makariou III, 95, CHARITINI COURT, 1st floor, Flat/Office 102, 1071, Nicosia, Cyprus
Email: contact@playserv.com
You also have the right to lodge a complaint with the Cyprus Commissioner for Personal Data Protection (dataprotection.gov.cy) or with the supervisory authority of the EU member state where you live or work.