US citizens and other persons from restricted countries are not allowed on this site due to legal reasons.
Last modified: Oct 7, 2025
This Privacy Policy ("Policy") explains how REKT STUDIOS LIMITED, a company incorporated in Ras Al Khaimah, United Arab Emirates ("REKT GAMES", "we", "our", or "us"), collects, processes, stores, and protects your personal data when you access or use the REKT GAMES decentralized gaming launcher platform (the "Platform").
This Policy is designed to align with:
By using the Platform, you agree to the terms of this Privacy Policy and consent to the collection and processing of your personal data as described herein.
This Policy applies to all users ("Users", "you") interacting with the Platform through:
It governs all data processing—whether on-chain or off-chain—conducted by REKT GAMES LIMITED or its authorized data processors.
REKT GAMES is committed to ensuring that all personal data is processed lawfully, fairly, and transparently in accordance with the applicable data protection regulations, including the General Data Protection Regulation (GDPR), and other relevant international and sectoral privacy frameworks such as those issued by the Financial Action Task Force (FATF) for Virtual Asset Service Providers (VASPs).
Our Platform processing of your personal data is grounded in one or more of the following lawful bases:
We process personal data when we have received your consent to do so. Consent is typically requested through a clear affirmative action, such as selecting a checkbox or signing a message through your Web3 wallet interface. This applies to:
You have the right to withdraw your consent at any time. Such withdrawal shall not affect the lawfulness of processing based on consent prior to its withdrawal. Consent management tools are made available via your account dashboard or upon direct request to our Data Protection Officer (DPO).
We process your personal data where it is necessary to enter into or perform a contract with you. This includes, but is not limited to:
In the context of decentralized systems, "contract" may also refer to your interactions with smart contracts deployed by REKT GAMES or its partners on supported blockchains.
Certain processing activities are conducted to ensure compliance with legal obligations imposed by national and international laws. This includes, without limitation:
We may also process your data in compliance with regulations issued by supervisory authorities or their equivalents in your jurisdiction of residence.
Where legally permissible, we process your personal data based on our legitimate interests, provided such interests are not overridden by your fundamental rights and freedoms. These legitimate interests include:
We implement balancing tests to confirm that our legitimate interests do not disproportionately affect your privacy rights. Where such assessments identify significant risks, we will either seek your consent or implement appropriate safeguards (e.g., pseudonymization, data minimization).
REKT GAMES, in its capacity as a data controller under applicable law, collects and processes personal data in accordance with the lawful bases described in Section 4. Given the decentralized and hybrid nature of our gaming launcher, we collect both user-provided data and system-generated data (including on-chain metadata) to operate, secure, and improve the Platform. All collection and processing are performed under the principles of data minimization, purpose limitation, and proportionality.
We categorize data collection into three principal types:
All sensitive identity data collected for compliance purposes is stored with restricted access and processed only by authorized personnel under strict confidentiality agreements. Data is retained only for as long as necessary to fulfill legal, regulatory, and operational requirements.
While many activities occur on public blockchains, we may process associated metadata to deliver account-specific experiences. Users may exercise control via privacy settings where available.
We verify identity, authenticate sessions, and facilitate secure access using wallet signature verification, social login credentials, and session tokens.
We process wallet metadata to enable smart contract functions such as token purchases, staking, rewards, and NFT minting. We do not access private keys.
Where required, we collect and process identity documents through secure third-party verification providers.
We process transaction-related data to support purchases, transfers, and subscriptions.
We process gameplay and governance interaction data to facilitate rankings and participation.
We analyze behavioral data to detect suspicious or abusive activity.
We use contact and account data to provide support and operational notices.
We maintain audit trails and comply with legal retention and reporting obligations.
We process pseudonymized or aggregated data to improve the Platform, with consent where required.
We may share or disclose personal data in carefully controlled circumstances necessary to operate, maintain, secure, and improve the Platform, or as required by law. We do not sell your personal data.
We may share certain user data to enable interoperability and collaborative features.
All processors operate under DPAs with confidentiality and security obligations.
We disclose data when required by law and will notify you unless legally prohibited.
On-chain interactions are public, immutable, and cannot be altered or deleted.
All data recipients are bound by legal and contractual obligations and are periodically audited.
Off-chain data is stored securely in jurisdictions providing adequate data protection, encrypted at rest and in transit, with strict access controls and audit logging.
Blockchain transactions are immutable and permanently accessible. We cannot delete, modify, or suppress data once broadcast. Review transactions carefully before confirmation.
Data no longer needed is deleted or anonymized where legally permissible.
Upon valid request, we delete or anonymize off-chain data, revoke credentials, and preserve audit trails where required. Blockchain-stored data cannot be deleted.
We use TLS 1.3 in transit and AES-256-GCM at rest, with granular encryption for sensitive fields.
Payments via wallets or Payment Processors use tokenization and end-to-end encryption.
We support MFA and wallet signature authentication without accessing private keys.
Data access is limited by role, strongly authenticated, logged, and auditable.
We conduct regular internal and external audits prior to mainnet deployment.
On-chain data is irreversible and permanently visible on public ledgers.
Subject to applicable law, you have the right to access, rectify, erase (excluding immutable on-chain data), restrict processing, object to processing based on legitimate interest, port your data, and withdraw consent at any time.
To exercise these rights, contact our Data Protection Officer atprivacy@rektgames.io. We are committed to responding to all verified data subject requests within thirty (30) calendar days of receipt, in accordance with applicable data protection laws. In certain cases, where additional time is required due to the complexity or number of requests, we may extend this period by an additional Fifteen (15) days, in which case you will be duly informed of the extension and the reasons for the delay.
When data is transferred outside your jurisdiction, we use Standard Contractual Clauses (SCCs) or other lawful mechanisms and apply adequate technical and organizational safeguards.
The Platform is not directed to individuals under the age of legal majority. We do not knowingly collect data from minors. If we become aware of such collection, we will suspend the account and delete or anonymize off-chain data unless legally required to retain it. On-chain data cannot be removed.
Users must confirm their age during onboarding. If you believe that we may have inadvertently collected data from or about a minor in violation of this Policy, please contact our Data Protection Officer immediately at:privacy@rektgames.io. We will respond and act in accordance with our legal obligations and data minimization practices.
The Platform may integrate with third-party services not controlled by REKT GAMES (e.g., wallets, identity, infrastructure, marketplaces, analytics). Their privacy policies govern their processing. Exercise caution when authorizing third-party dApps or extensions.
We conduct DPIAs prior to high-risk processing, documenting scope, risks, mitigations, and compliance reviews. DPIAs may be shared with authorities upon lawful request.
Consent is obtained explicitly and may be withdrawn at any time without affecting prior lawful processing. If purposes change materially, we will notify you and seek renewed consent where required. On-chain data cannot be altered or deleted due to immutability.
We may amend this Policy to reflect changes in law, technology, features, or practices. Material changes will be communicated via appropriate channels. Continued use constitutes acceptance. Review the “Last modified” date.
This Privacy Policy, including any dispute arising from or relating to its interpretation, execution, enforcement, or validity, shall be governed by and construed in accordance with the laws of the United Arab Emirates, without regard to conflict of law principles.
Subject to the mandatory provisions of applicable data protection legislation, any dispute, controversy, or claim arising out of or in connection with this Policy, including its existence, breach, termination, or interpretation, shall fall under the exclusive jurisdiction of the competent courts of Ras Al Khaimah, United Arab Emirates.
Notwithstanding the foregoing, we recognize that individuals may have rights under applicable data protection laws in their country of residence. Nothing in this clause shall restrict or limit your right to lodge a complaint with the relevant data protection authority in your jurisdiction where such rights are provided under applicable law, including but not limited to the UAE Data Office or the European Data Protection Authorities under the GDPR.
For data-related inquiries, contact:
REKT STUDIOS LIMITED United Arab Emirates Email:privacy@rektgames.ioSubject: "Privacy Inquiry – REKT GAMES"