Privacy Policy

We do not share your information with any third parties, with the exception of verified and secure e-commerce payment providers (Paytrail) and delivery services (Posti.fi). When orders are placed, our e-commerce provider processes your personal information and keeps it completely safe and secure. Even we cannot access your credit card information. Your personal information (excluding credit card details) is shared with us only for administrative purposes.

You can always choose not to provide your personal details, though they may be necessary for purchases or other specific features.

Information Collection and Use

Madwave.ru collects personal information to improve the manner in which we operate and offer our products and services, communicate with you about those products and services, and provide effective, timely customer support when necessary. We may collect the following information from our users:

First name, last name, email address, billing address, and phone number

In order to process transactions, we also collect either credit card or bank information, depending on your form of payment. We do not store any credit card information once your transaction is complete.

We also collect Non-Personal Information, a term that refers to data which does not identify you. This type of information can be related to Games (including but not limited to your in-game score, play time, and in-game activities) or to general use of the site (including but not limited to internet protocol addresses, browser type, browser language, referring and exit URLs, and number of clicks).

We reserve the right to use all content generated by our users. By such content, we mean everything users publish through the game and which is visible to other users (including but not limited to wall posts, sent messages, and other interactions with other players). Please note that GD Company does not guarantee the protection of any Personal Information posted in comments and/or on user walls. Therefore, please verify information before publishing it in the public domain. We are in no way responsible for how that information is used by other parties.

Our website may use cookies to store information about your visits to the site. While cookies contain no personal information, they help us identify you as a unique user and/or your browser session. Cookies allow you to take full advantage of some of madwave.ru’s best features, and we recommend that you leave them turned on. In addition, our third-party advertisers may place or recognize a unique cookie on your browser while displaying advertisements on this site. You can always turn cookies off in your browser settings. Personal and Non-Personal Information help us improve the quality of our products, services, and content, and/or technically manage our website or applications (including but not limited to logging your IP address to monitor traffic). We will never disclose your IP address to a third party. We may use your Personal Information to contact you as needed, including but not limited to sending you notifications. If you do not wish to receive further notifications from us, you can always disable this option.

In such event where required by local law, and/or if we believe it will help avoid liability or fraud, and/or to comply with legal processes, we may disclose or access information about you, including but not limited to sharing information with the government and other companies. GD Company is not obligated to and will not question governmental requests and processes.

Data Retention Policy

  1. Data Retention Statement

    As a company, we are fully aware of the importance of protecting the personal data of our users and we endeavour to always minimize and protect any personal data that we hold. We never share personal data with other companies for any purpose other than to provide service.

    For data which we do hold we have strict policies on how that data is stored and how long we retain it. This page documents our general data retention policies

  2. Summary
    Data Description Retention Period ApiRequest Deletion ApiRequest Access
    Customer Account Data 1 Year & 4 Months Yes Yes
    Financial Data 6 Years & 1 Month No Yes
    Customer Communication 3 Years & 1 Month Yes Yes
    Network Connections (logs) 6 Years & 1 Month No No
    Message Submission (logs) 6 Years & 1 Month No No
    Message Delivery (logs) 6 Years & 1 Month No Yes
    Message Submission (database) Last 5000 Messages Yes Yes
    Message Delivery (database) Last 5000 Messages Yes Yes
  3. Customer Account Data

    Data Elements

    For each customer account we collect and store the following static data elements:

    • Account Username (Required - Permanent)
    • Password, Control Panel (Required - Permanent)
    • Password, SMTP (Required - Permanent)
    • Default Billing, First Name
    • Default Billing, Last Name
    • Default Billing, Company Name
    • Default Billing, Company VAT No.
    • Default Billing, Postal Address
    • Default Billing, Postcode
    • Default Billing, Country
    • Admin Email Address
    • Complaints Email Address
    • Authorized Sender Addresses (and related configuration)
    • We also store the following non-specific data per account:
    • Automated Complaints
    • Manual Complaints
    • Troubleshooting and diagnostic data
    • Account Configuration

    Retention Period

    Some of this data is fundamental to your account (marked as 'required') on our systems and therefore cannot be deleted. Any other data elements can be deleted as part of a data deletion request, but you may be required to provide them again if you wish to continue using the account as they are an intrinsic requirement of using the service and / or its features.

    If no request to delete this data is received, we will automatically delete it a maximum of 4 months after the expiry date of your account.

  4. Financial Data

    Data Elements

    For each financial transaction on an account, we collect and store the following data elements:

    • Transaction Date / Time
    • Transaction ID
    • Transaction Amount
    • Transaction Description
    • Transaction Currency
    • Payer Name
    • Payer Company Name
    • Payer Company VAT No.
    • Payer Postal Address
    • Payer Email Address
    • Payer Country of Residence
    • Retention Period
  5. Customer Communication

    Data Elements

    For each communication with our customers via direct email or control panel where an email message will be generated, we collect and store the following data elements:

    • Date / Time
    • Source IP address
    • Sender address
    • Recipient address
    • Message Headers
    • Message Body (user submitted data)
    • Retention Period
    • We will retain these messages for a maximum of 3 years and 1 month. They can be deleted as part of a data deletion request.
    • Each email message will also generate a system log entry containing points 1, 2, 3 and 4. We retain this data in fully encrypted, offline archive files for a maximum of 6 years and 1 month.
  6. Network Connection (with successful authentication challenge)

    Data Elements

    When a user connects and successfully authenticates with our network we collect the following data elements:

    • SMTP Username
    • Date / Time
    • Source IP address
    • Summary of event
    • Retention Period
    • In order to respond to any contractual legal claims we retain this data in fully encrypted, offline archive files for a maximum of 6 years and 1 month
  7. SMTP Message Submission

    Data Elements

    When a user submits a message to our network we collect the following data elements:

    • Message UUID
    • Message ID
    • Date / Time
    • Source IP address
    • Relay Address (duplication)
    • Sender addresses
    • Recipient addresses
    • Message Header, Subject
    • Message Headers (deleted after delivery)
    • Message Body (deleted after delivery)
    • Retention Period
    • Message headers and message body are deleted once a message has been delivered or failed / notified, while the message subject line is retained along with the other data elements listed above

    The data is stored in two locations with different data retention periods:

    • System Databases
    • Records are retained for the last 5000 messages sent on a rolling basis.
    • If you cancel your account we delete these records a maximum of 4 months later, additionally they can be deleted as part of a data deletion request.
    • System Logs
    • In order to respond to any contractual legal claims we retain this data fully encrypted, in offline archive files for a maximum of 6 years and 1 month.
    • These records will not be processed and cannot be deleted as part of a data deletion request
  8. SMTP Message Delivery

    Data Elements

    When we deliver a message submitted to our network by a user we collect the following data elements in our system databases:

    • Linked Account Username
    • Message UUID
    • Message ID
    • Date / Time
    • Delivery IP address
    • Relay Address (duplication)
    • Sender addresses
    • Recipient addresses
    • Message Header, Subject
    • Message Headers (deleted after delivery)
    • Message Body (deleted after delivery)
    • Delivery Response
    • Retention Period
    • Message headers and message body are deleted once a message has been delivered or failed / notified, while the message subject line is retained along with the other data elements listed above

    This data is stored in two locations with different data retention periods:

    • System Databases
    • Records are retained for the last 5000 messages sent on a rolling basis.
    • If you cancel your account we delete these records a maximum of 4 months later, additionally they can be deleted as part of a data deletion request.
    • System Logs
    • In order to respond to any contractual legal claims we retain this data fully encrypted, in offline archive files for a maximum of 6 years and 1 month.
    • These records will not be processed and cannot be deleted as part of a data deletion request
  9. Miscellaneous Data

    Non-delivery reports

    Quarantined emails

  10. Disclaimer

    We have endeavoured to include in this policy a description of each and every element of data that we store. However, for technical reasons they are subject to variation, but the data retention policies per category will still apply to any data elements not documented in this policy

  11. Changes to this policy
    1. This policy is effective as of 25 May 2018 and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after they are posted on this page
    2. The Vendor reserves the right to update or change the policy at any time and the Visitor should check this policy periodically. The continued use of the Website and / or Service after the Vendor posts any modifications to the policy on this page will constitute acknowledgement by the Visitor of the modifications and consent to abide and be bound by the modified policy
    3. Should the Vendor make any material changes to the policy, the Vendor will notify the Visitor by placing a prominent notice in the Control Panel
  12. Current Version

    The version reference for this data retention policy is:

    DRP-1.0.1

Age Checks

The web page from Better Internet for Kids shows the age of consent in EU member states. Article 8 of the GDPR allows member states to set the age of consent between 13 and 16

Transfer of Data

Your information, including Personal Data, may be transferred to and maintained on computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction. If you are located outside Finland and choose to provide information to us, please note that we transfer this data, including Personal Data, to Finland and process it there. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to such transfer.

Mad Wave will take all steps necessary to ensure that your data is handled securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or country unless there are adequate controls in place, including the security of your data and other personal information

Personal Data

Personal Data is data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession)

Usage Data

Usage Data is data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit)

Cookies

Cookies are small pieces of data stored on a User’s device

Data Controller

Data Controller means a person who (either alone or jointly or in common with other persons) determines the purposes for and the manner in which any personal data are, or are to be, processed.

For the purpose of this Privacy Policy, we are a Data Controller of your data

Data Processor (or Service Provider)

Data Processor (or Service Provider) is any person (other than an employee of the Data Controller) who processes the data on behalf of the Data Controller. We may use the services of various Service Providers in order to process your data more effectively

Data Subject

Data Subject is any living individual who is the subject of Personal Data

User

The User is the individual using our Service. The User corresponds to the Data Subject, who is the subject of Personal Data

Information Collection and Use

We collect several different types of information for various purposes to provide and improve our Service to you

Types of Data Collected

Personal Data

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you ("Personal Data"). Personally identifiable information may include, but is not limited to:

  • Email address
  • First name and last name
  • Phone number
  • Cookies and Usage Data
  • We may use your Personal Data to contact you with newsletters, marketing or promotional materials, and other information that may be of interest to you. You may opt out of receiving any, or all, such communications from us by following the unsubscribe link or instructions provided in any email we send, or by contacting us

Usage Data

We may also collect information regarding how the Service is accessed and used ("Usage Data"). This Usage Data may include information such as your computer's Internet Protocol address (e.g. IP address), browser type, browser version, any of our pages of Service that you visit, time and date of your visit, time spent on those pages, unique device identifiers, and other diagnostic data

Location Data

We may use and store information about your location if you give us permission to do so (“Location Data”). We use this data to provide features of our Service, as well as to improve and customize our Service.

You can enable or disable location services when you use our Service at any time, through your device settings