Privacy Policy

Last Updated: February 4, 2025

TABLE OF CONTENTS

  1. 1. Introduction
  2. 2. Data Controller
  3. 3. Information We Collect
  4. 4. How We Use Your Information
  5. 5. Information Sharing
  6. 6. Data Retention
  7. 7. Your Rights
  8. 8. Children's Privacy
  9. 9. Data Security
  10. 10. International Data Transfers
  11. 11. Cookies and Tracking
  12. 12. Changes to This Policy
  13. 13. Contact Us

1. Introduction

Welcome to RFL PRO. This Privacy Policy explains how PIXEL RAINBOW Inc. ("Company," "we," "us," or "our") collects, uses, shares, and protects your personal information when you use our platform, including our Telegram application, website, and all related services (collectively, the "Service").

By using our Service, you consent to the collection and use of your information as described in this Privacy Policy. If you do not agree with our practices, please do not use the Service.

2. Data Controller

The data controller responsible for your personal information is:

PIXEL RAINBOW Inc.
United States of America
Email: legal@appsign.me

For EU/EEA users, we act as the data controller as defined under the General Data Protection Regulation (GDPR).

3. Information We Collect

3.1 Information You Provide

We collect information that you voluntarily provide when using our Service:

  • Account Information: Telegram user ID, username, display name, and profile photo (as provided by Telegram)
  • Steam Information: Steam ID and trade URL when you link your Steam account for withdrawals
  • Communication Data: Messages and content you submit in community features, support requests, and feedback

3.2 Information Collected Automatically

When you use our Service, we automatically collect:

  • Usage Data: Actions taken within the app (cases opened, tournaments joined, tasks completed), timestamps, and interaction patterns
  • Device Information: Device type, operating system, browser type, and language settings
  • Log Data: IP address, access times, pages viewed, and referring URLs

3.3 Payment Information

When you make purchases, payment processing is handled by our third-party payment processor, Xsolla. We do not store your complete payment card details. We may receive:

  • Transaction IDs and amounts
  • Partial payment method information (e.g., last 4 digits of card)
  • Billing country
  • Transaction status and history

4. How We Use Your Information

We use your information for the following purposes:

4.1 Service Provision

  • Create and manage your account
  • Process transactions and manage your Crystal balance
  • Enable case openings and item withdrawals
  • Facilitate tournament participation
  • Provide customer support

4.2 Service Improvement

  • Analyze usage patterns to improve features
  • Develop new features and services
  • Troubleshoot technical issues
  • Monitor and ensure Service security

4.3 Communication

  • Send service-related notifications (e.g., tournament announcements, system updates)
  • Respond to your inquiries and support requests
  • Send promotional communications (with your consent, where required)

4.4 Legal and Safety

  • Comply with legal obligations
  • Detect and prevent fraud, abuse, and security incidents
  • Enforce our Terms of Service
  • Protect the rights and safety of users and third parties

5. Information Sharing

We may share your information with the following categories of recipients:

5.1 Service Providers

  • Xsolla: Payment processing (subject to Xsolla's Privacy Policy)
  • Cloud Infrastructure Providers: Data storage and hosting
  • Analytics Providers: Service usage analysis

5.2 Platform Partners

  • Steam: For item withdrawals (Steam ID and trade URL)
  • FACEIT/FASTCUP: For tournament participation and anti-cheat verification

5.3 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or when we believe disclosure is necessary to:

  • Comply with legal process
  • Protect our rights, property, or safety
  • Investigate potential violations of our Terms
  • Prevent fraud or security threats

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

6. Data Retention

We retain your personal information for as long as necessary to:

  • Provide the Service and maintain your account
  • Comply with legal obligations (e.g., tax and accounting requirements)
  • Resolve disputes and enforce our agreements

Specific retention periods:

  • Account Data: Retained while your account is active and for 3 years after deletion request
  • Transaction Records: Retained for 7 years for tax and legal compliance
  • Usage Logs: Retained for 12 months
  • Support Communications: Retained for 2 years after resolution

7. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

7.1 Rights Under GDPR (EU/EEA Users)

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restriction: Request limitation of processing
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw previously given consent at any time

You also have the right to lodge a complaint with your local data protection authority.

7.2 Rights Under CCPA (California Users)

California residents have additional rights under the California Consumer Privacy Act:

  • Right to Know: Request disclosure of personal information collected, used, and shared
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt-out of the sale of personal information (we do not sell personal information)
  • Right to Non-Discrimination: Not be discriminated against for exercising your rights

7.3 Exercising Your Rights

To exercise any of these rights, please contact us at legal@appsign.me. We will respond to your request within 30 days (or as required by applicable law).

We may need to verify your identity before processing your request.

8. Children's Privacy

Our Service is intended for users who are at least 16 years of age.

We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete that information promptly.

If you believe we have inadvertently collected information from a child under 16, please contact us immediately at legal@appsign.me.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

  • Encryption of data in transit (TLS/SSL)
  • Encryption of sensitive data at rest
  • Access controls and authentication requirements
  • Regular security assessments and monitoring
  • Employee training on data protection

However, no method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States, where our servers and service providers are located.

For users in the EU/EEA, we ensure that any international transfers of personal data are protected by:

  • Standard Contractual Clauses approved by the European Commission
  • Other legally approved transfer mechanisms

11. Cookies and Tracking

Our website may use cookies and similar tracking technologies to:

  • Remember your preferences and settings
  • Analyze website traffic and usage patterns
  • Improve our Service

Types of cookies we use:

  • Essential Cookies: Required for basic website functionality
  • Analytics Cookies: Help us understand how visitors use our website
  • Preference Cookies: Remember your settings and choices

You can control cookies through your browser settings. Note that disabling certain cookies may affect website functionality.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes:

  • We will update the "Last Updated" date at the top of this page
  • For material changes, we will notify you through the Service or via email
  • We encourage you to review this Policy periodically

Your continued use of the Service after changes take effect constitutes acceptance of the updated Privacy Policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

PIXEL RAINBOW Inc.
Email: legal@appsign.me

For data protection inquiries from EU/EEA users, you may also contact your local data protection authority.

We aim to respond to all privacy-related inquiries within 30 days.