Privacy Policy

1. Who controls your data

Fynix Payments Ltd is the data controller for all personal data collected and used in connection with the Fynix platform.

2. What we collect

We collect information needed to operate the platform and fulfil orders, including:

• Account information such as name, email address, username, and contact details
• Order and transaction data, including product purchased, purchase amount, order reference, delivery instructions, and status
• Delivery details such as gamertag, server identifiers, and fulfilment instructions required to deliver digital goods
• Discord data when you authenticate via Discord OAuth, including Discord ID and username
• Usage data such as IP address, device details, and analytics data for fraud prevention and site security

3. How we use your information

We use your personal data to:

• Process purchases and fulfil digital goods orders
• Provide customer support and respond to inquiries
• Prevent fraud, abuse, and unauthorised access
• Maintain accounts and communicate updates
• Comply with legal and accounting obligations

4. Sharing with server owners

Fynix is the controller for transaction data and buyer information. We do not share buyer personal data with server owners for marketing purposes.

Server owners receive only the minimum order and delivery information required to deliver the purchased digital goods, such as gamertag or in-game delivery instructions. Buyer email addresses, payment details, and unrelated personal data are not provided to server owners unless legally required.

5. Third-party services

We may share your data with service providers and payment processors who help us operate the platform, such as Discord, payment gateways, and hosting providers. These providers are contractually authorised to use your data only as needed to support Fynix.

6. Payment data

We do not store full payment card details. Payment card information is processed by our payment providers. We retain transaction metadata such as order amount, provider reference, and transaction dates for legal and accounting purposes.

7. Data retention

We retain your account and transaction records for as long as necessary to operate the platform, comply with legal obligations, and resolve disputes. When you delete your account, we remove personal data where possible, but we may keep limited transaction records to comply with UK law and financial record-keeping.

8. Your rights

You have rights under UK data protection law, including the right to access, correct, delete, or port your data. You may also object to or restrict processing in certain circumstances. Contact us at [email protected] to exercise your rights.

9. Security

We use appropriate technical and organisational measures to protect your personal data, including encryption, access controls, and security monitoring. However, no system is completely secure.

10. Governing law

This Privacy Policy is governed by English law. Any dispute relating to it is subject to the exclusive jurisdiction of the English courts.

11. Contact

If you have questions or complaints about this Policy, contact us at [email protected].