Effective Date: 2022-04-06
Thank you for using Mobapay!
Please carefully read this privacy policy (“Privacy Policy”) when you use our services. This Privacy Policy will come into effect for all existing users. Your use of the service will be subject to this Privacy Policy.
The Data Controller under this Privacy Policy is Shen Moon Limited (“we”, “us”, “our”).
We are dedicated to protecting users’ privacy rights. This Privacy Policy has been crafted to inform users as to how we collect, store, use, manage, process, transfer, and implement any other possible operation to the personally identifiable information (“Data”) that users provide during the use of our services.
If you do not agree to the processing of your Data in the way that this privacy policy describes, please do not provide your information (when we request) and stop using Mobapay or any services associated with Mobapay.
We may amend the Privacy Policy from time to time according to the relevant laws, users can find the updated Privacy Policy on the website of Mobapay . We will notify users if we make any material changes to the Privacy Policy.
TABLE OF CONTENTS
We collect or receive Data in three ways:
(1) you directly provide Data to us, such as User ID, Nickname, Server ID.
(2) we collect Data on an ongoing basis, such as through cookies and related technologies.
(3) we receive Data from third party with your consent, such as social media platforms.
For users located in certain countries, when you initiate a transaction on our site, we may process your Personal Information (including your name, mobile number, e-mail, identification number, passport number, and proof of residence documents such as utility, if necessary) for the purposes of identity verification checks and/or to comply with our know-your-customer obligations under applicable laws. If the Personal Information submitted to us is insufficient, inaccurate and/or does not pass our identity verification checks in our view, we may decline to process your transaction(s).
In general, we collect Data and other information as set forth in the table below for specific purposes.
1.2 Data We Collect on an Ongoing Basis
We may also collect Data and other information through technologies, from you when you use our Services. We use these Data and information for purposes such as modifying or improving features, managing advertising, addressing technical issues, preventing fraud, and conducting data analytics and it is necessary for provision of Service. The type of information that we collect includes:
|
Personal Information |
Use |
Legal Basis ( only relevant if you are located in a Relevant Jurisdiction) |
|
Guest users (to the extent this function is available in your region) |
||
|
Guest User Information (for guests that do not provide a player ID and browse the website ) : IP address . |
We use this information to determine your location. |
It is in our legitimate interest to collect this information to allow you to connect to the website. |
|
Guest User Information (for guests that provide a player ID and browse the website): game nickname and game open ID, and device information such as web browser and browser version, location of device, IP address, open ID, cookie information, operating system version, country, internet connection, page loading time, type of mobile or computing device, number of visits, time using the mobapay platform, networks, demographic estimates, flow-through the mobapay platform or referral source, and device fingerprint data . |
We use this information to allow you to use the mobapay platform, to confirm and verify your player ID , and to conduct data analytics . |
For browser version, operating system version, country, internet connection, page loading time, type of mobile or computing device, number of visits, time using the mobapay platform, networks, flow -through the mobapay platform or referral source: It is in our legitimate interest to process this information for data analytics purposes and to understand how you use the Midabuy platform to optimize our platform . For other data: Necessary to perform our contract with you to process your payment and provide the Service. |
|
Information you provide to us (either directly or through a third party) |
||
|
User Information : date of birth (not stored), name, username, email address and Facebook nickname and profile picture . If you connect to the Service through a Game Operator or Third Party Website, then we will also collect the details provided by that third party such as the referring website. |
We use this information to facilitate your purchase in mobapay in accordance with your request. |
Necessary to perform our contract with you to provide the Service. |
|
Transaction Data : bank, invoice information such as billing address, email address, credit card type, phone number, account holder information e.g. account name, user name, mobapay registration date, number of successful orders in past three months, whether the card number was manually inputted and pasted, game ID, login method, IP address, device fingerprint (which includes information like time zone, browser information, CPU class, platform you used i.e. iOS, android or web) , card details and shipping information, your payment information provided to us by third party payment processors (purchase payment date, merchant transaction ID). |
We use this information to detect fraudulent activity and verify transactions. |
It is in our legitimate interest to ensure the integrity of the Service and that your details are not being used fraudulently. |
|
Support Information : If you contact us, we will process the email address you used for communications as well as any other personal information you choose to include in your email to us. |
We use this information to facilitate our handling of your support request. |
It is necessary for us to use this information to perform our contract with you to provide the Service. |
|
Advertising / information used to create customer/audience list (via Facebook) (for the United States only) : email address, phone number, name and surname, city, province and country, zip/postal code, Facebook user ID . |
We use this information to create the customer/audience list to share with Facebook in order to provide you and others with better and more accurate marketing. The processing of your personal data by Facebook is subject to Facebook’s Privacy Policy. |
It is in our legitimate interest to provide better and more accurate marketing to potential users of mobapay . |
|
Information about you generated as part of the Service |
||
|
Browser and Device Information : details of your browser version, operating system version, country, RFID tag, IP address, open ID, internet connection, page loading time, type of mobile or computing device, date and time stamps of actions , number of visits, time using the mobapay platform, networks, flow through the mobapay platform or referral source, and player ID. |
We use this information to facilitate your purchase in mobapay in accordance with your request. |
It is necessary for us to use this information to perform our contract with you to provide the Service. |
|
In-game status information : If you have made a purchase using our Service , a Yes or No confirmation of whether you are active in-game in the country in which your online payment account is from. |
We use this information to detect fraudulent activity and verify transactions. |
It is in our legitimate interest to ensure the integrity of the Service and that your details are not being used fraudulently. |
|
M obile device fingerprint data (a digital signature that does not collect any biometric data): your device fingerprint, time of creation, time zone, device OS information and browser type, platform information, QQ login state, node, screen size and font, audio fingerprint, battery status, domain, adblock . |
We use this information for fraud verification purposes. |
It is in our legitimate interest to ensure the integrity of the Service and that your details are not being used fraudulently. |
|
Information relating to any purchases you make on the mobapay platform |
||
|
Purchase Information : items purchased and their cost, the time, date and currency of the purchase, order ID, open ID, player ID, country, game account balance and purchase history. If you pay with your bank card, we will collect the card number, the expiry date, the card holder's name and the billing address. |
We use this information to facilitate your purchase in mobapay in accordance with your request and provide access to your transaction history. |
It is necessary for us to use this information to perform our contract with you to provide the Service. |
|
|
|
2.1 Using Your Data
We collect, use, store, and process your Data based on:
• The principle of lawfulness, fairness and transparency;
• Your consent that we may take from you time to time;
• Specified, explicit and legitimate purposes;
• The extent that is adequate, relevant and limited to what is necessary in relation to the purposes;
• The manner that ensures appropriate security of the personal data;
• Performing the obligations under Terms of Use and providing our Services;
• Your and our legitimate interests;
• Other legal reasons including if required under any law or required by governmental and regulatory bodies.
We do not share personal data that directly identifies you (such as your name, e-mail) with independent third parties unless:
(i) your prior authorization or consent is obtained;
(ii) if we are required to do so by law, legal process, or a reasonable request from law enforcement authorities or other government officials;
(iii) when we believe disclosure is necessary or appropriate to prevent physical harm or financial loss or in connection with an investigation of suspected or actual illegal activity; or
(iv) if necessary, to protect the vital interests of us and any of its users (such as to prevent death, bodily harm, or serious damage to property), public security and public interests; or
(v) if we sell part or all of our assets to the third parties, we may share your Data with the buyer. In the event of this circumstance, our buyer will comply with this privacy policy ,the related laws and regulations.
We may share anonymous or aggregated data, or other data that does not directly identify you with:
(i) Other companies and public authorities in order to identify and/or prevent fraud and illegal activity, we may exchange data with other companies and public authorities in response to lawful requests;
(ii) Advertising Partners, Social Media Platform and third-party payment platforms. The Service includes features from our partners, such as social media interaction tools, in-game advertising and purchasing in-game items. When you use the service, application, other site provided by these partners related to our service, these partners may access your data and operate under their own privacy policies and their terms of service. We encourage you to check their privacy policies to learn more about their data processing practices and exercise due caution while accessing any third-party website which is beyond our control.
Social Media Platforms:
YouTube (http://www.google.com/policies/privacy)
Facebook(https://www.facebook.com/privacy)
VK.
Agora
We may share your data with our affiliates and companies in the same group of companies as us. This includes our subsidiaries (any organization or brand we own or control); our parent company; and any of its subsidiaries. These companies may use your personal information in the same way as we can under this Privacy Policy.
2.3 Data transfers
Our Service is global by nature and your Data can therefore be transferred to third parties or service providers or business partners located within or outside your jurisdiction. In such cases, we will contractually oblige the receiving parties to ensure that same level of data protection is accorded to your Data that is adhered to by us under applicable law. Further, we contractually ensure that such information is not disclosed, published or transferred further. As different countries may have different Data Protection and Privacy laws, we take steps to ensure adequate safeguards are in place to protect your data. Adequate safeguards that our partners may use include standard contractual clauses approved by EU Commission or other jurisdictions.
You have the right to review your Data provided to us, ask us to correct any inaccurate or incomplete personal Data concerning you.
In some jurisdictions, applicable law may entitle you to request copies of your Data held by us. You may also be entitled to request copies of Data that you have provided to us in a structured, commonly used, and machine-readable format, should you have such requirement, please contact us.We may charge a reasonable fee based on administrative costs, or refuse to act on your request, if your request is manifestly unfounded or excessive. We may also refuse to act on a request where it adversely affects the rights and freedoms of others.
Where you have provided your consent to the processing of your Data by us, you can always withdraw your consent at any time by contacting us. Please note that the withdrawal of your consent does not affect the lawfulness of any processing activities based on such consent before its withdrawal. You may also change certain data preferences at any time, for example you may turn off GPS location sharing in your mobile device settings.
Additionally, in some jurisdictions, you have the right to object and/or limit the ways in which we use your Data, in particular where:
(i) you contest the accuracy of your Data;
(ii) the processing is unlawful and you oppose the erasure of your Data;
(iii) we no longer need your Data for the purposes of the processing, but you require the Data for the establishment, exercise or defense of legal claims; or
We generally retain your Data for as long as is necessary for the performance of our service and to comply with our legal obligations and then it is deleted or erased based on our internal protocols.
In certain jurisdictions, you can request to have all your personal information deleted entirely. Please note that if you request the erasure of your personal information:
If you ask us to remove or delete your Data, we may retain your Data as necessary for our legitimate business interests, such as to comply with our legal obligations, resolve disputes, and enforce our agreements.
We may retain some of your personal information as necessary for our legitimate business interests, such as fraud detection and prevention and enhancing safety. For example, if we suspend an Account for fraud or safety reasons, we may retain certain Data or information from that Account to prevent that member from opening a new account in the future.
We may retain and use your personal information or Data to the extent necessary to comply with our legal obligations. For example, we or third parties engaged by us may keep some of your information for tax, legal reporting and auditing obligations.
Information you have shared with others may continue to be publicly visible , even after your Account is cancelled. However, attribution of such information to you will be removed. Additionally, some copies of your information (e.g., log records) may remain in our database, but are disassociated from personal identifiers. Data protection and information security is important for us. While providing services to you and other users, we operate and maintain the Services so as to protect Data and our systems from accidental or malicious loss and destruction. Therefore, as part of provision of Service and on account of overall safety of Data of all users, residual copies of your personal information may not be removed from our backup systems for a limited period of time.
In some jurisdictions, you may be entitled to object to the processing of your Data where such processing is based on legitimate interest. If you object to such processing, we will no longer process your personal information for these purposes unless we can demonstrate compelling legitimate grounds for such processing or such processing is required for the establishment, exercise or defence of legal claims, or we are relying upon another legal basis to process your Data.
Where your personal information is processed for direct marketing purposes, you may, at any time ask us to cease processing your data for these direct marketing purposes in accordance with clause 8.
5.How We Protect Personal Data
We have implemented reasonable security practices and standards and documented information security policies comprising of all relevant security control measures that are commensurate for protection of the information assets (including your data). We shall also comply with audit requirements as may be required under applicable law. The company’s service provider responsible for hosting of Data has implemented ISO/IEC 27001:2013 standards for its management system and we work with our service providers to ensure that adequate security measures are taken to afford protection to your Data.
Security of our users' Data is a priority at us, and we are continuously implementing and updating administrative, technical, and physical security measures such as access control, compressed encryption to help protect your Data against unauthorized access, loss, destruction, or alteration. However, in a digital world, you will appreciate that we cannot guarantee that such information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards. This means we cannot guarantee the security of your Data and do not assume any responsibility for the unauthorized use or access to your Data under our control.
If we learn of a security systems breach, we may attempt to notify you electronically so that you can take appropriate protective steps. If there is a security breach occurs, we may also post a notice on the Website. We will send an emergency report to authorities in case that the security breach is serious and assist authorities to take steps to prevent further harm.
If you know or have reason to believe that your Account credentials have been lost, stolen, misappropriated, or otherwise compromised or in case of any actual or suspected unauthorized use of your Mobapay Account, please contact us in accordance with clause 8, and we will take action in relation to your notification without undue delay and in any event within 30 days, and respond to you as soon as possible when we have any update.
|
Region in which the user is located |
Minimum age of the user |
|
Algeria |
19 |
|
Australia |
18 |
|
Bangladesh |
18 |
|
Brazil |
18 |
|
Cambodia |
18 |
|
Canada |
13 |
|
Colombia |
18 |
|
Egypt |
18 |
|
European Economic Area / Switzerland |
16 |
|
Hong Kong |
18 |
|
India |
18 |
|
Indonesia |
21 |
|
Japan |
20 |
|
Kingdom of Saudi Arabia |
15 |
|
Kuwait |
21 |
|
Macau |
18 |
|
Malaysia |
18 |
|
Mexico |
18 |
|
Morocco |
18 |
|
Myanmar |
18 |
|
New Zealand |
16 |
|
Philippines |
18 |
|
Qatar |
18 |
|
Republic of Korea |
14 |
|
Russia |
14 |
|
Singapore |
13 |
|
South Africa |
18 |
|
Taiwan |
20 |
|
Thailand |
20 |
|
Tunisia |
18 |
|
Turkey |
18 |
|
United Arab Emirates |
21 |
|
United Kingdom |
13 |
|
United States |
16 |
|
Vietnam |
16 |
Protecting children's privacy online is extremely important to us. We do not directly serve children under the age of 16. If you are a user of the country/region listed above and under the age of legal majority, you shall not use our service without the consents of your parent or guardian. We also do not intentionally collect Data from children or minors through the Service. If you are the parent or guardian of a child and you believe that we have inadvertently received Data about that child, please contact us in accordance with clause 8. We will delete the Data from our records as soon as possible. If you believe that we might have any Data from or about a child under the age of 16, please contact us as well.
7.Updates to Our Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in technology, law, our operations, or any other reason we determine is necessary or appropriate, so please review it frequently. We will indicate on the cover page of this Privacy Policy to indicate the recent most date on which the policy was last updated. Please review this Privacy Policy every time you access or use Service to make sure that you have reviewed the most recent version. We will notify you if there is any substantial change occurs.
If you have any questions about this Privacy Policy or grievances with respect to processing of your information, or you would like to exercise any of your data protection rights, please do not hesitate to reach out to our Grievance Officer. The contact details of the Grievance Officer is set out below:
Contact details/ email: help@mobapay.com.
We will redress the grievances on an expeditious basis within 30 days of receipt of grievance.
9.How to Contact the appropriate Authority
Should you wish to report a complaint or if you feel that we are not addressed your concern in a satisfactory manner, you may contact your local Data Protection Authorities at: https://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm or any other authorities in your jurisdiction.
SUPPLEMENTAL TERMS – JURISDICTION-SPECIFIC
Some jurisdictions’ laws contain additional terms for users of the Service, which are set out in this section.If you are a user located in one of the jurisdictions below, the terms set out below under the name of your jurisdiction apply to you in addition to the terms set out in our Privacy Policy above.
Brazil
This section applies to users located in Brazil:
Consent Revocation
Whenever we use your personal information based on your consent, you may revoke the consent that you have previously given for the collection, use and disclosure of your personal information, subject to contractual or legal limitations. To revoke such consent, you may terminate your account or you can contact mobilelegendsgame@gmail.com . This may affect our provision of the Service to you.
Parental and Guardian Consent
If you are under the age of 18, you should not use the Service for any purpose without first obtaining parental/guardian agreement to this Privacy Policy (both for themselves and on your behalf). We do not knowingly collect personal information from any children under the age of 18 without such consent. Please contact our Data Protection Officer if you believe we have any personal information from any children under the age of 18 without such parental/guardian consent – we will promptly investigate (and remove) such personal information.
BY ACCEPTING THIS PRIVACY POLICY, YOU EXPRESSLY STATE THAT YOU AUTHORISE US TO COLLECT, USE, STORE, AND PROCESS YOUR PERSONAL INFORMATION, INCLUDING, DISCLOSING TO THIRD PARTIES, TO THE EXTENT PROVIDED BY THIS PRIVACY POLICY.
Below, we provide information, as required under California privacy laws, including the California Consumer Privacy Act ("CCPA"), which requires that we provide California residents certain specific information about how we handle their personal information, whether collected online or offline. This section does not address or apply to our handling of publicly available information made lawfully available by state or federal governments or other personal information that is subject to an exemption under Section 1798.145(c) – (f) of the CCPA.
Categories of Personal Information We Collect and Disclose
Our collection, use and disclosure of personal information about a California resident will vary depending upon the circumstances and nature of our interactions or relationship with such resident. The table below sets out generally the categories of personal information (as defined by the CCPA) about California residents that we collect, sell, and disclose to others for a business purpose. We collect these categories of personal information from the sources described above, in Section 1. Data and How we Collect them, and for the purposes described above, in Section 2. How We Use and Share Data.
|
Categories of Personal Information We Collected |
Data Usage and Disclosure |
|
Device Data: IP address, CPU, device type, operating system, language, Storage, device ID, MAC, IDFA; |
Identify, fix, and troubleshoot bugs and service errors; generate device code; provide software updates. |
|
Transaction Data: If you choose to make a purchase, we will collect transaction-related Data such as number of transactions, object of transaction, payment channel, your name, address, card number; |
Enable purchasing related functions; enhance your experience |
Categories of Personal Information Sold. The CCPA defines a "sale" as disclosing or making available to a third party personal information in exchange for monetary or other valuable consideration. We do disclose or make available personal information to third parties, in order to receive certain services or benefits from them. For example, we may allow third party tags to collect information such as browsing history through our Sites and Apps in order to better reach Users with relevant ads and to improve and measure our ad campaigns, or to display third party ads in our Services.
In the past 12 months, we have not sold Personal Information of California residents within the meaning of “sale” in the CCPA.
California Residents' Rights.
California law grants California residents’ certain rights and imposes restrictions on particular business practices as set forth below.
Do-Not-Sell. California residents have the right to opt-out of our sale of their personal information. You can click the button ‘Do Not Sell My Personal Information’ on the screen if do not want us to provide your personal information to any third parties. We do not sell personal information about residents who we know are younger than 16 years old.
Initial Notice. We are required to notify California residents, at or before the point of collection of their personal information, the categories of personal information collected and the purposes for which such information is used. We will make this Privacy Policy available to Users online, in order to satisfy this requirement.
Requests to Delete. Subject to certain exceptions, California residents have the right to, at no charge, request deletion of their personal information that we have collected about them and to have such personal information deleted, except where an exemption applies. To send the request, please email to help@mobapay.com, and we will proceed with it within 30 days.
Request to Know. California residents have the right to request and subject to certain exemptions, receive a copy of the specific pieces of personal information that we have collected about them in the prior 12 months and to have this delivered, free of charge by email, readily useable format that allows the individual to transmit this information to another entity without hindrance. To send the request, please email to help@mobapay.com and we will proceed with it within 30 days. California residents also have the right to request that we provide them certain information about how we have handled their personal information in the prior 12 months, including the:
We will respond to verifiable requests received from California residents as required by law.
Right to Non-Discrimination. The CCPA prohibits discrimination against California residents for exercising their rights under the CCPA. Discrimination may exist where a business denies or provides a different level or quality of goods or services, or charges (or suggests that it will charge) different prices, rates, or penalties on residents who exercise their CCPA rights, unless doing so is reasonably related to the value provided to the business by the residents' data.
Financial Incentives. A business may offer financial incentives for the collection, sale or deletion of California residents' personal information, provided it is not unjust, unreasonable, coercive or usurious, and is made available in compliance with applicable transparency, informed consent, and opt-out requirements. California residents have the right to be notified of any financial incentives offers and their material terms, the right to opt-out of such incentives at any time, and may not be included in such incentives without their prior informed opt-in consent; we do not offer any such incentives at this time.
You Rights Under California's Shine-the-Light Law. We do not share personal information collected online with unaffiliated third parties for their own direct marketing purposes and will not do so unless you agree to such disclosure. If you are a California resident and you still believe your information has been shared or you have general questions about how your information may have been shared, you may contact us by requesting a list of the third parties to which we have disclosed personally identifiable information about you for their own direct marketing purposes. You may make one request per year. In your request, please attest to the fact that you are a California resident and provide a current California address for your response. You may request this information in writing by contacting us via the contact details set out in Section 8. How to Contact us.
1