Privacy Policy

The controller responsible for data processing on this website is:

Hyper Hollow Games
Germany
Email: [email protected]
Website: www.hyperhollowgames.net

A data protection officer is not required as the company regularly employs fewer than 20 persons engaged in automated data processing.

This privacy policy applies to hyperhollowgames.net and covers all data processing activities related to the use of our Website. For our mobile games, please refer to the individual privacy policies available on the respective game pages.

Our website is hosted by Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, USA. When you visit our site, Vercel automatically collects and stores information in server log files:

• Your IP address
• Browser type and version
• Operating system
• Referrer URL
• Pages accessed
• Date and time of access
• Amount of data transferred

Based on our legitimate interest in the stable and secure operation of our website. Server logs are retained for up to 30 days. A data processing agreement is in place with Vercel.

We also use Cloudflare Inc. (101 Townsend St, San Francisco, CA 94107, USA) as a content delivery network (CDN) and security proxy. Cloudflare processes your IP address, HTTP headers, and request metadata to deliver content, protect against malicious traffic, and optimise performance. Cloudflare may set technically necessary cookies (e.g. __cf_bm) for bot management. A data processing agreement is in place with Cloudflare.

We use only technically necessary cookies required for our website to function correctly. Technically necessary cookies are exempt from the consent requirement under the German Telecommunications Digital Services Data Protection Act. We do not use cookies for advertising or cross-site tracking.

We use Vercel Analytics, which collects anonymized page view and performance data without using cookies or tracking personal data. Based on our legitimate interest in monitoring website performance. A data processing agreement with Vercel is in place.

We use the following processors, with whom data processing agreements are in place:

• Vercel Inc. (USA) - website hosting, CDN, and analytics
• Cloudflare Inc. (USA) - CDN, DDoS protection, and DNS. Cloudflare is DPF-certified.
• 1&1 IONOS SE (Germany) - email forwarding and processing. IONOS processes data exclusively within the EU.

Data may be transferred to the United States. Where applicable, transfers are safeguarded by the EU-US Data Privacy Framework. Vercel is DPF-certified. We do not sell, rent, or share your personal data with third parties for marketing purposes.

• Server logs - retained for up to 30 days
• Contact inquiries - retained until resolved, then subject to statutory retention periods

After expiry, data is deleted or anonymized.

Under the GDPR, you have the following rights regarding your personal data:

• Access - obtain confirmation of whether your data is processed and receive a copy
• Rectification - correct inaccurate or incomplete data
• Erasure - request deletion of your data under the conditions specified by law
• Restriction - restrict the processing of your data in certain cases
• Data portability - receive your data in a structured, commonly used, machine-readable format
• Object - object to processing based on legitimate interests (see Section 10)
• Withdraw consent - withdraw any consent at any time without affecting the lawfulness of prior processing
• Automated decision-making - we do not use automated decision-making or profiling that produces legal effects

To exercise any right, contact [email protected]. We will respond within 30 days.

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. All data transmitted between your browser and our servers is encrypted using SSL/TLS (HTTPS). Our processors (Vercel, Cloudflare, IONOS) maintain their own security certifications and measures.

Where we process your personal data on the basis of legitimate interests, you have the right to object at any time for reasons relating to your particular situation. This applies to processing for web analytics (Vercel Analytics) and server log analysis. If you object, we will no longer process your data for those purposes unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defence of legal claims. To object, email [email protected].

You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR. You may contact any EU supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement. For Germany, a list of all data protection authorities is available at www.bfdi.bund.de. For the United Kingdom, you may contact the Information Commissioner's Office (ICO) at ico.org.uk.

Our website is not directed at children under the age of 16. We do not knowingly collect personal data from children under 16.

Our website contains links to external third-party websites over whose content and privacy practices we have no influence. At the time of linking, no privacy violations were apparent. Upon becoming aware of privacy violations, we will remove such links immediately. We encourage you to review the privacy policies of any third-party site you visit.

We reserve the right to update this privacy policy to reflect changes in our data processing activities or legal requirements. The current version is always available on this page. Material changes will be indicated by updating the date at the top of this policy.

If you have any questions about this Privacy Policy or wish to exercise any of your data protection rights, please contact us at:

Hyper Hollow Games
Germany
Email: [email protected]
Website: www.hyperhollowgames.net

We will respond within 30 days.