Privacy Policy
Last updated: 11/19/2024
π MITHERAPYSPACE (Reg: 2021/981208/07) is committed to protecting your privacy and ensuring GDPR and CCPA compliance.
Quick Navigation
1. Data Controller
Company: MITHERAPYSPACE (PTY) LTD
Registration Number: 2021/981208/07
Address: Gauteng, Johannesburg, South Africa
Email: privacy@peepgame.online
Data Protection Officer: privacy@peepgame.online
2. Information We Collect
Personal Information You Provide
- Account Information: Email address, name, profile picture (when using OAuth providers like Google/GitHub)
- User-Generated Content: Comments, posts, likes, bookmarks, and other interactions
- Communication Data: Messages sent through contact forms or support channels
- Preference Settings: Theme preferences, notification settings, privacy choices
Information Collected Automatically
- Usage Analytics: Page views, session duration, feature usage, referral sources
- Technical Data: IP address, browser type, device ID, operating system, screen resolution
- Performance Data: Page load times, error logs, API response times
- Location Data: General geographic location based on IP address (city/country level)
Information from Third Parties
- OAuth Providers: Profile data from Google, GitHub (with your permission)
- Analytics Services: Aggregated usage statistics from Google Analytics
- CDN Providers: Performance and security data from content delivery networks
4. Data Retention Policy
We retain personal data only as long as necessary for the purposes outlined in this policy, or as required by law.
| Data Type | Retention Period | Reason |
|---|---|---|
| Account Information | Until account deletion + 30 days | Service provision, account recovery |
| Comments & Posts | Until content deletion + 90 days | Content integrity, moderation appeals |
| Analytics Data | 26 months (Google Analytics) | Usage analysis, service improvement |
| Security Logs | 12 months | Security monitoring, fraud prevention |
| Marketing Data | Until consent withdrawal + 30 days | Marketing campaigns, consent proof |
| Support Communications | 3 years | Customer service, legal compliance |
| Legal/Compliance Data | 7 years or as required by law | Legal obligations, audit requirements |
Automated Deletion
We have automated systems in place to delete data when retention periods expire. You can also request immediate deletion of your data at any time.
5. How We Use Your Information
We process your personal data based on the following legal bases:
β Legitimate Interest
- β’ Service improvement and optimization
- β’ Security and fraud prevention
- β’ Anonymous analytics and research
- β’ Performance monitoring
π Contractual Necessity
- β’ Account creation and management
- β’ Content delivery and personalization
- β’ Customer support
- β’ Payment processing (if applicable)
π Consent
- β’ Marketing communications
- β’ Non-essential cookies
- β’ Personalized advertising
- β’ Newsletter subscriptions
βοΈ Legal Obligation
- β’ Compliance with court orders
- β’ Tax and accounting requirements
- β’ Content moderation for legal compliance
- β’ Data breach notifications
6. Your Privacy Rights (GDPR)
Under the General Data Protection Regulation (GDPR), you have the following rights:
Right to Information
Clear information about how we process your data (this policy)
Right of Access
Request a copy of all personal data we hold about you
Right to Rectification
Correct inaccurate or incomplete personal data
Right to Erasure ("Right to be Forgotten")
Request deletion of your personal data in certain circumstances
Right to Restrict Processing
Limit how we process your data in certain situations
Right to Data Portability
Receive your data in a portable format or transfer it to another service
Right to Object
Object to processing based on legitimate interests or for marketing purposes
Right to Withdraw Consent
Withdraw consent for processing at any time (where processing is based on consent)
How to Exercise Your Rights
Email us at privacy@peepgame.online or use ourPrivacy Request Form. We will respond within 30 days (extended to 60 days for complex requests).
7. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
π CCPA Coverage
These rights apply to California residents. Some rights may be limited based on legal exceptions or business purposes.
π Right to Know
Request information about:
- β’ Categories of personal information collected
- β’ Sources of personal information
- β’ Business purposes for collection
- β’ Categories of third parties we share data with
- β’ Specific pieces of personal information collected
ποΈ Right to Delete
Request deletion of personal information we collected from you (subject to legal exceptions)
π« Right to Opt-Out
Opt-out of the sale or sharing of personal information for targeted advertising
Note: We do not sell personal information for monetary consideration.
βοΈ Right to Non-Discrimination
We will not discriminate against you for exercising your CCPA rights
π Right to Correct
Request correction of inaccurate personal information
π Right to Limit
Limit use and disclosure of sensitive personal information
CCPA Data Sharing Disclosure
Categories of Personal Information Collected (Last 12 Months):
- β’ Identifiers (email, IP address)
- β’ Internet activity (browsing behavior, page views)
- β’ Geolocation data (city/country level)
- β’ Inferences (preferences, behavior predictions)
Business Purposes for Collection:
- β’ Service operation and improvement
- β’ Security and fraud prevention
- β’ Customer support
- β’ Analytics and research
Submit CCPA Requests
California residents can submit requests via:
- β’ Email: ccpa@peepgame.online
- β’ Phone: Available upon request
- β’ Online Form: CCPA Request Form
Response time: 45 days (extendable to 90 days with notice)
8. Information Sharing and Disclosure
We do not sell personal information. We may share your information in the following limited circumstances:
β Service Providers
- β’ Cloud hosting (Vercel, Supabase)
- β’ Analytics (Google Analytics)
- β’ CDN services (Cloudflare)
- β’ Payment processors (when applicable)
All bound by data processing agreements
βοΈ Legal Requirements
- β’ Court orders and subpoenas
- β’ Law enforcement requests
- β’ Legal dispute resolution
- β’ Regulatory compliance
Only when legally required
π’ Business Transfers
- β’ Merger or acquisition
- β’ Asset sale
- β’ Bankruptcy proceedings
- β’ Corporate restructuring
With advance notice to users
π‘οΈ Safety & Security
- β’ Prevent fraud or illegal activity
- β’ Protect user safety
- β’ Enforce terms of service
- β’ Protect our rights
Legitimate interests only
9. International Data Transfers
Your personal data may be processed in countries other than your own. We ensure appropriate safeguards are in place:
π Transfer Safeguards
- β’ EU Standard Contractual Clauses (SCCs)
- β’ Adequacy decisions (for certain countries)
- β’ Privacy Shield successor mechanisms
- β’ Binding Corporate Rules (BCRs) where applicable
Primary Data Locations:
- European Union: Primary data storage and processing
- United States: Analytics and advertising services (Google, with SCCs)
- South Africa: Local data processing and business operations
10. Data Security
We implement industry-standard security measures to protect your personal information:
π Technical Safeguards
- β’ TLS/SSL encryption in transit
- β’ AES-256 encryption at rest
- β’ Secure database configurations
- β’ Regular security updates
- β’ Access controls and authentication
π₯ Organizational Measures
- β’ Employee privacy training
- β’ Need-to-know access principles
- β’ Regular security audits
- β’ Incident response procedures
- β’ Data minimization practices
β οΈ Data Breach Notification
In the event of a data breach that affects your personal information, we will notify you within 72 hours via email and provide details about the incident, affected data, and steps we're taking to address it.
11. Children's Privacy
π Our service is not intended for children under 13 years of age.
We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately at privacy@peepgame.online.
12. Changes to This Policy
We may update this privacy policy from time to time to reflect changes in our practices, services, or legal requirements.
π’ How We Notify You
- β’ Minor Changes: Updated policy posted with new "Last Updated" date
- β’ Material Changes: Email notification + prominent site notice for 30 days
- β’ Legal Requirement Changes: Immediate implementation with post-facto notice
Continued use after changes constitutes acceptance of the updated policy.
13. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
π’ Business Address
MITHERAPYSPACE (PTY) LTD
Registration Number: 2021/981208/07
Gauteng, Johannesburg, South Africa
For postal correspondence: contact@peepgame.online
π Quick Actions
14. Supervisory Authorities
You have the right to lodge a complaint with data protection authorities:
πΏπ¦ South Africa
Information Regulator South Africa
Website: inforegulator.org.za
Email: complaints@inforegulator.org.za