Privacy Policy
GamersGate respects your privacy and is committed to protecting your personal data.
This Privacy Policy explains how we collect, use, and process personal data when you visit our website and use our services, and informs you about your rights under applicable data protection laws, including the GDPR.
You can browse certain parts of the GamersGate website without providing personal data. However, when you create an account, place an order, or subscribe to communications, we may process personal data as necessary to provide those services, fulfil contractual obligations, comply with legal requirements, or pursue legitimate business interests.
Where required, we will ask for your consent before processing your personal data, for example in relation to marketing communications or non-essential cookies.
Last updated: 24 March 2026
Our services are not directed to children under the age of 16, and we do not knowingly collect personal data from children under 16. If you believe that a child has provided us with personal data, please contact us so that we can take appropriate action.
General Information
GamersGate EMEA SL, Avenida Juan Sebastián Elcano 24, 29017 Málaga, Spain, is the data controller responsible for the processing of personal data described in this Privacy Policy. You can contact us regarding privacy matters at [email protected].
Supervisory Authority
If you believe that the processing of your personal data infringes applicable data protection law, you have the right to lodge a complaint with a supervisory authority, in particular in the EU/EEA Member State of your habitual residence, place of work, or place of the alleged infringement.
For users in Spain, the competent supervisory authority is the Agencia Española de Protección de Datos (AEPD), C/ Jorge Juan, 6, 28001 Madrid, Spain. Website: https://www.aepd.es/. Complaints can be submitted via the AEPD electronic office: https://sedeaepd.gob.es/sede-electronica-web/.
Privacy Contact
For any questions or requests regarding the processing of your personal data, you can contact us at [email protected].
General Data Collection
When you visit and use GamersGate services, we automatically collect certain technical data necessary to ensure the proper functioning, security, and performance of our website.
This may include your IP address, browser type and version, operating system, referring URL, pages visited, and timestamps.
We process this data for the purposes of ensuring website security, preventing fraud and abuse, maintaining system stability, and improving the functionality of our services. The legal basis for this processing is our legitimate interest (Article 6(1)(f) GDPR).
We may apply automated rules to identify transactions that require additional verification. Such transactions may be subject to manual review by our team before any action is taken. We may analyse patterns of activity and interaction signals where strictly necessary for fraud prevention and security purposes.
Technical log data is generally retained for a short period. However, certain data may be retained for longer periods where necessary for security, fraud prevention, system integrity, or the establishment, exercise, or defence of legal claims.
Where we are legally required to do so, we may disclose relevant data to competent authorities.
Content Delivery Network Cloudflare
Service partner: Cloudflare, Inc.
Description: Content delivery network (CDN) and web application firewall (WAF)
We use Cloudflare to ensure the security and performance of our services. Cloudflare processes certain technical data, such as IP addresses and request information, to provide content delivery and protect our services from malicious activity.
Legal basis: Legitimate interests (Article 6(1)(f) GDPR), in particular to ensure the security, stability, and performance of our services.
More information: For general information about how Cloudflare processes personal data, please refer to their privacy policy: https://www.cloudflare.com/privacypolicy/
For information about international data transfers, please refer to the section "International Data Transfers" below.
Support contact form
If you contact us via our support form (https://gamersgate.es/support), we will process the personal data you provide in order to handle your request.
This may include your name, email address, and any other information you choose to provide. In certain cases, we may request additional information to verify your identity or to resolve your request.
The legal basis for this processing is the performance of a contract (Article 6(1)(b) GDPR) or, where applicable, our legitimate interest (Article 6(1)(f) GDPR) in providing effective customer support, ensuring account security, preventing fraud, and resolving disputes.
Please do not submit payment card details or other sensitive information via the support form.
User reviews
Registered users may submit reviews of purchased products. When you publish a review, we process the information you provide, such as your username, review content, and associated account data necessary to display and manage the review.
Reviews are publicly visible and may be accessible to other users.
The legal basis for this processing is the performance of a contract (Article 6(1)(b) GDPR) and our legitimate interest (Article 6(1)(f) GDPR) in operating a transparent review system, preventing abuse, resolving disputes, and maintaining the integrity of our platform.
If your account is deleted or your personal data is otherwise anonymised or depersonalised, your reviews may remain visible in anonymised form.
Reviews are stored for as long as necessary to maintain the integrity of our services and comply with legal obligations.
General information about cookies
We use cookies and similar technologies to ensure the proper functioning of our services, improve user experience, and analyse usage.
Some cookies are strictly necessary for the operation of the website and do not require your consent. Other cookies, including those used for analytics, marketing, or affiliate tracking, are only used with your consent.
You can manage your cookie preferences at any time through our cookie consent tool. For more detailed information about the cookies we use, their purposes, and how to control them, please refer to our Cookie Policy.
Cookies on GamersGate services
We use different categories of cookies on our services, including strictly necessary cookies required for the operation of the website, as well as optional cookies for analytics, marketing, and affiliate tracking.
Strictly necessary cookies are always active as they are essential for the functioning of the service. All other cookies are only used if you provide your consent.
You can accept, reject, or customise your cookie preferences at any time through our cookie consent tool. For detailed information about the specific cookies we use and their categories, please refer to our Cookie Policy.
We use analytics tools hosted on our own infrastructure to understand how our website is used and to improve our services. The data is processed in a pseudonymised form and is not intended to directly identify individual users.
In limited and strictly necessary cases, certain analytics data may be associated with transaction-related identifiers (such as order reference) for specific operational purposes, including fraud prevention, customer support, and troubleshooting. This processing is limited in scope, does not involve profiling for marketing purposes, and is carried out in a proportionate manner. This processing does not involve behavioural profiling or automated decision-making.
In some cases, we analyse aggregated interaction data, such as how users navigate and interact with pages, in order to improve usability and optimise user experience. This analysis is performed in a pseudonymised and aggregated form and is not intended to identify individual users.
We use limited, first-party analytics tools hosted on our own infrastructure. Where such analytics relies on strictly necessary technologies, it is carried out on the basis of our legitimate interest.
Access to analytics data is restricted and limited to authorised personnel for specific operational purposes.
Where additional technologies are used, we will request your consent where required by applicable law.
Period of storage of your personal data
We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by applicable law.
Retention periods may vary depending on the type of data and the purpose of processing. For example, some technical data is retained only for a short period, while account, transaction, fraud prevention, and legal compliance data may be retained for longer where necessary.
When personal data is no longer required, we delete it or anonymise it, unless continued retention is necessary to comply with legal obligations or to establish, exercise, or defend legal claims.
Your rights as a data subject
You have the following rights in relation to your personal data:
- Right of access – to obtain confirmation as to whether we process your personal data and to request access to such data.
- Right to rectification – to request correction of inaccurate or incomplete personal data.
- Right to erasure – to request deletion of your personal data where applicable.
- Right to restriction of processing – to request that we limit the processing of your personal data in certain circumstances.
- Right to data portability – to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another controller where technically feasible.
- Right to object – to object to processing based on legitimate interests, including direct marketing.
- Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.
These rights may be subject to certain conditions and limitations under applicable data protection laws.
You also have the right to lodge a complaint with a supervisory authority.
Where processing is based on legitimate interests, we have assessed that such interests are not overridden by your fundamental rights and freedoms, taking into account the nature of the data, the context of processing, and your reasonable expectations.
Where processing is based on legitimate interests, we have carried out internal assessments (Legitimate Interest Assessments) to ensure that such interests are not overridden by your rights and freedoms.
To exercise your rights, please contact us at [email protected].
Additional information for UK users
We provide our services to users in the United Kingdom in accordance with the UK GDPR.
Where our services are used by individuals under the age of 18, we take appropriate measures to ensure a high level of privacy protection, taking into account applicable regulatory guidance, including the UK Age Appropriate Design Code.
Users can contact us via our Help Center or at [email protected] to report concerns or request assistance.
International transfers of personal data involving UK users are carried out in accordance with applicable data protection laws and appropriate safeguards.
Accessibility and the European Accessibility Act (EAA)
We aim to make our services accessible and usable for all users. We are working to improve the accessibility of our website and key user communications, taking into account applicable accessibility requirements, including the European Accessibility Act.
If you require this Privacy Policy or other key information in an alternative format, please contact us at [email protected].
Data protection provisions with service partners on GamersGate services
We use various service partners to support the operation of our services, including payment providers, infrastructure providers, analytics tools, and other third-party services.
Personal data may be shared with these service partners where necessary to provide our services, process transactions, ensure security, or comply with legal obligations.
The legal basis for such processing depends on the specific purpose and may include the performance of a contract, compliance with legal obligations, or our legitimate interests.
Payment processing
We use third-party payment service providers to process payments made through our services.
When you choose a payment method, we share the information necessary to complete the transaction with the respective payment provider. This may include information required to process the payment, perform authentication, and prevent fraudulent transactions.
Legal basis: Performance of a contract (Article 6(1)(b) GDPR)
Payment service providers process personal data as independent data controllers in accordance with their own privacy policies.
We carefully select payment providers and require them to implement appropriate technical and organisational measures to protect personal data.
For information about international data transfers, please refer to the section "International Data Transfers" below.
Affiliate programmes
We participate in affiliate marketing programmes, which allow third-party partners to promote our services and receive a commission for certain user actions, such as purchases.
In this context, certain transaction-related information may be shared with affiliate partners to attribute actions and calculate commissions. This may include limited transaction-related identifiers (such as order reference and purchase value) necessary to attribute transactions and calculate commissions. No direct contact details (such as email address) are shared with affiliate partners. The data shared is limited to what is strictly necessary for attribution and commission calculation.
Legal basis: Legitimate interests (Article 6(1)(f) GDPR), in particular to operate and manage our affiliate programmes.
Product fulfilment
To provide digital products and complete transactions, we may share certain personal data with third-party partners involved in product fulfilment.
This may include contact details (such as email address), transaction-related identifiers (such as order reference and purchase details), and technical data (such as IP address and device information) necessary to process and deliver the purchased product, where strictly necessary for delivery and security purposes.
Legal basis: Performance of a contract (Article 6(1)(b) GDPR)
Such partners process personal data in accordance with applicable data protection laws and their own privacy policies.
Transactional emails
We use third-party service providers to send transactional emails related to your account and purchases, such as order confirmations, account notifications, and security-related messages.
In this context, your contact details and information necessary to deliver such communications may be processed.
Legal basis: Performance of a contract (Article 6(1)(b) GDPR)
Integration of Google reCAPTCHA
Service partner: Google
Description: CAPTCHA and anti-abuse verification service
We use Google reCAPTCHA to protect our services from spam, abuse, and automated misuse. In connection with this service, certain technical data may be processed, such as IP address and interaction data necessary to perform the verification.
Legal basis: Legitimate interests (Article 6(1)(f) GDPR), in particular to protect our services and users from spam, abuse, and fraudulent or automated activity.
More information: For general information about how Google processes personal data, please refer to its privacy policy: https://policies.google.com/privacy
For information about international data transfers, please refer to the section "International Data Transfers" below.
Integration of Moosend
Service partner: Moosend
Description: Email marketing service provider
If you subscribe to our newsletter, we will process your personal data using Moosend in order to send you marketing communications.
Legal basis: Consent (Article 6(1)(a) GDPR)
You can withdraw your consent at any time by using the unsubscribe link included in each newsletter or by contacting us.
More information: For general information about how Moosend processes personal data, please refer to its privacy policy: https://moosend.com/trust/privacy-policy/
Integration of Cookiebot
Service partner: Cookiebot (Usercentrics)
Description: Consent management platform (CMP)
We use Cookiebot to manage user consent for cookies and similar technologies. Cookiebot helps us record and respect your preferences regarding the use of cookies on our website.
In this context, information related to your consent choices and certain technical data may be processed.
Legal basis: Legal obligation (Article 6(1)(c) GDPR), in particular to comply with applicable data protection and ePrivacy requirements.
More information: For general information about how Cookiebot processes personal data, please refer to its privacy policy: https://www.cookiebot.com/en/privacy-policy/
Integration of Trustpilot
Service partner: Trustpilot
Description: Review collection and feedback platform
We use Trustpilot to collect and display customer reviews about our services. In certain cases, we may invite users to provide feedback about their experience.
In this context, we may share certain information, such as contact details (email address) and transaction-related information (such as order reference and purchase details), to enable Trustpilot to send review invitations and associate reviews with relevant transactions.
Legal basis: Legitimate interests (Article 6(1)(f) GDPR), in particular to collect feedback, improve our services, and maintain transparency about customer experiences.
Trustpilot acts as an independent data controller for the processing of personal data related to its platform.
More information: For general information about how Trustpilot processes personal data, please refer to its privacy policy: https://legal.trustpilot.com/for-reviewers/end-user-privacy-terms
For information about international data transfers, please refer to the section "International Data Transfers" below.
International Data Transfers
Where personal data is transferred outside the European Economic Area (EEA), such transfers are carried out in accordance with applicable data protection laws including, where applicable, the use of recognised transfer mechanisms such as Standard Contractual Clauses or equivalent safeguards. We ensure that appropriate safeguards are in place to protect personal data, as required under GDPR.