PRIVACY AND DATA PROTECTION POLICY
Effective Date: May 15, 2026 Platform: skinnerzone.com
1. STATUTORY RIGHTS AND USER EMPOWERMENT
● Your UK GDPR Privileges: Under current data protection legislation, you are legally empowered to demand access to your personal dossier, mandate the correction of inaccurate data, or request the total eradication of your profile from our active servers.
● Processing Interventions: You retain the right to restrict how your data is utilized, object to automated profiling, revoke marketing consent instantly, and request a machine-readable export of your data (Data Portability).
● Supervisory Escalation: If you believe your data privacy has been compromised by our operations, you have the absolute right to lodge a formal regulatory complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk.
● Execution Channel: To exercise any of the aforementioned rights, formal requests must be transmitted to our designated privacy team at info@skinnerzone.com.
2. DATA ACQUISITION AND CATEGORIZATION
● Biographical Data: Legal names, email coordinates, and verified billing addresses captured during account registration or checkout.
● Financial Footprints: Securely hashed tokens of payment methods, detailed order histories, invoice records, and delivery confirmations. (Full card PANs are never captured or stored by our infrastructure).
● Regulatory Compliance Assets: Identity cards, utility bills for residency proof, and birth dates extracted specifically to satisfy intense Anti-Money Laundering (AML) and Know Your Customer (KYC) audits mandated by our banking partners.
● Ecosystem Metadata: Your designated Steam ID, active Trade URLs, and internal tracking metrics regarding item transfers.
● Telemetry and Device Data: Background data aggregated during your session, including IP addresses, browser agents, OS configurations, and cookie identifiers.
3. PURPOSE AND LEGAL BASIS FOR PROCESSING
● Commercial Execution: We process Steam metadata and biographical data to fulfill our core contractual duty: ensuring you receive your purchased Rust skins rapidly and accurately.
● Fraud Eradication and AML: We rely on our “Legitimate Interest” and “Legal Obligation” to aggressively process compliance and telemetry data to detect financial anomalies, neutralize chargeback fraud, and satisfy global anti-terrorism financing laws.
● Platform Optimization: Technical footprints are analyzed to debug server errors, enhance UI/UX design, and monitor overall network stability.
● Statutory Reporting: Financial footprints are processed and archived to ensure total compliance with UK taxation laws and accounting standards.
4. DATA RETENTION FRAMEWORKS
● Accounting Mandates: To satisfy the strict reporting requirements of HMRC and other financial authorities, all ledgers detailing orders and payments are immutably archived for a duration of 6 years.
● Financial Crime Records: Documents submitted for KYC validation and AML screening are securely locked in our databases for a hard minimum of 5 years to ensure availability for potential regulatory audits.
● Digital Telemetry: Session cookies and analytical data are retained strictly for their predefined programmatic lifecycles or until you manually clear your browser cache.
● Support Interactions: Email correspondence is kept only as long as operationally necessary to resolve the open dispute or query.
5. DATA DISCLOSURE AND VENDOR SYNDICATION
● Banking and Risk Partners: To process your funds and secure the platform, data is heavily integrated with acquiring banks, authorized payment gateways (e.g., Stripe, PayPal), and specialized fraud-scoring vendors.
● Valve Integration: Specific transactional data points must inevitably be shared with the Steam network (Valve Corporation) to facilitate the actual transfer of the virtual assets.
● No Sale of Data: VELTRIX MM LTD operates under a rigid ethical mandate: we categorically do not sell, rent, or lease your personal information to third-party data brokers.
● International Data Relays: In instances where our financial partners route data outside the UK or the European Economic Area (EEA), we enforce stringent legal barricades, such as Standard Contractual Clauses (SCCs), to guarantee your privacy rights to travel with your data.
6. CORPORATE GOVERNANCE AND SECURITY
● Data Controller: The legal entity commanding the processing of your information is VELTRIX MM LTD, headquartered at 239 High Street Kensington, London, United Kingdom, W8 6SN, holding Company Registration Number 17189741.
● Algorithmic Safeguards: We employ enterprise-grade encryption and strict internal access controls. Should a transaction be declined by an automated fraud-prevention algorithm utilized by our payment partners, you have the statutory right to request a manual review by a human compliance officer.
● Policy Evolution: This document is continually refined to meet evolving legal standards. Modifications are published directly to this URL, and your continued utilization of the platform signifies your acceptance of the updated terms.