Back to Legal

Privacy Policy

Effective Date: December 1, 2024 | Last Updated: December 4, 2024

1. Introduction

Welcome to Gegamo Team ("Company," "we," "us," or "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use any of our services, websites, applications, and platforms (collectively, the "Services").

This Privacy Policy applies to ALL Gegamo Team services, including but not limited to: Fefs, Vyntra, Gegamo Mail, Gegamo Memes, Gegamo Workspace, Chat, Support, VPN, Discord, Flare External, Flare AI, Woof, Instance, Breath, Gegamo AI, and any future services we may launch.

By accessing or using our Services, you agree to this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our Services.

Important Notice

Gegamo Team is a security-focused company. We take privacy and data protection extremely seriously. Violations of this policy may result in immediate account termination and potential legal action.

2. Information We Collect

2.1 Personal Information

We may collect the following personal information that you voluntarily provide:

  • Full name and username
  • Email address
  • Password (encrypted and hashed using industry-standard algorithms)
  • Profile information and avatars
  • Payment information (processed securely through third-party providers)
  • Phone number (if provided for two-factor authentication)
  • Billing address and company information (for business accounts)

2.2 Automatically Collected Information

When you access our Services, we automatically collect:

  • Device Information: Device type, operating system, browser type and version, device identifiers, screen resolution
  • Log Data: IP address, access times, pages viewed, time spent on pages, click patterns, navigation paths
  • Location Data: Approximate geographic location based on IP address, timezone information
  • Network Information: Internet service provider, connection type, network status
  • Session Data: Session duration, session identifiers, referral URLs, exit pages
  • Performance Data: Page load times, errors encountered, crash reports

2.3 Security and Monitoring Data

For security purposes, we extensively log and monitor:

  • Authentication attempts (successful and failed)
  • Account access patterns and anomalies
  • API requests and responses
  • File uploads, downloads, and modifications
  • Chat messages metadata (for abuse prevention)
  • VPN connection logs (connection times, bandwidth usage, server locations)
  • Suspicious activity indicators
  • Security events and potential threats

2.4 Cookies and Tracking Technologies

We use various tracking technologies including:

  • Essential Cookies: Required for basic functionality and security
  • Analytics Cookies: Help us understand how users interact with our Services
  • Preference Cookies: Remember your settings and preferences
  • Session Cookies: Maintain your logged-in state
  • Local Storage: Store application data locally on your device

2.5 Third-Party Information

We may receive information about you from third parties, including:

  • Social media platforms (if you link accounts)
  • Authentication providers
  • Analytics services
  • Payment processors
  • Fraud prevention services

3. How We Use Your Information

3.1 Service Provision

  • Provide, maintain, and improve our Services
  • Process transactions and send related information
  • Create and manage your accounts
  • Respond to your comments, questions, and support requests
  • Personalize your experience across our platforms

3.2 Security and Protection

  • Detect, investigate, and prevent fraudulent transactions and unauthorized access
  • Monitor for terms of service violations
  • Protect against malicious, deceptive, or illegal activity
  • Enforce our Terms of Service and other policies
  • Maintain system integrity and security
  • Investigate security incidents and breaches

3.3 Analytics and Improvement

  • Analyze usage patterns and trends
  • Measure the effectiveness of our Services
  • Develop new products, services, and features
  • Conduct research and analysis
  • Generate aggregated, anonymized statistics

3.4 Communications

  • Send administrative information (updates, security alerts, support messages)
  • Notify you about changes to our Services or policies
  • Send promotional communications (with your consent)
  • Respond to legal requests and prevent harm

3.5 Legal Compliance

  • Comply with applicable laws and regulations
  • Respond to lawful requests from public authorities
  • Protect our legal rights and interests
  • Participate in legal proceedings when necessary

4. Data Sharing and Disclosure

We may share your information in the following circumstances:

4.1 Service Providers

We share data with trusted third-party service providers who assist us in operating our Services, including:

  • Cloud hosting providers (Vercel, AWS, etc.)
  • Database services (Supabase)
  • Payment processors
  • Analytics providers
  • Email service providers
  • Customer support platforms

4.2 Legal Requirements

We may disclose your information if required to do so by law or in response to:

  • Court orders, subpoenas, or other legal processes
  • Government or regulatory requests
  • Law enforcement investigations
  • National security requirements

4.3 Protection of Rights

We may share information to:

  • Enforce our Terms of Service
  • Protect our rights, property, or safety
  • Protect the rights, property, or safety of our users or others
  • Investigate fraud or security issues

4.4 Business Transfers

In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

4.5 With Your Consent

We may share your information for other purposes with your explicit consent.

5. Data Retention

We retain your information for as long as necessary to:

  • Provide our Services to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements
  • Maintain security and prevent fraud

Specific retention periods:

  • Account Data: Retained for the lifetime of your account plus 2 years after deletion
  • Security Logs: Retained for 7 years for legal and compliance purposes
  • Transaction Records: Retained for 7 years as required by law
  • Analytics Data: Retained for 3 years in aggregated form
  • Support Communications: Retained for 5 years
  • VPN Logs: Minimal connection logs retained for 90 days for security purposes

6. Data Security

We implement comprehensive security measures to protect your information:

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Strict role-based access controls for all systems
  • Authentication: Multi-factor authentication available for all accounts
  • Monitoring: 24/7 security monitoring and intrusion detection
  • Auditing: Regular security audits and penetration testing
  • Incident Response: Documented procedures for security incidents
  • Employee Training: Regular security awareness training for all staff
  • Secure Development: Security-first development practices and code review

While we implement industry-leading security measures, no system is 100% secure. We encourage you to use strong passwords and enable two-factor authentication on your accounts.

7. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data (subject to legal requirements)
  • Portability: Request your data in a portable format
  • Objection: Object to certain processing of your data
  • Restriction: Request restriction of processing
  • Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at support@gegamo.xyz. We will respond to your request within 30 days. For faster responses, visit support.gegamo.xyz.

8. Children's Privacy

Our Services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete such information immediately. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses and adequacy decisions where applicable.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For significant changes, we may provide additional notice such as an email notification. Your continued use of our Services after such modifications constitutes acceptance of the updated Privacy Policy.

11. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us:

Back to Legal Information