This Privacy and Personal Data Protection Policy sets out the terms for the processing of personal data of Users, as well as the rights they can exercise, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council - General Data Protection Regulation (GDPR) - and other applicable national privacy and data protection legislation, particularly Law No. 58/2019, of August 8, which ensures the implementation of that Regulation in the national legal order.       GDPR
      National Law
The purpose of this Policy is to inform Users transparently about the specific, explicit, and legitimate purposes for which their personal data are collected and processed, as well as the lawful basis for the necessary processing.

To facilitate the understanding of this Policy, the following definitions are used:
      Personal Data Processing: Any operation or set of operations performed on personal data or sets of personal data, by automated or non-automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or any other form of making available, comparison or interconnection, restriction, erasure, or destruction.
      Data Controller: A natural or legal person who determines the purposes and means of the processing of personal data.
      Processor: A natural or legal person who processes personal data on behalf of the data controller in the context of providing services.
      Supervisory Authority: An independent public authority which, in Portugal, is the Comissão Nacional de Proteção de Dados (CNPD), responsible for overseeing compliance with data protection laws.
      Cookies: Computer files that contain a sequence of numbers and letters that allow the unique identification of a user’s internet access device. They may also contain other information such as user preferences for a particular site. Cookies are downloaded through the browser to the access device (computer, mobile phone, tablet, etc.) when accessing certain sites.

Personal Data refers to any information relating to an identified or identifiable natural person (the "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person. In the course of gueeto's activities, the following main categories of personal data are processed:

Personal data is processed for specific, explicit, and legitimate purposes for which it was collected, and it cannot be further processed in a manner incompatible with those purposes. Data subjects are guaranteed their respective rights to information.
1 - Implementation of Game Features and Events: gueeto processes the personal data necessary for implementing the functionalities of player participation in events and the online components of the game. Examples: participation in competitive events against other players and/or alignment with interactive streams; player identification; winner identification; prize allocation.
2 - Legal Obligations: gueeto processes personal data necessary to comply with various legal obligations – national and European – to which it is subject.
3 - Legitimate Interests: gueeto processes personal data necessary to safeguard its legitimate interests or those of third parties.
4 - Consent: gueeto may process personal data when it has obtained the prior, free, explicit, and informed consent of the data subject.

In its data processing activities, gueeto adheres to the principles of lawfulness, fairness, and transparency; purpose limitation; data minimization; accuracy; storage limitation; integrity and confidentiality; and accountability.

gueeto may need to share Users' personal data to comply with legal obligations and/or judicial orders, particularly under the legal duties of cooperation with public institutions and authorities.

As a data subject, you are entitled to the following rights:
      Right of Access: The right to access the information we hold about you and obtain information on how we process it.
      Right to Rectification: The right to request the correction of your data when it is incorrect or outdated.
      Right to Erasure: The right to request the deletion (or “right to be forgotten”) of your personal data when it is no longer necessary for the purposes for which it was collected.
      Right to Object: The right to object to the processing of your data, specifying your reasons, when the processing is based on the legitimate interests of gueeto or a third party. However, gueeto may continue processing the data if we demonstrate compelling legitimate reasons that override your interests, rights, and freedoms, or for the establishment, exercise, or defense of a legal claim. You also have the right to object to the processing of your data for direct marketing purposes without justification.
      Right to Data Portability: The right to receive your personal data in a structured, commonly used, and machine-readable format and to request its transmission to third parties.
      Right to Restriction of Processing: The right to request the restriction of the processing of your personal data in the following situations:
1- When you contest the accuracy of your personal data, during a period that allows gueeto to verify its accuracy;
2- If the processing is unlawful and you oppose the erasure of the data, requesting instead the restriction of its use;
3- When gueeto no longer needs your personal data for processing, but you require it for the establishment, exercise, or defense of a legal claim;
4- When you have objected to the processing of your data and pending verification of whether our legitimate interests override your own.

Users can exercise the above-mentioned rights by submitting a request via the email address: [email protected].

A gueeto conserva os dados pessoais pelo período de tempo necessário e enquanto subsistirem as legitimas finalidades para as quais os dados são tratados, no cumprimento de obrigações legais, regulamentares e contratuais a que se encontra sujeita.

In carrying out its activities, gueeto may engage third parties - Subcontractors - to provide certain services, which may involve these third parties accessing personal data of data subjects. gueeto ensures that, in these circumstances, appropriate technical and organizational measures are implemented to ensure that the subcontracted entities meet the applicable legal requirements and provide adequate guarantees regarding data protection. Thus, any Subcontractor of gueeto will process personal data of Users on behalf of and under the instructions of gueeto, and strictly in accordance with the documented instructions provided by gueeto.

gueeto ensures appropriate levels of security and protection of the data subjects' personal data. To this end, it adopts various technical and organizational security measures to protect personal data against loss, dissemination, alteration, unauthorized processing or access, as well as any other form of unlawful processing.

The transfer of Users' personal data outside the European Economic Area only occurs with the explicit authorization of the data subject, or when necessary to comply with orders or requests directed to gueeto by legal requirement. If gueeto uses financial service providers from countries outside the European Economic Area, it will only use entities that comply with legal obligations regarding data protection.

gueeto has appointed a Data Protection Officer, who can be contacted regarding personal data protection issues at the email address [email protected].

gueeto does not use cookies; however, Hostinger, our Web Hosting partner, does. Therefore, it is important to read Hostinger's Cookie Policy.

gueeto may update or adjust this Privacy and Cookies Policy, and such changes will be duly publicized.