We take your privacy seriously. This policy explains what data we collect, why we collect it, and your rights. We do not sell your personal data to third parties.
VirtuAce is a social casino entertainment platform operated by its founder. For privacy enquiries, contact us at: [email protected]
For the purposes of GDPR, we act as the data controller for information you provide to us directly.
| Data | Purpose | Basis |
|---|---|---|
| Email address | Account creation, login, communications | Contract |
| Username | Display name, leaderboards | Contract |
| Password (hashed) | Authentication — never stored in plain text | Contract |
| Data | Purpose | Basis |
|---|---|---|
| Game session history | Profile stats, session history display | Legitimate interest |
| ACE chip balance & transactions | Game economy, purchase delivery | Contract |
| Prestige level & badges | Progression system | Contract |
| Prediction market bets | Market settlement, portfolio display | Contract |
| Stake tier & settings | Game configuration, personalisation | Contract |
We do not store your payment card details. All payment processing is handled by Stripe, Inc. We receive only a payment confirmation and the amount. Stripe is a PCI-DSS Level 1 certified processor.
See Stripe's Privacy Policy for how they handle your payment data.
| Data | Purpose | Basis |
|---|---|---|
| IP address | Security, fraud prevention (via Firebase) | Legitimate interest |
| Browser / device type | Compatibility (via Firebase) | Legitimate interest |
| Usage timestamps | Last active, session tracking | Legitimate interest |
If you choose to delete your account, we ask for an optional reason. This is stored anonymously to help us improve the platform. Your account data is deleted immediately upon confirmation.
We do not use your data for advertising, profiling for third parties, or sell it in any form.
| Service | Purpose | Privacy Policy |
|---|---|---|
| Firebase (Google) | Authentication, database, hosting | firebase.google.com/support/privacy |
| Stripe | Payment processing | stripe.com/privacy |
| Google Fonts | Typography (loaded from Google CDN) | policies.google.com/privacy |
These services may process data outside the EU/EEA. Firebase and Stripe provide appropriate safeguards under GDPR (Standard Contractual Clauses).
If you are in the EU/EEA or Switzerland, you have the following rights:
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
We use browser localStorage (not traditional cookies) to store:
We do not use third-party tracking or advertising cookies.
This Service is strictly for users aged 18 and over. We do not knowingly collect data from children. If you believe a child has created an account, contact us immediately and we will delete it.
We implement appropriate technical and organisational measures to protect your data, including encrypted transmission (HTTPS), hashed passwords via Firebase Authentication, and restricted database access rules. However, no system is 100% secure and we cannot guarantee absolute security.
We may update this Privacy Policy from time to time. We will notify you of material changes via the platform. Continued use of the Service after changes take effect constitutes acceptance of the revised policy.
Privacy questions: [email protected]
If you are unsatisfied with our response, you have the right to lodge a complaint with your national data protection authority. In Switzerland: Federal Data Protection and Information Commissioner (FDPIC).