RollQuest — Privacy Policy
Effective Date: 1. November 2025
Data Controller: Filfil OÜ, Estonia
1. What We Collect
We collect:
- Account Data: email, username, password (encrypted).
- Payment Data: handled securely by Paddle.com (we never store your full card info).
- Usage Data: IP address, device info, browser type, and session logs.
- Support Data: messages you send us.
- Cookies: see our Cookie Policy.
2. How We Use Your Data
We use data to:
- Provide and maintain the RollQuest Service;
- Manage billing and subscriptions;
- Communicate about updates or promotions (only if you opt in);
- Improve the platform; and
- Comply with legal and accounting obligations.
3. Legal Basis under GDPR
We process data on these grounds:
- Contractual necessity (to provide your account and billing);
- Legitimate interest (security, analytics, service improvement);
- Consent (marketing and cookies);
- Legal obligation (record-keeping, compliance).
4. Data Sharing
We share limited data with trusted third-party processors:
- Paddle.com – payment processing
- Analytics tools – traffic and usage insights
- Hosting providers – platform operation
All partners comply with GDPR and process data only as instructed.
5. International Transfers
Data may be processed outside the EEA with appropriate safeguards (e.g., Standard Contractual Clauses).
6. Your Rights
You have the right to:
- Access, correct, or delete your data;
- Withdraw consent to marketing;
- Request a copy (data portability);
- Lodge a complaint with the Estonian Data Protection Inspectorate.
To exercise your rights, email contact@rollquest.io.
7. Data Retention and Security
We keep your data only as long as needed for its purpose or required by law.
We use appropriate technical and organisational measures to protect it.
8. Children's Privacy
RollQuest is not directed to children under 16. We do not knowingly collect their data.
9. Updates
We may update this Privacy Policy periodically. The current version will always be available on our website.