Back to Home

Privacy Policy

These Privacy Policy terms govern the use of the Website and Services provided by hellcase.com (hereinafter referred to as “Hellcase”, “we”, “our”, or “us”).

Hellcase is committed to respecting the privacy of visitors to its Website and users of its Services. We comply with applicable data protection laws, including the European Union General Data Protection Regulation (GDPR), to ensure appropriate protection of personal data.

We are dedicated to handling your personal data responsibly and securely. This Privacy Policy explains how we collect, use, process, disclose, and manage your personal data when you interact with our Website and Services. By accessing or using the Website and Services, you acknowledge and agree to the processing of your personal data in accordance with this Privacy Policy.

By registering or logging into the Website, you confirm your acceptance of this Privacy Policy and provide your consent for the processing of your personal data as described herein. If you do not agree with this Privacy Policy, you should not use the Website or Services.

SCOPE OF THE PRIVACY POLICY

This Privacy Policy applies to all services offered by Hellcase and covers all pages of the Website.

It also applies to any additional services developed or provided by Hellcase that reference or link to this Privacy Policy, unless otherwise stated.

TERMS AND DEFINITIONS

Personal data – any information relating to an identified or identifiable natural person.
Data subject – the individual whose personal data is being processed (referred to as “you” or “user”).
Processing – any operation or set of operations performed on personal data, whether automated or not.
Profiling – any form of automated processing of personal data used to evaluate or predict personal aspects of a natural person, including behavior, preferences, economic situation, health, location, or similar characteristics.
Controller – the natural or legal person who determines the purposes and means of processing personal data.
Processor – a natural or legal person who processes personal data on behalf of the controller.
Recipient – any natural or legal person, public authority, agency, or other body to whom personal data is disclosed, whether or not they are a third party.
Third party – any person or entity other than the data subject, controller, processor, or data protection authority, to whom personal data may be transferred.
Consent of the data subject (Consent) – any freely given, specific, informed, and unambiguous indication of the data subject’s wishes, by which they agree, through a statement or clear affirmative action (including registration or login), to the processing of personal data in accordance with this Privacy Policy.
Personal data breach – a security incident resulting in accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data.
Co-controller – two or more controllers jointly determining the purposes and means of processing personal data.
Data Protection Authority – a public authority responsible for monitoring and enforcing data protection laws.
Legal basis for processing – a lawful justification under applicable law permitting the processing of personal data.
Cookies – small text files stored on a user’s device that contain data used to enable functionality, improve user experience, and store preferences or activity information.
Website – the web platform accessible at https://hellcase.com/, operated by the controller.
Service – all current and future paid or free services offered by Hellcase through the Website, including updates, modifications, or additions.
Platform – the Website and Services collectively.
Social features – Hellcase-operated social media channels, including Facebook, X, YouTube, Instagram, Discord, TikTok, and Faceit.

PRINCIPLES RELATING TO PERSONAL DATA PROCESSING

We process personal data in a responsible manner and in compliance with applicable data protection legislation. The following principles guide our processing activities:

Lawfulness, fairness, and transparency

Personal data is processed in a lawful, fair, and transparent manner, in accordance with applicable data protection principles.

Purpose limitation

Personal data is collected for specific, explicit, and legitimate purposes and is not further processed in ways incompatible with those purposes.

Data minimization

We ensure that personal data collected is adequate, relevant, and limited to what is necessary for the intended processing purposes.

Accuracy

We take reasonable steps to ensure that personal data is accurate and kept up to date where necessary.

Integrity and confidentiality

Personal data is processed securely, ensuring protection against unauthorized or unlawful processing, accidental loss, destruction, or damage through appropriate technical and organizational measures.

WHAT PERSONAL DATA DOES HELCASE PROCESS?

Hellcase processes a variety of personal data in connection with providing Services through the Website. This information may include, but is not limited to, the categories listed below.

1. Categories of personal data collected

We may collect and process the following types of personal data:

Identity and profile data

First and last name
Date of birth
Country of residence
Registered address or actual place of residence
Profile information created or stored on the Website
Profile photographs or user images

Contact information

Email address

Information relating to social interactions on the Platform, including friends, followers, and subscriptions

Financial and payment data

Payment card details
Bank account information
Payment amounts
Payment methods used
Purchase history
Transaction records

Technical and device data

Device type
Unique device identifiers
IP address
Network and connection data
Internet service and connection characteristics
Browser information
Operating system version

Gaming and platform activity data

Steam64ID
Trade link
Login frequency
Achievements
Match statistics
Gameplay activity history on the Platform
Game playtime information
Participation in events, contests, tournaments, quizzes, and other in-game activities

Preferences and behavioral data

Gaming preferences and interests
Preferred item types when opening cases
User behavior patterns on the Platform

Additional data

Any other personal data that may be necessary to achieve the purposes described in this Privacy Policy and not prohibited under applicable law may also be processed.

2. Purposes of data collection and use

Personal data is processed for the following purposes:

To identify users, manage accounts, and ensure account security
To provide personalized services and improve user experience
To operate, maintain, and improve Website and Platform functionality
To analyze user behavior and optimize Services and content
To process payments and maintain financial and accounting records
To prevent fraud, abuse, and unauthorized activity and ensure Platform security
To enable social features and enhance user interaction within the Platform
To provide recommendations, personalized content, and tailored offers
To perform analytics for audience understanding and service improvement
To support marketing activities and improve targeting and relevance of advertising campaigns
To ensure compatibility across devices and analyze system usage and performance
To support case-opening features and item exchange functionality
To personalize gaming-related experiences and recommendations
To analyze gameplay behavior and improve gaming-related services
To facilitate item trading functionality, record transactions, and prevent fraudulent activity
To organize, manage, and evaluate participation in events, contests, tournaments, and similar activities
To detect technical issues, improve system stability, and support product development
To process and track financial transactions and provide users with purchase history
To handle user inquiries, support requests, and technical issues, and improve customer support services

3. Sources of personal data

We collect personal data from the following sources:

Information provided directly by you during registration or account setup
Data entered when completing profiles or using Platform features
Information submitted when making payments
Data collected through cookies and server logs
Data automatically transmitted by your device when using the Website or Services
Information provided when interacting with our official social media accounts
Data obtained from Steam and similar integrated third-party platforms
Transaction-related data linked to your account activity
Information provided through communication with our customer support team
Data received from payment service providers
Information obtained from third-party sources

4. Personal data obtained from third parties

We may receive personal data about you from third-party sources. These include business partners involved in joint services or marketing activities, as well as publicly accessible sources such as social networks and public databases.

Such information may be combined with data already held by us. This helps us maintain accurate records, improve service quality, and better understand user preferences and behavior.

We may use this combined data to enhance personalization, improve service relevance, and optimize marketing and advertising activities in accordance with user interests.

5. Legal basis for processing

The processing of personal data is based on one or more of the following legal grounds:

Your consent, given through registration or use of the Website and Services
The necessity to perform contractual obligations related to the Services
Our legitimate interests, provided these do not override your fundamental rights and freedoms
Compliance with applicable legal and regulatory obligations

The applicable legal basis is determined prior to processing. Personal data is not processed unless a valid legal basis exists under applicable law.

6. Retention of personal data

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, or for the period required by applicable laws and regulations.

We do not store personal data longer than is necessary or legally permitted under applicable legislation and this Privacy Policy.

Partnerships

We may share personal data with trusted third-party partners that assist us in operating, improving, or extending our Services. These may include payment processors, analytics providers, and other service providers that support Platform functionality.

Legal obligations

We may disclose personal data if required to do so by applicable law or in response to valid requests from courts, law enforcement authorities, regulatory agencies, or other governmental bodies.

Marketing and advertising

Personal data may be used for marketing and advertising purposes, including collaboration with advertising partners to deliver more relevant and targeted campaigns.

Advertising and marketing partners are selected at our discretion. Information about such partners may be provided upon request. We take reasonable steps to ensure that any partner receiving such data complies with applicable legal and regulatory requirements before data is shared.

ANALYTICS AND RESEARCH

We may process your personal data for analytical and research purposes. This includes studying user behavior, understanding usage patterns, and improving the functionality, performance, and quality of our Website and Services.

PAYMENT PROCESSING AND TRANSACTIONS

Personal data may be shared with third-party payment providers and financial institutions in order to process payments, complete transactions, and ensure proper handling of financial operations related to the Services.

INTERNATIONAL DATA TRANSFERS

As a general rule, personal data may be transferred to countries that the European Commission has determined provide an adequate level of protection for personal data, either on a general basis or within specific sectors.

We take all appropriate technical and organizational measures to ensure that personal data remains secure and confidential when transferred to third parties.

Before using our Website and Services, you are encouraged to carefully review this Privacy Policy in full.

Because our Services are provided globally and may rely on servers located in different regions, personal data may be processed outside the country in which the data subject resides. As a result, data protection laws and standards may vary between jurisdictions.

Regardless of the location of processing, we apply appropriate safeguards and comply with applicable data protection laws, including regulations of the European Union, Switzerland, and the United Kingdom.

The European Commission recognizes certain countries outside the European Economic Area (EEA) as providing an adequate level of protection for personal data, allowing lawful data transfers from EU/EEA member states, including Norway, Iceland, and Liechtenstein, to such jurisdictions.

The United Kingdom and Switzerland operate comparable adequacy frameworks for international data transfers.

We comply with all applicable legal requirements governing such transfers and ensure that adequacy standards are respected in practice.

By using our Website and/or Services, you agree to this Privacy Policy. Continued use of the Website and/or Services constitutes ongoing consent to the processing of your personal data as described herein.

HOW HELCASE PROTECTS PERSONAL DATA

Hellcase applies strict security and confidentiality standards to protect your personal data. We use a combination of technical, organizational, and administrative measures to ensure data protection across all systems.

Data encryption

All personal data transmitted through the Website is protected using modern encryption technologies designed to prevent unauthorized access or interception.

Server security

We maintain secure server infrastructure and implement protective measures intended to prevent unauthorized access to stored personal data.

Monitoring and detection systems

Our systems continuously monitor activity on the Website in order to detect suspicious, abnormal, or potentially malicious behavior and respond to security risks.

Employee training

Employees receive mandatory training in data protection and cybersecurity during onboarding to ensure responsible handling of personal data.

Legal compliance

We comply with all applicable data protection laws and regulations, including the General Data Protection Regulation (GDPR), as well as relevant regional legal frameworks.

Privacy policy transparency

Our Privacy Policy clearly explains what personal data is collected, how it is used, and how users may manage their data rights and preferences.

Access control

Access to personal data is strictly limited to employees who require it to perform their job duties. This access is granted on a need-to-know basis to minimize risk of unauthorized use.

Distributed data storage

We may store data across multiple databases and systems to increase resilience, improve reliability, and reduce the risk of data loss or system failure. This approach enhances overall data integrity and availability.

Third-party API integrations

We integrate with third-party services exclusively through official APIs to ensure secure and controlled data exchange. These standardized interfaces reduce security risks and support reliable communication between systems.

The use of unofficial, unauthorized, or non-standard integration methods is strictly prohibited for employees and contractors.

HOW HELCASE DELETES PERSONAL DATA

We follow a structured process to ensure that personal data is deleted securely and in compliance with applicable data protection laws. This process respects user rights and ensures proper handling of all deletion requests.

Identification

We first identify the specific personal data that is subject to deletion, ensuring accuracy and completeness of the request.

Verification

Each deletion request is reviewed and verified to confirm that it is valid and properly authorized by the user or required under applicable legal obligations.

Data removal

Once verified, the relevant personal data is removed from active systems, databases, and operational environments.

Permanent erasure

We ensure that deleted personal data is permanently erased from our storage systems so that it cannot be restored or accessed in the future.

Confirmation

After completion of the deletion process, we provide confirmation to the user or, where applicable, to a data protection authority, confirming that the data has been successfully removed.

TERMINATION OF PERSONAL DATA PROCESSING AND CONDITIONS OF EXCEPTION

Where personal data is processed on the basis of the data subject’s consent, and such consent is withdrawn, Hellcase will delete the relevant personal data without undue delay. This is carried out in accordance with applicable GDPR requirements, including rules governing procedures, timelines, obligations, and user rights, as well as this Privacy Policy.

2. Contractual necessity

Where processing is based on a contract between Hellcase and the data subject, or where processing is necessary to enter into a contract, and that contract is terminated or not concluded, the related personal data will be deleted promptly. This is done in line with GDPR requirements and the provisions of this Privacy Policy governing processing conditions and legal obligations.

3. Legal obligation

Where personal data is processed to comply with a legal obligation, such data will be deleted once the relevant legal requirement ceases to apply, in accordance with applicable GDPR rules and this Privacy Policy.

4. Vital interests

Where processing is based on the protection of the data subject’s vital interests, personal data will be removed once such interests no longer exist, in accordance with GDPR requirements and this Privacy Policy.

5. Legitimate interests

Where processing is based on Hellcase’s legitimate interests, and the data subject objects to such processing, the relevant personal data will be deleted following receipt and assessment of the objection, in accordance with GDPR requirements and this Privacy Policy.

EXCEPTIONS

The above rules may be subject to the following limitations:

1. Business continuity needs

Deletion timelines may be extended, but not beyond six (6) months, where immediate deletion would disrupt ongoing Services or the operation of the Website.

2. Legal or regulatory requirements

Retention may be extended where required by applicable law or binding governmental or regulatory orders. In such cases, data will be retained only for the period mandated.

3. Technical limitations

In certain cases, deletion may be technically impossible or disproportionately difficult. This may occur where removal would compromise system integrity or where data remains stored in backup systems. In such cases, data may be retained until technically feasible to delete.

4. Anonymization

Personal data may be further processed for internal purposes, including analytics or marketing, only where it has been fully anonymized after the retention period. Anonymization ensures removal of all direct and indirect identifiers so that the individual can no longer be identified.

RIGHTS OF DATA SUBJECTS

Hellcase is committed to ensuring that individuals whose personal data is processed can fully exercise their rights under applicable data protection laws. In accordance with legal requirements, you are entitled to the following rights:

1. Right to information

You have the right to obtain clear information about the personal data we hold about you at any time.

2. Right of access

You may request access to and obtain a copy of the personal data we process about you, provided that such request is reasonable and permitted under applicable law.

3. Right to rectification

We aim to ensure that personal data is accurate and up to date. If any data is incorrect or incomplete, you have the right to request correction.

4. Right to erasure (“right to be forgotten”)

You may request deletion or restriction of processing of your personal data where legally applicable. Each request will be assessed individually, and a decision will be made in accordance with applicable law.

5. Right to restriction of processing

You have the right to request limitation of how your personal data is processed. This applies to all entities involved in processing or receiving such data.

6. Right to data portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another controller without interference from us.

Where processing is based on your consent, you may withdraw it at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.

8. Right to object

Where processing is based on legal grounds other than consent, you may object to such processing or request its cessation, where legally permitted.

9. Automated decision-making and profiling

You have the right not to be subject to decisions based solely on automated processing, including profiling, where such decisions produce legal effects or similarly significant impacts on you.

10. Right to lodge a complaint

You have the right to file a complaint with the relevant supervisory authority if you believe your personal data is being processed unlawfully.

Overview

Please read this Cookie Policy carefully to understand how and why cookies are used on our Website, and what information may be collected when you access it.

This Cookie Policy applies exclusively to the Website operated by us. If you visit other websites, we recommend reviewing their respective cookie policies.

You may manage or disable cookies at any time through your browser settings.

Please note that refusing cookies will not affect the use of essential cookies, which are required for the proper functioning of the Website.

Instructions for managing cookies can typically be found in your browser’s help section.

Types of cookies used on our Website

We use cookies to improve your browsing experience, ensure proper Website functionality, and analyze usage. Cookies on our Website are grouped into the following categories:

Essential cookies

These cookies are required for the operation of the Website. They enable core functionality such as secure access to restricted areas and user authentication processes.

Performance and analytics cookies

These cookies collect information about how visitors use the Website, including frequently visited pages and error occurrences. The data is used to evaluate performance and improve Website functionality.

Functionality and preference cookies

These cookies store information about your preferences, such as language settings, currency selection, and interface customization, to provide a more personalized experience.

Security cookies

These cookies are used to enhance Website security by identifying and preventing potentially malicious or unauthorized activity.

Third-party cookies

We may use cookies provided by trusted third-party service providers to support Website functionality and improve our Services.

These cookies may be used for analytics purposes and to deliver content or services from external providers.

For example, we may use analytics services such as Google Analytics provided by Google LLC.

Google Analytics

We use Google Analytics, a web analytics service provided by Google LLC, to understand how users interact with our Website. Google Analytics uses cookies to collect and analyze usage data.

For more information about how Google processes data, please refer to Google’s Privacy Policy.

If you wish to opt out of Google Analytics tracking, you may use the opt-out tools provided by Google.

Data collected through cookies

Cookies and related tools may collect the following types of information:

IP address
Referrer information
Access timestamps
Browser type
User agent details

Purpose of processing

The information collected through cookies is used to:

Analyze Website usage and user behavior
Generate reports on Website activity
Improve Website performance and functionality
Support the development and delivery of related online services

Legal basis for processing

The processing of data collected via non-essential cookies is based on your consent.

Retention period

Cookie-related data is processed for as long as necessary to fulfill the purposes described in this Policy or for the period permitted under applicable data protection laws, including GDPR requirements.

You may withdraw your consent to cookie processing at any time in accordance with applicable data protection laws.

Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal.

Browser settings and limitations

You can disable cookies through your browser settings at any time.

Please note that disabling cookies may affect the proper functioning of certain features of the Website.

We may update this Cookie Policy from time to time to reflect changes in how cookies are used or to comply with legal requirements.

Any updates will be published on this page with a revised “last updated” date. We recommend reviewing this Policy regularly.

By using our Website, you acknowledge that you have read and understood this Cookie Policy and agree to its terms.

Continued use of the Website constitutes ongoing consent to the use of cookies as described in this Policy.

PRIVACY POLICY UPDATES

We reserve the right to amend this Privacy Policy at any time.

Any changes will be communicated by updating the Policy and/or through other appropriate communication channels.

You are responsible for reviewing the updated Policy. Continued use of the Website or Services after updates have been published constitutes acceptance of the revised version.

If you do not agree to the updated Privacy Policy, you must stop using the Website and Services.

APPLICABLE LAW

This Privacy Policy is designed to comply with applicable data protection laws, including the General Data Protection Regulation (GDPR) of the European Union.

CONFIRMATION OF ACCEPTANCE

By using our Website and/or Services, you confirm that you have previously accepted this Privacy Policy.

Your continued use of the Website and/or Services confirms your ongoing consent to the processing of your personal data in accordance with this Policy.

DATA CONTROLLER

The data controller responsible for processing personal data is hellcase.com.

Further information about the data controller is provided in the Terms of Use.