Privacy Policy

Effective Date: 03/04/2026

1. Overview

This Privacy Policy explains how DIGISKINS LTD (“Company”, “we”, “us”, or “our”) collects, uses, stores, shares, and otherwise processes personal data in connection with the website https://skinbix.com and the services available through it (together, the “Website”, “Platform”, or “Service”).

This Policy applies to personal data processed when users interact with the Platform, create or use an account, contact support, or where such processing is required for legal, compliance, operational, or security purposes.

By accessing or continuing to use the Service, the user confirms that they have reviewed and understood this Privacy Policy. If a user does not accept its terms, they must stop using the Website and related services.

2. Applicable Data Protection Framework

For the purposes of applicable privacy legislation, the Company acts as the data controller in relation to personal data processed through the Service.

This Policy is intended to comply with, where applicable:

the UK General Data Protection Regulation (UK GDPR);
the Data Protection Act 2018;
Regulation (EU) 2016/679 (EU GDPR) in respect of users located in the European Economic Area.

Unless otherwise stated, terms used in this Policy should be interpreted consistently with the meaning assigned to them under the above data protection laws.

3. Key Definitions

For the purpose of this Privacy Policy:

Personal Data means any information relating to an identified or identifiable natural person;
Processing means any operation or set of operations performed on personal data;
User means any individual who visits, accesses, registers on, or otherwise uses the Service;
Data Controller means the entity that determines why and how personal data is processed;
Data Processor means a third party that processes personal data on behalf of the Data Controller;
Payment Service Provider or PSP means an authorized third-party payment institution engaged to process payments;
Virtual Items means digital items associated with Counter-Strike 2 (CS2), which have no monetary value outside the Platform.

4. Company Information

The data controller responsible for the processing of personal data under this Policy is:

DIGISKINS LTD
Company Registration Number: 16883958
Registered Address: 167–169 Great Portland Street, Fifth Floor, London, United Kingdom, W1W 5PF
Email: info@skinbix.com
Phone: +44 7458 148289
Website: https://skinbix.com

The Company determines the purposes for which personal data is processed and the means by which such processing takes place.

Where third-party service providers are engaged, including hosting providers, analytics vendors, customer support systems, or payment providers, such parties process personal data only under appropriate legal arrangements and only to the extent required for the relevant services.

5. Age Requirement

The Service is intended exclusively for persons who are 18 years of age or older.

By using the Platform, the user confirms and represents that they are at least 18 years old and have full legal capacity to enter into binding arrangements.

We do not knowingly collect or retain personal data from individuals under the age of 18. If we become aware that such data has been submitted, we will take steps to delete it without undue delay.

6. Personal Data We May Collect

6.1 Information Provided by the User

We may collect data that the user provides directly while using the Service, including:

Steam ID and related Steam account information;
username and profile image or avatar;
email address;
messages, requests, or other information submitted to customer support.

6.2 Information Collected Automatically

When the Website is used, certain technical and usage-related data may be collected automatically, including:

IP address;
session data and session identifiers;
sign-in records and activity logs;
device characteristics;
browser and operating system details;
cookies and similar technologies.

6.3 Payment-Related Information

The Company does not collect, store, or directly process bank card details, wallet credentials, or similar payment instrument data.

Payments made in connection with the Service are handled by external licensed Payment Service Providers. We may, however, receive limited transaction-related details from such providers, such as:

transaction reference numbers or IDs;
payment confirmation status;
technical settlement information required for records, reconciliation, or compliance.

7. Why We Process Personal Data

We process personal data only where there is a legitimate and lawful reason to do so. Depending on the circumstances, personal data may be used for the following purposes:

providing access to the Platform and maintaining user accounts;
enabling authentication through Steam;
facilitating the purchase, sale, and exchange of CS2 virtual items;
coordinating payment-related operations through PSPs;
preventing fraud, abuse, and unauthorized access;
supporting platform security and internal risk controls;
meeting AML, CTF, regulatory, tax, and legal compliance obligations;
maintaining the technical functionality and integrity of the Service;
analyzing and improving features, performance, and user experience;
sending important operational or service-related notices;
establishing, exercising, or defending legal claims and protecting the Company’s legitimate interests.

8. Legal Grounds for Processing

Depending on the context, the Company relies on one or more of the following legal bases when processing personal data:

the user’s consent;
the necessity of processing for the performance of a contract or steps taken at the user’s request before entering into a contract;
compliance with a legal obligation to which the Company is subject;
the Company’s legitimate interests, provided those interests are not overridden by the user’s fundamental rights and freedoms.

9. Automated Checks and Monitoring

To preserve the security and reliability of the Platform, the Company may use automated tools, rules, or systems in connection with:

transaction monitoring;
identification of suspicious, irregular, or potentially fraudulent activity;
compliance-related screening and risk evaluation;
protection of the Website, users, and internal systems.

Such measures are used for security, compliance, and operational purposes. They are not intended to produce legally significant decisions affecting users, except where such processing is permitted or required under applicable law.

10. Cookies and Similar Technologies

The Website uses cookies and related technologies for operational, functional, analytical, and, where applicable, marketing purposes.

More detailed information about the categories of cookies used, the purposes for which they are used, and how users may manage cookie preferences is provided in our separate Cookie Policy.

11. Sharing of Personal Data

Personal data may be shared only where such disclosure is lawful, proportionate, and necessary for the operation of the Service or compliance with legal obligations.

Recipients may include:

licensed Payment Service Providers;
hosting, cloud, and IT infrastructure providers;
analytics, support, and technical service vendors;
legal, accounting, compliance, or audit advisers;
courts, law enforcement bodies, regulators, or other competent authorities, where disclosure is required by law or lawful request.

The Company does not sell personal data to third parties and does not disclose personal data for independent third-party marketing purposes.

12. Data Retention

We retain personal data only for as long as reasonably necessary for the purposes for which it was collected, including compliance, security, operational, legal, and record-keeping purposes.

Indicative retention periods are as follows:

Account Data — until deletion of the account;
Transaction Records — at least 5 years;
Security and Activity Logs — up to 2 years;
Support Correspondence — up to 3 years.

Where retention is no longer necessary, personal data is securely deleted, anonymized, or otherwise disposed of in accordance with applicable law and internal procedures.

13. User Rights

Subject to the laws applicable to the user, individuals may have the right to:

request access to their personal data;
request correction of inaccurate or incomplete data;
request deletion of personal data;
request restriction of processing;
receive personal data in a portable format where applicable;
object to certain types of processing;
withdraw consent where processing is based on consent.

Any privacy-related request may be sent to:

Email: info@skinbix.com
Phone: +44 7458 148289

We will review and respond to such requests within the timeframes required under applicable law.

14. Security Measures

The Company maintains technical and organizational safeguards designed to protect personal data against unauthorized access, misuse, alteration, disclosure, or loss.

Such measures may include:

encrypted transmission of data where appropriate;
role-based and restricted access controls;
monitoring systems and security alert mechanisms;
data backup and recovery procedures;
internal incident response and breach-handling processes.

Although no system can guarantee absolute security, we take reasonable and appropriate steps to protect the personal data under our control.

15. International Transfers

Where personal data is transferred outside the United Kingdom or the European Economic Area, the Company will implement appropriate legal safeguards where required.

Such safeguards may include:

Standard Contractual Clauses (SCCs);
adequacy decisions;
other transfer mechanisms recognized under applicable law.

16. Contact Details

Questions, requests, or concerns relating to this Privacy Policy or the processing of personal data may be addressed to:

17. Changes to This Privacy Policy

We may amend or update this Privacy Policy from time to time to reflect changes in the law, our services, or internal practices.

The latest version will always be published on the Website, and the effective date shown at the top of this Policy will indicate when the current version came into force.

Continued use of the Service after an updated version has been posted will constitute acknowledgment of the revised Privacy Policy.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.