Tetiana Chyzhovych Design CONTACT

Tetiana Chyzhovych Design
Rantakatu 9 A 1
10900 HANKO
Suomi
Phone: +493020095080
Email:info@iron-hollow.com
citasevelat224@gmail.com

PRIVACY POLICY

Tetiana Chyzhovych Design respects your privacy and is committed to protecting your personal data. This policy explains how we collect, use, store, and protect information when you use our website and services.

We process personal data in accordance with the General Data Protection Regulation and applicable German data protection laws. This policy describes your rights and how we fulfill our obligations under these regulations.

Last updated: November 20, 2025

DATA WE COLLECT

INFORMATION YOU PROVIDE

Contact Forms: When you submit a contact form, we collect your name, email address, and message content. This information is used solely to respond to your inquiry.

Project Inquiries: Information about your project requirements, budget, and timeline shared through our forms or direct communication.

Email Communication: Content of emails exchanged between you and our team regarding projects or inquiries.

Legal Basis: Processing is based on your consent and our legitimate interest in responding to inquiries and providing services.

AUTOMATICALLY COLLECTED DATA

Website Analytics: IP addresses, browser type, device information, pages visited, time spent on pages, and referral sources. This data helps us improve website performance and user experience.

Cookies: Small text files stored on your device to remember preferences and analyze site usage. See our Cookie Policy for detailed information.

Server Logs: Technical information including timestamps, accessed pages, and error reports for maintenance and security purposes.

Legal Basis: Processing is based on our legitimate interest in operating and improving our website and detecting security issues.

PROJECT COLLABORATION DATA

Client Information: Company details, contact persons, and communication preferences for active projects.

Project Files: Documents, specifications, and materials shared during project development.

Payment Information: Invoice details and payment records. Note that we do not store credit card information directly on our servers.

Legal Basis: Processing is necessary for contract performance and compliance with legal obligations.

HOW WE USE YOUR DATA

SERVICE DELIVERY

We use your information to provide game development services, respond to inquiries, manage projects, and communicate about deliverables and timelines.

WEBSITE IMPROVEMENT

Analytics data helps us understand how visitors use our site, allowing us to improve navigation, content, and functionality.

MARKETING COMMUNICATIONS

With your consent, we may send updates about our services, case studies, and industry insights. You can unsubscribe at any time.

LEGAL COMPLIANCE

We retain certain information to comply with legal obligations, resolve disputes, and enforce our agreements.

DATA SHARING AND THIRD PARTIES

We do not sell, rent, or trade your personal information to third parties. We may share data with the following entities under specific circumstances:

SERVICE PROVIDERS

We work with trusted service providers for hosting, analytics, email delivery, and payment processing. These providers are contractually obligated to protect your data and use it only for specified purposes.

ANALYTICS PLATFORMS

We use analytics services to understand website usage. These platforms may process anonymized data about your visit, including pages viewed and interaction patterns.

LEGAL REQUIREMENTS

We may disclose information when required by law, court order, or government regulation, or to protect our rights and the safety of our users.

BUSINESS TRANSFERS

In the event of a merger, acquisition, or sale of assets, personal data may be transferred to the acquiring entity under equivalent privacy protections.

DATA PROTECTION MEASURES

TECHNICAL SECURITY

  • • Encrypted data transmission using SSL/TLS protocols
  • • Secure server infrastructure with regular security updates
  • • Firewall protection and intrusion detection systems
  • • Regular security audits and vulnerability assessments
  • • Restricted access to personal data on need-to-know basis

ORGANIZATIONAL MEASURES

  • • Staff training on data protection and privacy practices
  • • Confidentiality agreements for all team members
  • • Data processing agreements with third-party providers
  • • Regular review of data protection procedures
  • • Incident response plan for potential data breaches

DATA RETENTION

We retain personal data only as long as necessary for the purposes described in this policy or as required by law. Contact form data is deleted after inquiry resolution unless you become a client. Client data is retained for the duration of the project plus seven years for legal compliance. Analytics data is anonymized after fourteen months.

BREACH NOTIFICATION

In the unlikely event of a data breach affecting your personal information, we will notify you and relevant authorities within 72 hours as required by GDPR, providing details about the breach and steps being taken.

YOUR RIGHTS UNDER GDPR

RIGHT OF ACCESS

You have the right to request a copy of the personal data we hold about you. We will provide this information in a commonly used electronic format within one month of your request.

RIGHT TO RECTIFICATION

If your personal data is inaccurate or incomplete, you have the right to request corrections. We will update your information promptly upon verification.

RIGHT TO ERASURE

You can request deletion of your personal data when it is no longer necessary for the purposes collected, you withdraw consent, or you object to processing. Some data may need to be retained for legal compliance.

RIGHT TO DATA PORTABILITY

You have the right to receive your personal data in a structured, machine-readable format and transmit it to another controller without hindrance.

RIGHT TO OBJECT

You can object to processing of your personal data based on legitimate interests or for direct marketing purposes. We will cease processing unless we demonstrate compelling legitimate grounds.

RIGHT TO RESTRICT PROCESSING

You can request restriction of processing while we verify accuracy of data, establish lawfulness of processing, or you need the data for legal claims.

RIGHT TO WITHDRAW CONSENT

Where processing is based on consent, you can withdraw it at any time. This does not affect the lawfulness of processing before withdrawal.

RIGHT TO LODGE A COMPLAINT

You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your residence, if you believe your data protection rights have been violated.

EXERCISING YOUR RIGHTS

To exercise any of these rights, contact us atinfo@iron-hollow.com
citasevelat224@gmail.com with your request. We may need to verify your identity before processing your request. We will respond within one month, though this may be extended by two months for complex requests.

There is no fee for exercising your rights unless requests are manifestly unfounded or excessive, particularly if repetitive.

YOUR RIGHTS AND OPT-OUT INSTRUCTIONS

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may:

  • • Avoid filling out contact forms, account registrations, or any data-submitting features
  • • Disable cookies through your browser settings (see our Cookie Policy for more details)
  • • Contact us directly to request the deletion of any previously shared personal data

We respect your privacy choices. If you would like us to delete your data, please reach out to us at the contact details provided above. We will process your request promptly.

For specific questions about data processing or to exercise your rights, you can contact our data protection officer at info@iron-hollow.com or write to us at our Berlin address listed at the top of this page.

INTERNATIONAL DATA TRANSFERS

Our servers are located within the European Union. Some service providers may process data outside the EU. When data is transferred internationally, we ensure appropriate safeguards are in place:

  • • Standard contractual clauses approved by the European Commission
  • • Adequacy decisions for countries with equivalent data protection
  • • Privacy Shield certification where applicable
  • • Additional security measures for sensitive information

All third-party service providers are carefully vetted to ensure they meet EU data protection standards. You can request more information about specific safeguards in place for international transfers by contacting us.