We are committed to protecting your privacy. This document informs you of our policies regarding the collection, use and disclosure of personal data when you, or a minor under your legal guardianship, use our services.
Playvation Ltd complies with the General Data Protection Regulation (“GDPR”) (EU) 2016/679. This privacy policy (“Privacy Policy”) describes what information we collect when you use our services, why we collect it and what we do with it.
Moomin Language School is a digital service (“Service”) developed for early foreign language learning. The Service is owned and provided by Playvation Ltd (“us”, “we” or “our”). Our applications include a mobile application (“Mobile Application”) called Moomin Language School and web applications (“Web Applications”, “Websites”) at web domains moominls.com, playvation.com and foxling.com.
In this Privacy Policy the following words and expressions shall have the meanings respectively set out opposite to them:
| “Personal Data” | means to information that is being collected and recorded in electronic or physical format that could, with reasonable effort, be used to identify an individual. |
| “Data Subject” | means any natural person whose Personal Data is being collected, held or processed. |
| “Data Controller” | means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data. |
| “Data Processor” | means the natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Data Controller. |
| “Registered User” | refers to a natural person who is accessing our Service or Applications through individual user account. |
| “Student” | refers to any Registered User who is using our Service for the purpose of learning a language. |
| “Subscription” | refers to a contract to acquire license to use the Service. |
| “Subscriber” | refers to the customer (natural or legal person) who has acquired the Subscription. |
3 Data controller and data processor
The Data Processor under this Privacy Policy is Playvation.
The Data Controller under this Privacy Policy is the Subscriber or Playvation, whatever the case may be. The Data Controller under this Privacy Policy is the Subscriber where you are:
In all other scenarios Data Controller is Playvation.
4 The purpose for processing personal data
We collect, store and process Personal Data for marketing, selling, providing and developing our Services. By accepting this Privacy Policy and by using our Service or accessing our Websites, you agree to the collection and use of Personal Data in accordance with this Privacy Policy.
We will not use or share Personal Data with anyone except as described in this Privacy Policy. We may employ third parties (companies or individuals) to market and sell our Service to perform Service maintenance and distribution related tasks (such as providing technical support), or to assist us in analyzing how our Websites and Service are being used. These third parties may have access to your Personal Data, but only to perform aforementioned tasks on our behalf. These third parties are obligated not to disclose or use Personal Data for any other purpose.
5 Content of the register and regular sources of the information
We collect Personal Data in two ways: information that you or the Data Controller provide to us directly, and information that we collect automatically when you or a minor under your legal guardianship use our Service and Applications.
The information that the you, a minor Registered User under your guardianship or the Data Controller provide to us directly could be used by us to identify an individual. This information is being collected and stored when the you or the Data Controller create or update Personal Data on our Applications. This type of personally identifying information includes, but is not limited to name, email address, photo and country of residence. We do not sell Personal Data to anyone. We may disclose your Personal Data to our contractors and sub-contractors for the purpose of developing and/or providing the Service, on condition that they have signed a confidentiality agreement with us, effectively obligating them to treat Personal Data as confidential information. Also, the you can always refuse to provide us with personally identifying information with the caveat that it may prevent you or a minor Registered User under your legal guardianship from using some features of our Service.
The information that we collect automatically refers to information that our Applications and your web browser send us automatically, without your direct and explicit submission. This information is by nature primarily of the non-personally identifying type.
The personally identifying data that your web automatically sends us whenever you access our Websites is the public Internet Protocol (“IP”) address of the device being used for accessing such websites. Non-personally identifying information that your web browser sends us include information such as your browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, cookies and other statistics.
When you or a minor Registered User under your legal guardianship use our Mobile Application, we collect certain non-personally identifying information automatically, including, but not limited to, the type of mobile device used, the mobile device’s unique device ID, the operating system and other statistics. Personally, identifying data that our Applications send us automatically is limited to the device’s public IP address.
Whenever a Student uses our Mobile Application, we also collect Student-specific, learning process related information. This information may include any and all information received by our Mobile Application from input devices through the operating system. These input devices may include but are not limited to touch screen, keyboard, mouse or microphone. The learning process related information will be used for providing and developing the Service, as well as for visualizing Students’ learning progress in its original and processed format.
6 Cookies
Cookies are files with small amount of data, which may include an anonymous unique identifier. Cookies are sent to your browser from our Websites and stored on your computer’s mass storage.
We use cookies on our Websites to collect Personal Data. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if the cookies are not accepted, the you may not be able to use some parts of our Websites.
7 Personal data and minors
Our Service does not directly address anyone under the age of sixteen (16) without the consent of a legal guardian.
We do not require Personal Data from person under the age of sixteen (16). If you are a legal guardian of a minor and you are aware that Personal Data of minor under your legal guardian has been provided for us without your consent, please contact us at the address below. If we become aware that we have collected Personal Data from person under the age of sixteen (16) without verification of parental consent, we shall take immediate steps to remove such data from our servers.
8 Communication
We may use Personal Data to contact you with newsletters and/or content notifications regarding the use and development of our Services. You may opt out of receiving any, or all, of these communications by clicking the unsubscribe link found at the bottom of each message.
9 Regular destinations of personal data and international transfer
All information that you provide for us, including Personal Data, may be transferred to — and maintained on — our database servers located outside of your country, state, province, or other governmental jurisdiction, where the data protection laws may differ from those in your jurisdiction.
We transfer, store and process Personal Data in data centers located in European Economic Area.
10 The principles of how the data transfer and storage is secured
The security of Personal Data is important to us, but please remember that no method of transmission over the Internet, or method of storage is 100% secure.
All Personal Data is encrypted in transit and at rest. All interactions between Our servers and Applications use the Transport Layer Security/Secure Sockets Layer (TLS/SSL) protocol. Our Services and servers are developed and maintained by competent professionals.
11 The right to access personal data and the right to correct personal data
You have the right to access the Personal Data stored by us from you or from a minor under your legal guardianship (“Data Subject Request”). The Data Subject Request must be signed, in writing and sent to us at the contact address below. The Data Subject Request may also be presented in person at our registered headquarters. The identity of the individual presenting the Data Subject Request shall be verified. The Personal Data shall be provided to the requester within thirty(30) days from receipt of the Data Subject Request.
You have the right to demand the correction of incorrect or incomplete data by notifying the Data Controller.
12 Deletion of personal data
The Personal Data will be permanently deleted one (1) calendar month after the deletion of the Registered User’s account or after we receive your written request for deletion of your Personal Data.
Some Personal Data may, however, be stored beyond the one (1) month period. Such data comprises of the your billing information. This type of data shall be stored until all accounts are settled.
Non-personal data collected from you, or a minor under your legal guardianship may be stored indefinitely. This data shall, however, will be permanently anonymized in such a way that individual cannot be identified from the data.
13 Provision of personal data and the consequences of not providing personal data
As described in this Privacy Policy, Personal Data is processed in order to provide and develop our Services. If the Personal Data is not provided, we cannot provide our Services in full or ensure their development.
14 The right to notify the supervisory authority
If you notice failures or errors on our behalf with respect to the processing of Personal Data, we request that you contact us immediately.
You have the right to contact the local data protection authority.
15 Third parties’ privacy policies
Our Websites may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third party’s site. We strongly advise you to review the privacy policy of every site you visit.
All paper copies, if any, containing Personal Data are stored in restricted areas in locked archives. Papers copies are shredded or burned before being disposed.
We have no control over, and assume no responsibility, for the privacy policies or practices of any third-party services or sites.
16 Changes to this privacy policy
We may update our Privacy Policy from time to time without prior notice to or consent from you. We advice you to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are published on our Websites.
Additionally, we will update changes to the Change Log section in this Privacy Policy.
17 Contact us
If you have any questions about this Privacy Policy, you can contact our data protection officer at privacy@playvation.com.
Written inquiries can be sent to:
Playvation Ltd
Lapinlahdenkatu 16
00180 Helsinki
Finland
| 2020-04-12 | Updated the purpose for processing the personal data to cover and allow digital marketing. Updated the company’s contact information. |
| 2018-10-23 | Added Definitions section and clarified the roles and the responsibilities of data processor and data controller. |
| 2018-06-05 | Updated content of the register and regular sources of the information. |
| 2018-05-25 | The complied legislation updated. |
| 2018-02-06 | Clarified the disclosure terms of personal data to third parties. |
| 2018-01-15 | Updated the company’s contact information. |
| 2017-05-19 | Added change log to this privacy policy to improve transparency and readability of this document. |
我们致力于保护您的隐私。当您或您的法定监护下的未成年人使用我们的服务时,本文档向您介绍我们关于收集,使用和披露个人数据的政策。
Playvation Ltd 遵守通用数据保护条例(“ GDPR”)(EU)2016/679 的规定。本隐私政策(“隐私政策”)描述了在您使用我们的服务时我们收集哪些信息、我们为什么收集这些信息以及我们如何使用它。
Moomin Language School 是为早期外语学习而开发的一款数字服务(“服务”)。该服务由 Playvation Ltd(“我们”、“我们” 或 “我们的”)拥有并提供。我们的应用程序(“应用程序”)包括一款称为 Moomin Language School 的移动应用程序(“移动应用程序”)和网域位置在 moominls.com、playvation.com 和 foxling.com 的网络应用程序(“网络应用程序”、“网站”)。
在本隐私政策中,以下词语和表达应分别具有相反的含义:
“个人数据”是指以电子或物理格式收集和记录的信息,这些信息可以通过合理的努力用于识别个人。
“数据主体”是指收集、持有或处理其个人数据的任何自然人。
“数据控制方”是指自然或法人、公共权力机构、机构或其它机构,它们单独或与其他人共同确定处理个人数据的目的和方式。
“数据处理方”是指代表数据控制方处理个人数据的自然人或法人、公共当局、机构或其他它机构。
“注册用户”是指通过个人用户帐户访问我们的服务或应用程序的自然人。
“学生”是指使用我们的服务来学习语言的任何注册用户。
“订购”是指获得使用许可的合同。
“订阅方”是指已获得订阅的客户(自然人或法人)。
本隐私政策下的数据处理方为 Playvation。
无论何种情况,本隐私政策下的数据控制方均为订阅方或 Playvation。根据本隐私政策的数据控制方是您在以下位置的订阅方:
i. 在机构(例如:幼儿园或学校)中担任雇员或承包商的注册用户;或者
ii. 由机构(例如:幼儿园或学校)通过订阅方式使用服务的法定监护人或未成年人注册用户。
在所有其它情况下,Playvation 也是此隐私策略下的数据控制方。
我们收集、存储和处理用于营销、销售、提供和开发我们服务的个人数据。接受本隐私政策并使用我们的服务或访问我们的网站,即表示,您同意根据本隐私政策收集和使用个人数据。
除本隐私政策中所述外,我们不会与任何人使用或共享个人数据。我们可能会雇用第三方(公司或个人)来营销和销售我们的服务、执行与服务维护和分发相关的任务(例如:提供技术支持)或协助我们分析网站和服务的使用方式。这些第三方可能会访问您的个人数据,但只能代表我们执行上述任务。这些第三方有义务不出于任何其它目的披露或使用个人数据。
我们通过两种方式收集个人数据:您或数据控制方直接提供给我们的信息,以及当您或您的法定监护人未成年人使用我们的服务或应用程序时,我们自动收集的信息。
您、您监护下的未成年人注册用户或数据管理员直接提供给我们的信息,可被我们用来识别个人。当您或数据控制器在我们的应用程序上创建或更新个人数据时,将收集并存储此信息。这种类型的个人识别信息包括但不限于姓名、电子邮件地址、照片和居住国家。我们不会将个人数据出售给任何人。为了开发和/或提供服务,我们可能会向我们的承包商和分包商披露您的个人数据,但前提是他们已与我们签署了保密协议,有效地迫使他们将个人数据视为机密信息。另外,您始终可以拒绝向我们提供个人身份信息,但可能会阻止您或您的合法监护下的未成年人注册用户使用我们服务的某些功能。
我们自动收集的信息,是指我们的应用程序和您的网络浏览器自动向我们发送的信息,而无需您的直接和明确的提交。该信息本质上主要是非个人识别类型。
每当您访问我们的网站时,您的网络自动发送给我们的个人识别数据,就是用于访问该网站的设备的公共互联网协议(“IP”)地址。您的网络浏览器发送给我们的非个人身份信息,包括诸如您的浏览器类型、浏览器版本、您访问的服务页面、访问的时间和日期、在这些页面上花费的时间、Cookie 及其它统计信息
当您或在您法定监护下的未成年人注册用户使用我们的移动应用程序时,我们会自动收集某些非个人识别信息,包括但不限于所使用的移动设备的类型、移动设备的唯一设备 ID、操作系统及其它统计信息。就个人而言,识别我们的移动应用程序自动发送给我们的数据仅限于设备的公共 IP 地址。
每当学生使用我们的移动应用程序时,我们还将收集学生特定的、与学习过程相关的信息。此信息,可能包括我们的移动应用程序通过操作系统从输入设备接收到的所有信息。这些输入设备,可以包括但不限于触摸屏、键盘、鼠标或麦克风。与学习过程相关的信息,将用于提供和开发服务,以及以原始和已处理格式对学生的学习进度进行可视化处理。
Cookies 是具有少量数据的文件,其中可能包含匿名的唯一标识符。Cookies 从我们的网站发送到您的浏览器,并存储在您计算机的大容量存储中。
我们在网站上使用 cookie 来收集个人数据。您可以指示浏览器拒绝所有 cookie 或指示何时发送 cookie。但是,如果不接受 Cookie,则您可能无法使用我们网站的某些部分。
未经法定监护人的同意,我们的服务不会直接针对十六岁以下的任何人。
我们不要求 16 岁以下人士的个人数据。如果您是未成年人的法定监护人,并且知道在未经您同意的情况下为我们提供了您的法定监护人未成年人的个人数据,请通过以下地址与我们联系。如果我们知道,我们是在未获得父母同意的情况下,从 16 岁以下(16 岁)的人那里收集个人数据的,则我们将立即采取措施从服务器中删除此类数据。
我们可能会使用个人数据与您联系,以提供有关我们服务的使用和开发的新闻通讯和/或内容通知。您可以通过单击每封邮件底部的取消订阅链接,选择不接收来自我们的任何或所有这些通讯。
您提供给我们的所有信息(包括个人数据)可能会转移到并维护在您所在国家、州、省或其他政府辖区之外的数据库服务器中,在这些数据库服务器中,数据保护法律可能与您所在国家/地区的法律有所不同 管辖权。
我们在欧洲经济区的数据中心传输、存储和处理个人数据。
个人数据的安全性对我们很重要,但是请记住,互联网上的任何传输方法或存储方法都不是 100% 安全的。
所有的个人数据在传输和静止时都被加密。我们的服务器与应用程序之间的所有交互,均使用传输层安全性/安全套接字层(TLS/SSL)协议。我们的服务和服务器由称职的专业人员开发和维护。
所有包含个人数据的纸质副本(如果有),都存储在锁定档案中的受限区域中。纸质副本在销毁之前被粉碎或燃烧。
您有权从您或在您合法监护下的未成年人访问我们存储的个人数据(“数据主体请求”)。数据主体请求必须以书面形式签名,并通过以下联系地址发送给我们。数据主题请求也可以亲自到我们的注册总部提出。提出数据主题请求之个人的身份必须经过验证。应在收到数据主体请求后的三十(30)天内,将个人数据提供给请求方。
您有权通过通知数据控制方,要求更正不正确或不完整的数据。
个人数据将在删除注册用户的帐户后一(1)个日历月、或在我们收到您的书面要求以删除您的个人数据后,永久删除。
但是,某些个人数据可能会保存超过一(1)个月。这些数据包括您的帐单信息。此类数据,应存储至所有帐户都清算为止。
从您或在您法定监护下的未成年人收集的非个人数据,可能会无限期地存储。但是,该数据将被永久匿名,以致无法从数据中识别出个人。
如本隐私政策所述,处理个人数据是为了提供和开发我们的服务。如果未提供个人数据,我们将无法提供全部服务或确保其发展。
如果您代表我们发现在处理个人数据方面的失败或错误,我们要求您立即与我们联系。
您有权联系本地数据保护机构。
我们的网站,可能包含指向其它非我方运营网站的链接。如果单击第三方链接,您将被定向到该第三方的网站。我们强烈建议您查看您访问的每个网站的隐私政策。
对于任何第三方服务或网站的隐私政策或惯例,我们无法控制,也不承担任何责任。
我们可能会不定期地更新我们的隐私政策,而无需事先通知或征得您的同意。我们建议您定期查看本隐私政策是否有任何更改。本隐私政策的更改在我们的网站上发布后才生效。
此外,我们将更新本隐私政策中“更改日志”部分的变更。
如果您对此隐私政策有任何疑问,可联系我们的数据保护官,网址在:privacy@playvation.com。
书面查询可以发送至:
Playvation Ltd
Lapinlahdenkatu 16
00180 Helsinki
Finland
| 2020-04-12 | 更新了处理个人数据的目的,以覆盖并启用数字营销。更新了公司的联系信息。 |
| 2018-10-23 | 添加了“定义”部分,并阐明了数据处理方和数据控制方的角色和职责。 |
| 2018-06-05 | 更新了注册内容和常规信息来源。 |
| 2018-05-25 | 汇编的立法更新。 |
| 2018-02-06 | 阐明了向第三方披露个人数据的条款。 |
| 2018-01-15 | 更新了公司的联系信息。 |
| 2017-05-19 | 在此隐私策略中添加了更改日志,以提高本文档的透明度和可读性。 |