superhot sp. z o.o. terms of service
-
By accessing the website athttps://superhotgame.comor playing any SUPERHOT game, such as but not limited to:SUPERHOT, SUPERHOT VR, SUPERHOT MIND CONTROL DELETE or any gameextension, you are agreeing to be bound by these terms of service,all applicable laws and regulations, and agree that you areresponsible for compliance with any applicable local laws. If youdo not agree with any of these terms, you are prohibited fromusing or accessing this site. The materials contained in thiswebsite and in games are protected by applicable copyright andtrademark law.
-
- The materials on SUPERHOT Sp. z o.o.’s website and in games areprovided on an ‘as is’ basis. SUPERHOT Sp. z o.o. makes nowarranties, expressed or implied, and hereby disclaims andnegates all other warranties including, without limitation,implied warranties or conditions of merchantability, fitness fora particular purpose, or non-infringement of intellectualproperty or other violation of rights.
- Further, SUPERHOT Sp. z o.o. does not warrant or make anyrepresentations concerning the accuracy, likely results, orreliability of the use of the materials on its website or ingames or otherwise relating to such materials or on any siteslinked to this site.
-
In no event shall SUPERHOT Sp. z o.o. or its suppliers be liablefor any damages (including, without limitation, damages for lossof data or profit, or due to business interruption) arising out ofthe use or inability to use the materials on SUPERHOT Sp. z o.o.’swebsite or in games, even if SUPERHOT Sp. z o.o. or a SUPERHOT Sp.z o.o. authorized representative has been notified orally or inwriting of the possibility of such damage. Because somejurisdictions do not allow limitations on implied warranties, orlimitations of liability for consequential or incidental damages,these limitations may not apply to you.
-
The materials appearing on SUPERHOT Sp. z o.o.’s website and ingames could include technical, typographical, or photographicerrors. SUPERHOT Sp. z o.o. does not warrant that any of thematerials on its website or in games are accurate, complete orcurrent. SUPERHOT Sp. z o.o. may make changes to the materialscontained on its website or in games at any time without notice.However SUPERHOT Sp. z o.o. does not make any commitment to updatethe materials.
-
SUPERHOT Sp. z o.o. has not reviewed all of the sites linked toits website or in games and is not responsible for the contents ofany such linked site. The inclusion of any link does not implyendorsement by SUPERHOT Sp. z o.o. of the site. Use of any suchlinked website is at the user’s own risk.
-
SUPERHOT Sp. z o.o. may revise these terms of service for itswebsite or games at any time without notice. By using this websiteor playing games you are agreeing to be bound by the then currentversion of these terms of service.
-
These terms and conditions are governed by and construed inaccordance with the laws of Poland and you irrevocably submit tothe exclusive jurisdiction of the courts in that State orlocation.
-
You’re an excellent human being and should high five yourselfright this moment. Go you.
-
You acknowledge that SUPERHOT Team is not responsible directly orindirectly for any bodily or psychological harm and propertydamage you may experience while using its website or games. Playsafe though. Don’t hurt yourself.
privacy policy
-
Controller – SUPERHOT spółka z ograniczonąodpowiedzialnością, Aleja Tadeusza Kościuszki 17, 90-418 Łódź,Poland.
Personal Data – information relating to a naturalperson, identified or identifiable by one or more factorsspecific to the physical, physiological, genetic, mental,economic, cultural or social identity.
Anonymous Data – nformation that does not directly orindirectly identify and cannot be reasonably used to identifyan individual.
Policy – this Privacy policy.
GDPR – Regulation (EU) 2016/679 of the EuropeanParliament and of the Council of 27 April 2016 on theprotection of natural persons with regard to the processing ofpersonal data and on the free movement of such data, andrepealing Directive 95/46/EC.
Website – the website operated by the Controller athttps://superhotgame.com/
Services – any game or any extension to a gamepublished by SUPERHOT, including but not limited to: SUPERHOT,SUPERHOT VR, SUPERHOT MIND CONTROL DELETE.
Third Parties – Controller’s business partners who mayparticipate in the distribution of Services (such as, but notlimited to: Meta, Sony, HTC, Nintendo, Valve etc.).
User – any natural person visiting the Website or usingone or more of the services or functionalities described inthe Policy.
-
In connection with the User's use of the Website and/or ourServices, the Controller collects data to the extent necessaryto provide the individual services offered, as well asinformation about the User's activity on the Website and/oruse of the Services.
The Controller collect two types of information: Personal Dataand Anonymous Data.
Personal Data includes: IP address, identifier informationof your device (such as device make and model, informationabout device operating systems and browsers, or otherdevice or system-related specifications), e-mail address.
Anonymous Data includes: information about localizationand User’s interactions and actions during use of theServices, including: information about completed andcurrent levels and points, game time, general game score,Service reset, unlocked achievements.
In providing Services, the Controller may use Third Parties.Third Parties may use automated means of data collection andmay record information about Users use of the Services. Theseactions are subject to Third Parties’ privacy policies.
The detailed rules and purposes of processing collectedPersonal Data and Anonymous Data are described below.
-
Personal Data and Anonymous Data of all persons using theWebsite and/or other Services (including IP address or otheridentifiers and information collected through cookies or othersimilar technologies), are processed by the Controller:
for the purpose of providing services electronically inthe scope of making the content available to Users - thenthe legal basis for processing is the necessity ofprocessing to perform the contract (Article 6(1) point (b)of the GDPR);
for analytical and statistical purposes - then the legalbasis for the processing is the Controller's legitimateinterest (Article 6(1) point (f) of the GDPR), consistingin conducting analyses of Users' activities, as well astheir preferences in order to improve the functionalitiesused and services provided;
for the purpose of possible establishment and exercise ofclaims or defence against claims - the legal basis forprocessing is the legitimate interest of the Controller(Article 6(1) point (f) of the GDPR), consisting in theprotection of his rights;
for marketing purposes of the Controller and otherentities, in particular related to the presentation ofbehavioral advertising - the principles of processingPersonal Data for marketing purposes are described in theMARKETING section.
The User's activity on the Website and/or their use of theServices, including their Personal Data and Anonymous Data, isrecorded in system logs (a special computer program used tostore a chronological record of information about events andactivities that relate to the IT system used to provideservices by the Controller). The information collected in thelogs is processed primarily for purposes related to theprovision of services. The Controller also processes them fortechnical, administrative purposes, in order to ensure thesecurity of the IT system and manage this system, as well asfor analytical and statistical purposes - in this regard, thelegal basis for processing is the Controller's legitimateinterest (Article 6(1) point (f) of the GDPR).
The Controller provides the newsletter service on the termsset out in the terms and conditions to the persons who havegiven their e-mail address for this purpose. Provision of datais required to provide the newsletter service, and failure todo so will result in the inability to send the newsletter.This form of communication with the User may includeprofiling.
Personal Data are processed:
for the purpose of providing the newsletter service - thelegal basis for processing is the necessity of processingto perform the contract (Article 6(1) point (b) of theGDPR);
in the case of directing marketing content to the User aspart of a newsletter - the legal basis for processing,including with the use of profiling, is the legitimateinterest of the Controller (Article 6(1) point (f) of theGDPR) in connection with the consent given to receive thenewsletter;
for analytical and statistical purposes - the legal basisfor the processing is the Controller's legitimate interest(Article 6(1) point (f) of the GDPR), consisting inconducting analyses of Users' activities on the Website inorder to improve the functionalities used;
for the purpose of possible establishment and exercise ofclaims or defence against claims - the legal basis forprocessing is the legitimate interest of the Controller(Article 6(1) point (f) of the GDPR), consisting in theprotection of his rights;
-
As part of recruitment processes, the Controller expects thetransfer of Personal Data (e.g. in a CV or resume) only to theextent stipulated by the provisions of labour law.Accordingly, no broader information should be provided. In theevent that the applications sent will contain additional databeyond the scope indicated by the provisions of labour law,their processing will be based on the candidate's consent(Article 6(1) point (a) of the GDPR), expressed through theunambiguous affirmative action of the candidate sending theapplication documents. In the event that the applications sentcontain information that is not relevant for the purpose ofthe recruitment, it will not be used or taken into account inthe recruitment process.
Personal data are processed:
where the preferred form of employment is a contract ofemployment - in order to comply with legal obligationsrelating to the employment process, including primarilythe Labour Code - the legal basis for the processing is alegal obligation to which the Controller is subject(Article 6(1) point (c) of the GDPR read together with theprovisions of labour law);
where the preferred form of employment is a civil lawcontract - in order to conduct the recruitment process -the legal basis for the processing of the data containedin the application documents is taking steps at therequest of the data subject prior to entering into acontract (Article 6(1) point (b) of the GDPR);
for the purpose of conducting the recruitment process inrespect of data not required by law or by the Controller,as well as for the purpose of future recruitment processes- the legal basis for processing is consent (Article 6(1)point (a) of the GDPR);
for the purpose of verifying the qualifications and skillsof the candidate and determining the conditions ofcooperation - the legal basis for data processing is thelegitimate interest of the Controller (Article 6(1) point(f) of the GDPR). The Controller's legitimate interest isverifying the candidates for the job and determining theconditions of possible cooperation;
for the purpose of possible establishment and exercise ofclaims by the Controller or defence against claims madeagainst the Controller - the legal basis for dataprocessing is the Controller's legitimate interest(Article 6(1) point (f) of the GDPR).
To the extent that Personal Data are processed on the basis ofconsent given, this consent may be withdrawn at any time,without affecting the lawfulness of the processing carried outbefore its withdrawal. Where consent has been given for thepurposes of future recruitment processes, the Personal Dataare deleted after two years - unless consent has beenpreviously withdrawn.
The provision of data within the scope specified in Article22(1) of the Labour Code is required - in the case of thecandidate's preference for employment based on an employmentcontract - by the provisions of the law, including inparticular the Labour Code, and in the case of the candidate'spreference for employment based on a civil law contract - bythe Controller. The consequence of failing to provide thisdata is that the given candidate cannot be considered in therecruitment process. Provision of other data is voluntary.
-
In the case of correspondence sent to the Controller by e-mailor by regular mail, which is not related to the servicesprovided to the sender or to any other contract concluded withthe sender, the personal data contained in such correspondenceshall be processed solely for the purpose of communication andresolution of the matter to which the correspondence relates.
Personal data are processed for the following purposes:
communication and resolution of the matter - the legalbasis for the processing is the legitimate interest of theController (Article 6(1) point (f) of the GDPR) consistingin carrying out the correspondence addressed to theController in relation to his business activities;
establishment or exercise of possible claims or defenceagainst such claims by the Controller - the legal basisfor the processing is the Controller’s legitimate interest(Article 6(1) point (f) of the GDPR) consisting indefending its business interests.
When contacting the Controller by phone on matters not relatedto the contract concluded or the services provided, theController may request the provision of Personal Data only ifit is necessary to handle the matter to which the contactrelates.
Personal data are processed for the following purposes:
to enable contact and to service the request - the legalbasis for the processing is the legitimate interest of theController (Article 6(1) point (f) of the GDPR) consistingin the need to resolve the reported matter related to hisbusiness activity;
establishment or exercise of possible claims or defenceagainst such claims by the Controller - the legal basisfor the processing is the Controller’s legitimate interest(Article 6(1) point (f) of the GDPR) consisting indefending his business interests.
In connection with his business activity, the Controllercollects personal data also in other cases - e.g. duringbusiness meetings, events or by exchanging business cards -for the purposes of initiating and maintaining businesscontacts. The legal basis for the processing in this case isthe legitimate interest of the Controller (Article 6(1) point(f) of the GDPR), consisting of networking in connection withthe business activity conducted.
-
The Controller processes the Users' Personal Data for thepurpose of performing marketing activities, which may consistin:
displaying marketing content to the User that is nottailored to the User's preferences (contextualadvertising);
displaying to the User marketing content matching theUser's interests (behavioural advertising).
In order to carry out marketing activities, the Controller insome cases uses profiling. This means that, through automaticdata processing, the Controller evaluates the selected factorsconcerning the Users in order to analyse their behaviour orcreate a forecast for the future. This allows the contentdisplayed to be better tailored to the User's individualpreferences and interests.
The Controller and his trusted partners process the Users'Personal Data, including Personal Data collected throughcookies and other similar technologies, for marketing purposesin connection with targeting the Users with behaviouraladvertising (i.e. advertising that is tailored to the User'spreferences). In such a case the processing of Personal Dataalso includes the profiling of Users.
-
The Controller processes Personal Data of the Users visitingthe Controller's social media profiles (Facebook, Twitter).These data are processed exclusively in connection with themanaging of the profile, including for the purpose ofinforming the Users about the Controller's activities andpromoting various events, services and products. The legalbasis for the Controller's processing of Personal Data forthis purpose is his legitimate interest (Article 6(1) point(f) of the GDPR) in promoting his own brand.
-
The Controller uses cookies mainly to provide the User withservices provided electronically and to improve the quality ofsuch services. In this regard, the Controller and otherentities providing analytical and statistical services to theController use cookies, storing information or accessinginformation already stored in the User's telecommunicationsend device (computer, phone, tablet, etc.). The use of cookieson the Website is not intended to identify the Users. ThePolicy regulates data processing related to the use of its owncookies.
Cookies are small text files installed on the User's devicewhen browsing the Website. Cookies collect informationfacilitating the use of the Website - e.g. by remembering theUser's visits to the Website and actions performed by him/her.
The Controller uses essential cookies primarily to provide theUser with the services and functionalities of the Website thatthe User wishes to use. Essential cookies may only beinstalled by the Controller through the Website.
The legal basis for the processing of data in connection withthe use of essential cookies is the necessity of processing toperform the contract (Article 6(1) point (b) of the GDPR).
Functional cookies are used to remember and adapt the Websiteto the User's choices, e.g. in terms of language preferences.Functional cookies may be installed by the Controller and hispartners through the Website.
Analytical cookies allow to obtain information such as thenumber of visits and sources of traffic on the Website. Theyare used to determine which pages are more and which are lesspopular, and to understand how Users navigate the Website bykeeping statistics on the traffic on the Website. Theprocessing is done for the purpose of improving theperformance of the Website. The information collected by thesecookies is aggregated, so they are not intended to establishyour identity. Functional cookies may be installed by theController and his partners through the Website.
The legal basis for the processing of Personal Data inconnection with the use of functional and analytical cookiesby the Controller, for this purpose, is consent (Article 6(1)point (a) of the GDPR).
The processing of Personal Data in connection with the use offunctional and analytical cookies depends on the User'sconsent to the use (separately) of functional and analyticalcookies through the cookie consent management platform. Thisconsent can be withdrawn at any time through this platform.
Advertising cookies allow matching the advertising contentdisplayed to the User's interests within and outside theWebsite. Based on the information from these cookies and theUser's activity on other websites, a profile of the User'sinterests is built. Advertising cookies may be installed bythe Controller and his partners through our website.
The legal basis for the processing of Personal Data inconnection with the use of advertising cookies by theController, for this purpose, is consent (Article 6(1) point(a) of the GDPR).
The processing of Personal Data in connection with the use ofadvertising cookies is allowed after obtaining the User'sconsent to the use through the consent management platform.This consent can be withdrawn at any time through thisplatform.
-
The Controller and his partners apply various solutions andtools used for analytical and marketing purposes. Below youwill find basic information about these tools. The detailedinformation in this regard, on the other hand, can be found inthe privacy policy of the respective partner.
Google Analytics cookies are the files used by Google toanalyse how the User uses the Website, to create statisticsand reports on the functioning of the Website. Google does notuse the collected data to identify the User, nor does itcombine this information to enable identification. Thedetailed information about the scope and principles of datacollection in connection with this service can be found at thefollowing link:https://www.google.com/intl/pl/policies/privacy/partners.
Facebook Pixel is a tool that allows to measure theeffectiveness of advertising campaigns carried out by theController on Facebook. The tool allows advanced dataanalytics in order to optimise the Controller's activitiesalso with the use of other tools offered by Facebook. Thedetailed information on data processing by Facebook can befound at this link:https://pl-pl.facebook.com/help/443357099140264?helpref=about_content.
Twitter Pixel is a web tag that is deployed on a website totrack site activity or conversions. The tool combines ourolder web tags - Universal Web Tags (UWT) and Single EventTags (SET) - into a single, easier-to-use solution. Thedetailed information on data processing by Twitter can befound at this link:https://twitter.com/en/privacy
Yandex Metrica is a web analytics tool offered by Yandex thattracks and reports on website traffic. It is used to monitorwebsite traffic and measure results from promotionalactivities conducted. The detailed information about the tool,the data it uses and how it works can be found at this link:https://metrica.yandex.com/about
-
The use of cookies for the purpose of collecting data throughthem, including gaining access to data stored on the User'sdevice, requires the User's consent. On the Website, theController receives consent from the User through the cookieconsent management platform. This consent can be withdrawn atany time in accordance with the rules described in point 10.4below.
Consent is not required only in the case of cookies, the useof which is necessary for the provision of thetelecommunications service (data transmission for the purposeof displaying the content) - the User does not have thepossibility to opt out of these cookies if he/she wishes touse the Website.
In order to receive advertising tailored to the User'spreferences, in addition to agreeing to the installation ofcookies through the cookie consent management platform, it isnecessary to maintain the appropriate browser settings thatallow the storage of cookies originating from the Website inthe User's end device.
Withdrawal of consent to the collection of cookies on theWebsite is possible through the cookie consent managementplatform. The User can return to the banner by clicking on the"Manage cookies" button below or the button with the samecontent available in the footer of each sub-page of theWebsite.
After displaying the banner, the User can withdraw consent byclicking on the "COOKIE SETTINGS" button. Then he/sheshould move the slider next to the selected cookie categoryand press the "SAVE SETTINGS" button.
The User has also the option to withdraw his/her consent tothe use of cookies via the browser settings. The detailedinformation on this can be found at the following links:
The User can at any time verify the status of his/her currentprivacy settings for the browser he/she is using with the useof the tools available at the links below:
In order to exercise your rights to access, rectify, erase,restrict, transfer, object to the processing of your personaldata, lodge a complaint or ask any other question regardingcookies, please send your request to legal@superhotgame.com orto other contact details of the Controller indicated in thePrivacy Policy.
-
The duration of data processing performed by the Controllerdepends on the type of service provided and the purpose ofprocessing. As a rule, data shall be processed for theduration of the provision of service, until the withdrawal ofthe consent given or until an effective objection is raisedagainst the data processing in cases where the legal basis fordata processing is the legitimate interest of the Controller.
The data processing period may be extended if the processingis necessary for the establishment and exercise of possibleclaims or defence against claims, and thereafter only if andonly to the extent required by law. After the expiry of theprocessing period, the data shall be irreversibly deleted oranonymised.
-
Data subjects shall have the following rights:
the right to be informed about the processing ofpersonal data- on this basis the Controller shall inform the naturalperson making the request about data processing, includingin particular about the purposes and legal basis forprocessing, the scope of data held, the entities to whichthe data are disclosed and the planned date of dataerasure;
the right to obtain a copy of the data- on this basis the Controller shall provide a copy of theprocessed data concerning the natural person making therequest;
the right to rectification- the Controller is obliged to rectify any inconsistenciesor errors in the Personal Data processed and to completethem if they are incomplete;
the right to data erasure- on this basis one can request the erasure of data theprocessing of which is no longer necessary for any of thepurposes for which they were collected;
the right to restrict processing- if such a request is made, the Controller shall ceaseperforming operations on the Personal Data - with theexception of operations authorised by the data subject -and their storage, in accordance with the retention rulesadopted or until the reasons for restricting theprocessing cease to exist (e.g. a decision is issued by asupervisory authority authorising further processing);
the right to data portability- on this basis - to the extent that the data areprocessed by automated means in connection with thecontract concluded or consent given, the Controller shallhand over the data provided by the data subject in acomputer-readable format. It is also possible to requestthat the data be sent to another entity, provided,however, that it is technically feasible both on the partof the Controller and the designated entity;
the right to object to processing for marketingpurposes- if applicable, the data subject may object at any timeto the processing of Personal Data for marketing purposes,without the need to justify such objection;
the right to object to other purposes of dataprocessing- the data subject may object at any time, for the reasonsrelating to his/her particular situation, to theprocessing of Personal Data which is carried out on thebasis of a legitimate interest of the Controller (e.g forreasons relating to the protection of property); theobjection in this respect shall contain a justification;
the right to withdraw consent- if the data are processed on the basis of the consentgiven, the data subject shall have the right to withdrawthe consent at any time, which however does not affect thelawfulness of the processing carried out before thewithdrawal;
the right to lodge a complaint- if the processing of Personal Data is considered to bein breach of the provisions of the GDPR or otherprovisions relating to the protection of Personal Data,the data subject may lodge a complaint with thesupervisory authority for the processing of Personal Data,which has jurisdiction over the data subject's habitualplace of residence, place of work or place where thealleged breach has been committed. In Poland, thesupervisory authority is the President of the Office forPersonal Data Protection.
-
The request concerning the exercise of rights of data subjectscan be submitted:
In writing to the Controller’s address;
By means of electronic communication to the e-mailaddress: legal@superhotgame.com
The request should, as far as possible, indicate preciselywhat is being requested, i.e. in particular:
what right does the requesting party wish to exercise(e.g. right to obtain a copy of data, right to dataerasure, etc.);
what processing does the request concern (e.g. use of aparticular service, activity on a particular website,etc.);
which purposes of the processing does the request concern(e.g. purposes relating to the provision of servicesetc.).
In the event that the Controller is unable to identify thenatural person on the basis of the request submitted, theController will request additional information from therequesting party. The provision of such data is not mandatory,but failure to do so will result in the refusal to fulfill therequest.
The request may be submitted in person or through a proxy(e.g. a family member). For reasons of data security, theController encourages the use of a power of attorney in a formcertified by a notary public or an authorised legal advisor orattorney, which will significantly accelerate the verificationof the authenticity of the request.
The response to the request should be given within one monthof its receipt. If it results necessary to extend this period,the Controller shall inform the requesting party of thereasons thereof.
Where the request has been sent to the Controller byelectronic means of communication, the response shall be givenin the same form, unless the requesting party has requested aresponse in another form. In other cases, the response shallbe given in writing. In case the deadline for fulfilling therequest makes it impossible to respond in writing and theextent of the requesting party’s data processed by theController allows the contact by electronic means ofcommunication, the response shall be given electronically.
-
In connection with the provision of services, Personal Datawill be disclosed to the external entities, including inparticular the suppliers responsible for the operation of ITsystems, the entities such as marketing agencies (with regardto marketing services) and the entities related to theController, including companies forming part of his capitalgroup.
In the event of obtaining the User’s consent, his/her data maybe also made available to other entities for their ownpurposes, including marketing purposes.
The Controller reserves the right to disclose selectedinformation concerning the User to the competent authoritiesor to third parties who submit a request for such informationbased on the appropriate legal basis and in accordance withthe provisions of the applicable law.
-
The level of protection of Personal Data outside the EuropeanEconomic Area (EEA) differs from that provided by Europeanlaw. For this reason, the Controller transfers Personal Dataoutside the EEA only when necessary and with an adequate levelof protection, in particular by:
cooperating with processors of Personal Data in thecountries which obtained a relevant decision of theEuropean Commission, determining an adequate level ofprotection of Personal Data (you will find the detailedinformationhere);
using the standard contractual clauses issued by theEuropean Commission; together with the required additionalsecurity measures, these provide the same protection toPersonal Data as they enjoy in the European Union.
using the binding corporate rules approved by thecompetent supervisory authority;
The Controller shall always give notice of its intention totransfer Personal Data outside the EEA at the stage of theircollection.
-
The Controller shall, on an ongoing basis, conduct a riskanalysis to ensure that the Personal Data are processed by theController in a secure manner - ensuring, in particular, thatonly the authorised persons have access to the data and onlyto the extent necessary for the performance of their tasks.The Controller shall ensure that all operations on PersonalData are recorded and performed only by authorised employeesand associates.
The Controller shall take all necessary measures to ensurethat also its subcontractors and other entities he cooperateswith guarantee the application of appropriate securitymeasures whenever they process Personal Data at theController’s request.
-
The Controller can be contacted at the e-mail addresslaura@superhotgame.com or correspondence address AlejaTadeusza Kościuszki 17, 90-418 Łódź, Poland.
-
The Policy is verified on an ongoing basis and updated asnecessary.
The current version of the Policy has been adopted and remainsin force since 07.04.2023.