Pwnage Esports B.V., trading as GoBlam, is responsible for the personal data described in this Privacy Notice unless another controller is identified for a specific feature.

This notice covers GoBlam account features, contest features, support, payments, payouts, verification, analytics, advertising, security, and related subdomains. Some data is required to provide the service; other data is optional or depends on your choices. If you do not provide required account, eligibility, payment, payout, or security data, some features may be unavailable.

• Account data, such as customer ID, username, email, authentication provider IDs, Steam identifiers, password credentials where applicable, and account settings.
• Profile data, such as country of residence, contact details, age-verification status, identity-verification status, and support notes.
• Contest data, such as registrations, entry fees, live status, rank, score, K/D, rating, balance, elimination status, standings, prize awards, and gameplay event data.
• Transaction data, such as Ticket Bundle purchases, entry fees, paid live actions, account transaction records, prize credits, Prize Payout requests, provider references, amounts, currencies, taxes, and timestamps.
• Security data, such as hashed IP address, hashed user agent, hashed device fingerprint, GeoIP result, proxy or hosting indicators, provider reason codes, and small non-sensitive context snapshots.
• Communication data, such as emails, SMS, support tickets, admin notes, notifications, consents, and complaint history.
• Marketing data, such as attribution, ad-click data, campaign data, consent status, and conversion events where enabled.

• To create accounts, authenticate Customers, operate profiles, and connect Steam identities.
• To register Customers, run contests, show leaderboards, determine results, settle prizes, and update ratings.
• To price purchases, process payments, maintain ledgers, award credits, handle refunds, and support Prize Payouts.
• To check age, identity, country, sanctions, payout eligibility, and platform integrity.
• To detect fraud, duplicate accounts, proxy abuse, chargeback abuse, linked-account risk, cheating, and service misuse.
• To respond to support requests, investigate disputes, enforce rules, and improve operations.
• To run analytics and advertising where there is an appropriate legal basis and consent where required.

GoBlam relies on different legal bases depending on the feature and context. Contract may cover processing needed to provide accounts, contests, purchases, support, and Prize Payout requests. Legal obligation may cover accounting, tax, sanctions, consumer, payment, and law-enforcement compliance.

Legitimate interest may cover fraud prevention, security, service integrity, support quality, abuse prevention, and internal analytics where balanced against Customer rights. Consent may cover non-essential cookies, marketing communications, optional tracking, and any other processing that requires consent.

Age-verification and identity-verification providers may process Customer data to run hosted verification sessions. GoBlam stores provider IDs, status, timestamps, thresholds, and reason codes rather than raw identity evidence where possible.

Compliance profiles may record country, age status, identity status, screening status, manual restrictions, linked-account review flags, and internal notes. GoBlam may require fresh verification when status expires, country changes, risk increases, payout thresholds are met, or law requires it.

GoBlam uses cookies, local storage, session storage, pixels, tags, SDKs, and similar technologies as explained in the Cookie Notice. Strictly necessary technologies support login, security, routing, localization, checkout continuity, consent storage, and service availability.

Analytics and advertising tools, including conversion tracking and attribution tools, run only when configured and where legally permitted. Non-essential analytics, advertising, and tracking run only after valid consent where required.

GoBlam may share data with hosting, database, observability, payment, payout, verification, email, SMS, analytics, advertising, customer-support, security, and legal providers. GoBlam may also share necessary data with authorities, courts, regulators, banks, payment networks, or law enforcement where legally required or necessary to protect rights.

GoBlam may display usernames, gameplay stats, rankings, standings, and contest results as part of the public or semi-public contest experience. GoBlam does not sell personal data unless a lawful model is confirmed and clearly explained.

GoBlam and its providers may process data inside and outside the European Economic Area. Transfers outside the EEA use an appropriate transfer mechanism, such as an adequacy decision, standard contractual clauses, or another approved safeguard where required.

Customers may request more information about relevant transfer safeguards through support where applicable.

GoBlam keeps data only as long as needed for the purposes described in this notice, including account operation, contests, payments, payouts, accounting, tax, disputes, fraud prevention, support, legal claims, and compliance.

• Account data is generally retained while the account exists and for a defined period after closure where needed.
• Transaction and prize records may be retained for accounting, tax, dispute, fraud, and legal periods.
• Verification records are retained for the shortest period compatible with provider evidence, legal obligations, and platform integrity.
• Security and risk signals have a retention period tied to abuse prevention and review needs.
• Closed or deleted accounts may retain limited records where required for legal, fraud, payout, tax, or enforcement reasons.

Depending on applicable law, you may request access, correction, deletion, restriction, portability, objection, and consent revocation. You may object to certain legitimate-interest processing and direct marketing, and you may have rights related to automated decisions that produce legal or similarly significant effects.

GoBlam may need to verify your identity before fulfilling privacy requests. GoBlam responds without undue delay and may refuse or limit requests where required or permitted by law, such as for fraud prevention, legal claims, accounting, or another person's rights.

You may contact GoBlam support for privacy requests. You may also have the right to complain to the Dutch Data Protection Authority or another competent supervisory authority.

GoBlam uses technical and organizational measures appropriate to account, payment, payout, verification, and contest risk. Sensitive security signals are hashed, minimized, or separated where practical.

Access to customer, verification, payout, support, and admin data is role-based and audited. No service can promise perfect security, so Customers are also responsible for keeping their own account credentials and Steam access secure.