The management of collected information is subject to strict internal regulations of the company responsible for the development of the Honey Rush platform. We act as the personal data administrator, which means that we decide on the purposes and means used in processing operations. We guarantee that all analytical, technical, and organizational activities are carried out in compliance with data protection standards applicable in the territory of the Republic of Poland and the European Union. We implement adequate preventive measures aimed at preventing unauthorized access, modifications, loss, or destruction of the digital records entrusted to us. Our team constantly monitors the legal environment to ensure that our practices remain current and compliant with the guidelines of relevant supervisory authorities.

Depending on how the user interacts with the Honey Rush platform, we acquire different sets of information. To maintain complete transparency, we have categorized this data as follows. We only collect information that is actually necessary for the proper provision of the services we offer.

Identification and contact data

During the profile registration process in the system, we may require the provision of basic data necessary for identity verification. This category may include, among others, first and last name, official residential address, current mobile phone number, date of birth (to verify the 18+ age requirement), and a valid email address. This information forms the foundation of the relationship between the platform and the user, enabling authorized access to the account panel.

Activity and device information

During each browsing session within Honey Rush, our servers automatically record technical parameters related to the device used and the network connection. We record, among other things, the IP address, the type and version of the web browser used, screen resolution, mobile identifiers, and operating system parameters. We also collect logs regarding user interaction with the interface – login dates and times, visited sections, and the duration of individual activities, which serves as a basis for diagnosing technical faults.

Transactional data

If the use of the platform involves financial operations (deposits or withdrawals of funds), we are obliged to securely process transactional information. This includes the history of performed operations, posting dates, and selected data related to payment methods (excluding full payment card data, which are processed exclusively by certified external payment gateways and are not stored directly on our servers).

Customer support communication

All correspondence, technical support inquiries, live chat conversation history, and the content of messages sent via email are archived by us. This data allows us to effectively resolve reported technical issues, raise customer service standards, and serves as necessary documentation in case of a need to resolve any disputes between the user and the company.

Every activity related to the processing of information by the Honey Rush platform must be based on a solid legal foundation. The primary premise is the performance of a contract for the provision of electronic services (e.g., profile management, access authorization). Another pillar is our legitimate interests, which include ensuring the highest level of platform security, fraud detection, and internal performance analytics. In the case of requirements imposed by relevant tax jurisdictions or anti-money laundering (AML) regulations, processing occurs based on a legal obligation. Strictly marketing activities, such as sending offers via email, are based solely on the user's voluntarily given, prior consent.

Data is processed for strictly defined and clearly specified purposes. Firstly, we use it for age verification and to prevent access by individuals under 18, which is a stringent requirement of our operations. Secondly, this information enables us to efficiently manage user balances, facilitate seamless communication regarding changes in service functionality, and provide immediate technical support. Finally, we use collected statistics to conduct security audits, model risk, and develop new, innovative functionalities within the Honey Rush brand, which directly impacts the quality of the final product.

The principle of limited retention states that we do not store data indefinitely. We will archive your information only for the time necessary to achieve the purposes described in this document or for the period stipulated by relevant legal regulations in Poland. After closing or deleting an account on the platform, some data may be retained in specially secured systems to meet accounting, tax, or anti-money laundering requirements, as well as for defense against potential legal claims. After this required period, all remaining records are permanently deleted or subjected to irreversible anonymization.

Due to the complex nature of digital services, Honey Rush collaborates with selected external entities that support our operational infrastructure. Information may be shared with trusted service providers (so-called processors), such as cloud server operators, payment gateway providers, IT security experts, and agencies providing systems for mass email delivery. Each such entity is rigorously verified for compliance with privacy standards and operates solely based on precisely formulated data processing agreements. Furthermore, in cases specified by law, we may be compelled to disclose information upon official and formal request from authorized state authorities or law enforcement agencies.

In the era of global digitalization, it is possible that information collected in Honey Rush systems will be transferred to servers located outside the company's main operating area, including countries not belonging to the European Economic Area (EEA). Should such a transfer be necessary, we ensure an adequate level of protection for the data entrusted to us. We rely on generally accepted legal mechanisms, such as standard contractual clauses approved by relevant regulatory authorities. We oblige our partners to apply adequate technological and organizational measures that protect user privacy regardless of the geographical location of the data centers.

Our company spares no expense in protecting the information entrusted to us. The Honey Rush infrastructure has been designed with rigorous data transmission encryption protocols (SSL/TLS) in mind. We implement systematic internal access control mechanisms, next-generation firewalls, and advanced vulnerability scanners to counteract hacker attacks and data leaks. Employees authorized to view sensitive records are trained in cybersecurity and are bound by strict professional secrecy. However, we wish to emphasize clearly that no system in a virtual environment guarantees complete and absolute resistance to cyber threats. We require users to exercise caution, especially regarding the security of account access passwords.

We respect the autonomy and full right of our users to exercise control over their own data. You have the full right to request detailed information about what specific data we process (right of access). You have the option to request the correction of incorrect or outdated information in your profile (right to rectification). In legally justified cases, you can request the permanent deletion of information from our systems (right to be forgotten) or the temporary suspension of operations on your data (right to restriction). If data is processed based on your consent (e.g., marketing consent), you can withdraw it at any convenient time. We also offer support for the technical transfer of data to another entity, if technically feasible.

To maintain full transparency of operations, our administration reserves the absolute right to modify the provisions of this policy in response to the evolution of Honey Rush services or changing legislative frameworks. We recommend periodically returning to this subpage to familiarize yourself with the most current version of the document. In the event of fundamental modifications, we will take appropriate steps to notify registered individuals via email or a prominent message directly after logging into the platform.

If, after reviewing the above procedures, you have any doubts, questions, or intend to exercise your rights related to privacy protection, we invite you to contact us directly. Our information security experts are available via a dedicated electronic channel. You should send a message to the official address: [email protected]. We will make every effort to address your request comprehensively and in accordance with applicable legal deadlines, usually no later than within thirty calendar days.