Privacy Policy

1. Information We Collect

We collect and process the following categories of personal information:

A. Information Collected Automatically

• Device Information: Browser type, operating system, device type, screen resolution, language preferences
• Usage Data: Pages viewed, features used, time spent on pages, click data, scroll depth
• Technical Data: IP address (anonymized), time zone, browser plugins, browser version
• Performance Data: Load times, errors encountered, feature performance metrics

B. Information Stored Locally

• Preferences: Layout preferences, theme settings, stream configurations
• Session Data: Temporary session identifiers, current viewing state
• Cache Data: Cached resources for performance optimization

C. Third-Party Data Collection

When you view embedded streams, Third-Party Platforms (Twitch, YouTube, etc.) may collect data according to their own privacy policies:

• Viewing history and watch time
• Interaction data (likes, comments, follows)
• Account information if logged into their services
• Device and browser information

2. Legal Basis for Processing (GDPR)

We process your personal information under the following legal bases:

• Legitimate Interests: To provide and improve our service, ensure security, and prevent fraud
• Consent: For analytics and optional features (you can withdraw consent at any time)
• Legal Obligations: To comply with applicable laws and regulations
• Vital Interests: To protect the vital interests of you or others

3. How We Use Information

We use collected information for the following specific purposes:

• Service Provision: Enable multi-stream viewing functionality
• Performance Optimization: Improve loading times and reduce bandwidth usage
• Analytics: Understand usage patterns and popular features
• Security: Detect and prevent abuse, fraud, and unauthorized access
• Legal Compliance: Comply with legal obligations and respond to legal requests
• Communication: Send important service updates (only when necessary)

4. Cookies and Tracking Technologies

We use the following types of cookies and similar technologies:

Essential Cookies

• Session management and authentication
• Security features and fraud prevention
• Load balancing and service stability

Functional Cookies

• User preferences (layout, theme, language)
• Feature settings and configurations
• Recently viewed streams

Analytics Cookies (With Consent)

• Google Analytics (anonymized IP addresses)
• Performance monitoring tools
• Error tracking and debugging

For detailed information about cookies, see our Cookie Policy.

5. Data Sharing and Third-Party Services

We do not sell, rent, or trade your personal information.

Service Providers

We may share data with trusted service providers who assist us in operating our service:

• Analytics: Google Analytics (data processing agreement in place)
• Infrastructure: Hosting and CDN providers
• Security: DDoS protection and security monitoring services

Third-Party Platforms

When viewing embedded content, you interact directly with:

• Twitch - Live streaming platform
• YouTube - Video streaming service
• Rumble - Video platform

Legal Requirements

We may disclose information when required by law, including:

• Response to valid legal requests (subpoenas, court orders)
• Protection of our rights, property, or safety
• Prevention of fraud or security issues

6. Data Security

We implement industry-standard security measures:

• Encryption: TLS/SSL encryption for all data transmissions
• Access Controls: Limited access to personal data on a need-to-know basis
• Regular Audits: Security assessments and vulnerability testing
• Incident Response: Procedures for detecting and responding to data breaches
• Data Minimization: We only collect data necessary for service operation

In the event of a data breach affecting your personal information, we will notify you within 72 hours as required by GDPR.

7. Data Retention

We retain personal information for the following periods:

• Analytics Data: Maximum 26 months (Google Analytics default)
• Server Logs: 90 days for security and debugging
• Session Data: Duration of your session plus 30 days
• Local Storage: Until you clear your browser data

After retention periods expire, data is either deleted or anonymized. You can request deletion of your data at any time (see Your Rights section).

8. Your Privacy Rights

Under GDPR (European Users)

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to certain processing activities
• Rights Related to Automated Decision-Making: Not applicable as we don't use automated decision-making

Under CCPA/CPRA (California Users)

• Right to Know: Request disclosure of personal information collected
• Right to Delete: Request deletion of personal information
• Right to Opt-Out: Opt-out of the sale of personal information (we don't sell data)
• Right to Non-Discrimination: Equal service regardless of exercising privacy rights
• Right to Correct: Request correction of inaccurate information
• Right to Limit Use: Limit use of sensitive personal information

How to Exercise Your Rights

To exercise any of these rights, contact us at:

• Email: privacy@streamyyy.com
• Response time: Within 30 days (GDPR) or 45 days (CCPA)
• Verification: We may request information to verify your identity

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:

• Standard Contractual Clauses (SCCs) for transfers outside the EEA
• Privacy Shield replacement mechanisms where applicable
• Adequacy decisions by the European Commission

10. Children's Privacy

Our Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.

For users between 13-16 in the EU, we rely on parental consent or comply with applicable member state provisions for processing their data.

11. Do Not Track Signals

We respect Do Not Track (DNT) browser signals. When DNT is enabled, we disable analytics tracking and limit data collection to essential service functionality only.

12. California Shine the Light Law

California residents may request information about disclosure of personal information to third parties for direct marketing purposes. We do not share personal information for direct marketing.

13. Changes to Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Material changes will be notified through:

• Prominent notice on our website
• Update to the "Effective Date" at the top
• Email notification for significant changes (if we have your email)

Continued use of our Service after changes constitutes acceptance of the updated policy.

14. Contact Information

Data Controller:

Streamyyy.com

Contact Methods:

• General Inquiries: contact@streamyyy.com
• Privacy Specific: privacy@streamyyy.com
• Data Protection Officer: dpo@streamyyy.com

EU Representative:

For GDPR inquiries from EU residents, contact our EU representative at the addresses above.