Privacy Policy

Summary

Celestial Fantasia Games LLC (“CFG,” “we,” “us”) collects only the personal data needed to license, secure, support, and improve uSymphony (“the Product”). We never sell your information. Data are shared solely with trusted partners under strict confidentiality agreements and are protected with current industry safeguards such as TLS encryption and PCI‑DSS–compliant payment processing. This Policy explains what we collect, why we collect it, how long we retain it, and the choices and rights you have.

1 . Who We Are

Celestial Fantasia Games LLC

30 N Gould St Ste N, Sheridan, WY 82001, USA

support@usymphony.com

2.  Data We Collect and Why

  • Licence & Account Information – name, email, Seat ID, activation time. These details are required to issue licenses, enforce Seat assignments, and prevent circumvention.
  • Payment Details – cardholder name, last four digits, billing address; full card data is processed only by our PCI‑DSS–certified payment processor. This information finalises your transaction and screens for fraud.
  • Support Communications – emails, crash logs, or other files you choose to send when you open a ticket. They are used solely to troubleshoot issues and deliver priority responses to Professional/Enterprise Seats.
  • Telemetry (opt‑in) – anonymous feature‑usage counts, IDE version, performance metrics. Telemetry helps us improve performance and prioritise new features; no project code or personal files are collected.
  • Website Analytics & Cookies – truncated IP address, browser type, session cookies. These metrics measure site performance and maintain security. EU/UK visitors can opt‑out via the cookie banner.

Legal bases for processing include contract performance (activation / billing / support), legitimate interest (security, fraud prevention, analytics), consent (telemetry, optional cookies), and compliance with tax laws.

3.  How We Use Your Data

  • Activation & Compliance – verify trials and ensure each Seat is used by a single named user.
  • Updates & Support – deliver downloads and respond to tickets while your Yearly Extended Support Plan is active.
  • Product Improvement – analyse opt‑in telemetry to guide fixes and new functionality.
  • Legal & Tax – keep records required by law and respond to lawful requests from authorities.
  • Security & Fraud Prevention – run automated checks to detect charge‑back fraud, key‑sharing, or other misuse.

4.  Sharing with Third Parties

In order to process your order, we share your personal data with our partners.

  • Payment Processor  – CFG uses an accredited, PCI‑DSS–compliant payment processor to authorise card transactions and perform fraud screening. The processor receives your payment details (such as card number and billing address) solely to complete the transaction on our behalf.
  • Service Providers – CFG may engage service providers, consultants, external partners, agents, or contractors—such as e‑mail ticket platforms, download‑hosting networks, or analytics vendors—to deliver features or customer support. These third parties may access or otherwise process your personal data while providing their services. CFG requires all such providers to comply with applicable data‑protection laws and to apply appropriate technical and organisational safeguards.
  • Public Authorities – CFG may disclose your personal data when legally required or when, in our good‑faith judgment, such disclosure is reasonably necessary to comply with legal processes, respond to claims, or investigate, prevent, or take action against suspected illegal activities, fraud, or security incidents.
  • Financial Institutions – we share payment information with banks or other payment‑service providers so that transactions can settle between payer and payee. These institutions operate independently; their own privacy notices and terms govern their handling of your data.

Some CFG services are delivered through pages branded by partners or suppliers that we do not control. Such sites may link to other websites that are also outside our control. Those websites may provide products or services directly to you or on our behalf. We are not responsible for any aspect of those external sites, including their privacy practices, products, services, or content. Please review their privacy policies before providing personal data.

5.  International Transfers

Personal data may be stored or processed in the United States or other jurisdictions. For transfers from the EU/EEA, CFG relies on Standard Contractual Clauses to ensure an adequate level of protection.

6.  Data Retention

  • Account and license data – retained while the Seat is active plus five years for audit/tax compliance.
  • Payment records – retained up to seven years as required by U.S. tax law.
  • Crash logs – deleted no later than 30 days after the ticket is resolved.
  • Raw telemetry – anonymised or deleted after 90 days; only aggregated statistics are kept.

7.  Your Rights

  • EU / UK (GDPR) – rights of access, rectification, erasure, portability, restriction, and objection.
  • California (CCPA) – rights to know, delete, and opt‑out of any “sale” of personal data.
    To exercise any right, email support@usymphony.com. We will verify your identity and respond within the legally mandated timeframe.

8.  Kids’ Privacy

You must be 16 years or older to place an order with us if you reside in the EU. CFG does not knowingly solicit or collect personal data from children under 16 when offering information‑society services unless verifiable parental consent is obtained beforehand. If we discover that we have accidentally collected data from a child below this age, we will remove it from our records as soon as reasonably possible.

9.  Security Measures

CFG secures data using TLS 1.2+ encryption, role‑based access controls, SOC‑audited hosting, quarterly vulnerability scanning, and regular penetration testing to minimise the risk of unauthorised access or disclosure.

10.  Changes to This Policy

Material changes will be announced on our website and emailed to registered account holders at least 30 days before taking effect. Continued use of the Product after the effective date constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or your personal data, please contact us:

Email – support@usymphony.com