Limited Liability Company “NanoFlash” (Russian legal name: ООО «НаноФлэш»)
(hereinafter the Operator, NanoFlash LLC)
Effective: 30 April 2026.
Websites administered by the Operator for this Policy (collectively the Websites; each a Website):
- https://www.nanoflash.biz (domain nanoflash.biz);
- https://livegames.online (domain livegames.online);
- https://livegames.download (domain livegames.download).
This Personal Data Processing Policy (the Policy) is drawn up under Federal Law No. 152-FZ of 27 July 2006 “On Personal Data” (the Personal Data Law) and sets out how personal data are processed and protected when you use any Website, and with regard to processing connected with software and services in the Operator’s ecosystem (games; apps of the Operator and affiliates), including where Websites link to them or are technically connected.
The Policy is public. The Operator publishes it on the Websites; the canonical version may be at https://www.nanoflash.biz/personal-data-policy/ (or another URL the Operator designates). Other Websites may host the full text or a link to the canonical URL if the text is up to date.
────────────────────────────────────────
1. DEFINITIONS
Terms are used as defined in the Personal Data Law, including: personal data, processing, operator, data subject, dissemination, cross-border transfer.
────────────────────────────────────────
2. OPERATOR DETAILS
Legal name: Limited Liability Company “NanoFlash” (ООО «НаноФлэш»)
INN (tax ID): 7715811289
OGRN: 1107746408912
Registered address: 127566, Moscow, Altufyevskoye Shosse, bld. 44, prem. VIII, rooms 49-51
Contacts for personal data matters and exercise of subject rights:
E-mail: office@nanoflash.biz
A dedicated telephone line for personal data requests is not used; requests are accepted at the e-mail above or at the Operator’s postal address.
────────────────────────────────────────
3. PRINCIPLES AND LEGAL BASES
3.1. The Operator processes personal data on the principles of lawfulness, fairness, purpose limitation, compatibility with collection purposes, no merging of incompatible databases, data minimisation, accuracy, storage limited to what purposes require, and destruction when purposes end or on other lawful grounds.
3.2. Legal bases include:
- data subject consent;
- performance of a contract where the subject is a party, beneficiary or surety, or conclusion of a contract on the subject’s initiative;
- processing necessary for the Operator’s legitimate interests where rights of the subject are not overridden;
- other bases under the Personal Data Law.
────────────────────────────────────────
4. CATEGORIES OF DATA SUBJECTS
- users of any Website;
- registered users (players) of software and the gaming system;
- persons contacting the Operator (forms, support).
────────────────────────────────────────
5. CATEGORIES OF PERSONAL DATA
5.1. Account and app use may involve: login, nickname, password hash or credential identifier, e-mail, phone if provided, social or SSO identifiers, in-app purchases, gameplay content, support messages, images (avatar, uploads), technical device/connection data.
5.2. Automatically on Websites and apps: IP address, request time, browser/device data, cookies and similar, session IDs, on-site actions within web analytics scope.
5.3. Video chat, camera and microphone: only for purposes stated in the interface (video chat; optional avatar in mobile apps on user action).
5.4. The Operator does not use the Websites to process special-category or biometric personal data within the meaning of Articles 10-11 of the Personal Data Law, unless otherwise required by separate consent and Russian law.
────────────────────────────────────────
6. PURPOSES
- provide Website, game and app functionality, registration and accounts;
- identify users in the Operator’s and affiliates’ app ecosystem;
- perform agreements, record services and virtual items under service rules;
- send service notices about games and accounts (push, e-mail, social notifications where technically possible);
- handle support;
- statistical and analytics review of Website traffic and performance;
- improve products, security, fraud prevention and rule compliance;
- comply with mandatory laws of the Russian Federation.
────────────────────────────────────────
7. HOW PROCESSING IS CARRIED OUT
7.1. With or without automation.
7.2. The Operator may engage processors under contracts that require compliance with data protection rules.
7.3. No disclosure to third parties without a lawful basis, except as Russian law requires.
────────────────────────────────────────
8. COOKIES AND YANDEX METRICA
8.1. Cookies and similar technologies may run for site operation, preferences and, where there is consent or another lawful basis, anonymised visit statistics. The set of technologies per domain depends on its configuration.
8.2. One or more Websites may use Yandex Metrica (Yandex LLC, Russia). It may receive pseudonymous data about actions on the relevant Website (e.g. page views, navigation, technical request data) for the purposes in Section 6. See https://yandex.ru/support/metrica/
8.3. Users may restrict cookies in the browser. Disabling strictly necessary cookies may limit Website functions.
────────────────────────────────────────
9. DISCLOSURE AND CROSS-BORDER TRANSFER
9.1. Cross-border transfer may occur when the user uses payment or other services integrated into apps or a Website if those services process data outside the Russian Federation; their terms apply together with Personal Data Law rules on cross-border transfer.
9.2. The Operator does not disclose personal data to arbitrary third parties except as Russian law requires or this Policy allows (processors, lawful authority requests).
────────────────────────────────────────
10. STORAGE PERIODS
10.1. Determined by processing purposes, account lifetime, limitation periods and law.
10.2. After purposes are met or consent is withdrawn (where processing relied on consent, unless law requires retention), data are deleted or anonymised per internal procedures and the Personal Data Law.
────────────────────────────────────────
11. RIGHTS OF DATA SUBJECTS
Subjects may obtain information about processing, rectification, blocking or deletion where no lawful basis for further processing remains, withdraw consent where processing was consent-based, and challenge the Operator before Roskomnadzor or in court.
────────────────────────────────────────
12. SUBMITTING REQUESTS
Send e-mail to office@nanoflash.biz with subject “Personal data request” or post to the registered address above. The request should identify the subject (UID, login, phone or another identifier the Operator can use), include a reply contact and describe the request. Time limits follow the Personal Data Law.
────────────────────────────────────────
13. SECURITY MEASURES
The Operator applies organisational and technical measures against unlawful or accidental access, destruction, alteration, blocking, copying, dissemination and other unlawful processing.
────────────────────────────────────────
14. CHANGES TO THE POLICY
14.1. The Operator may amend the Policy. A new version takes effect when posted on the Websites (including via the canonical page and links from other Websites), unless the new version states otherwise.
14.2. Material changes should, where practicable, be announced in advance (e.g. game UI or e-mail), not later than seven days before effectiveness, unless a shorter period is required by law.
────────────────────────────────────────
15. CLOSING
This Policy applies to information the Operator may obtain about users of the Websites and related services as at the revision date stated above.