Privacy Policy

Last Updated: June 15, 2026

Introduction

This Privacy Policy explains how Nowax Cheats ("the Company," "We," "Us," or "Our"), accessible at https://nowaxcheats.com/ ("the Website"), collects, uses, stores, and protects the personal data of visitors and clients ("the Client," "You," or "Your") of the Website, in accordance with Regulation (EU) 2016/679 ("GDPR") and other applicable data-protection law.

The Company acts solely as an independent reseller and intermediary of digital activation keys issued by third parties. This Privacy Policy forms an integral part of, and should be read together with, our Terms of Service. By accessing, browsing, registering, logging in, or otherwise using the Website or Services, you acknowledge and accept the practices described in this Privacy Policy.

If you do not agree with this Privacy Policy, you must immediately cease accessing the Website and refrain from using the Services.

Definitions

For the purposes of this Privacy Policy, the following terms shall have the meanings set forth below:

  • Personal Data: Any information relating to an identified or identifiable natural person, as defined in Article 4 GDPR.
  • Processing: Any operation performed on Personal Data, whether or not by automated means, including collection, storage, use, disclosure, and erasure.
  • Data Controller: The natural or legal person that determines the purposes and means of the Processing of Personal Data. For the Website, this is the Company.
  • Processor: A natural or legal person that processes Personal Data on behalf of the Data Controller.
  • Hardware ID (HWID): A unique identifier associated with the Client's hardware, used to authenticate and activate the Services.

Data Controller

The Company acts as the Data Controller for the Personal Data processed through the Website. You may contact Us regarding any data-protection matter, including the exercise of your rights, through the support channels provided on the Website.

Categories of Data We Collect

Depending on how you interact with the Website, We may collect and process the following categories of Personal Data:

  • Account data: username, email address, hashed password, and authentication details (including two-factor authentication and linked Discord identifiers).
  • Transaction data: records of orders, keys purchased, balances, invoices, and the payment method used. Full payment-card or account credentials are processed by our third-party payment providers and are not stored by Us.
  • Technical and usage data: IP address, Hardware ID (HWID), browser type, device and operating-system information, language settings, timestamps, page views, and activity logs.
  • Communications data: the content of support tickets, messages, and any correspondence you send Us.

Purposes and Legal Bases of Processing

We process Personal Data only where We have a lawful basis to do so under Article 6 GDPR, namely:

  • Performance of a contract (Art. 6(1)(b)): to create and manage your account, deliver and authenticate keys, process HWID activations and resets, and provide support.
  • Legal obligation (Art. 6(1)(c)): to comply with accounting, tax, and other statutory retention obligations.
  • Legitimate interests (Art. 6(1)(f)): to secure the Website, prevent fraud, chargeback abuse, and unauthorized access, enforce our Terms of Service, log IP and HWID for anti-abuse and licensing purposes, and improve our Services. We balance these interests against your rights and freedoms.
  • Consent (Art. 6(1)(a)): where you have given it, for example for certain optional cookies or communications. You may withdraw consent at any time with future effect.

Disclosure to Third Parties

We do not sell your Personal Data. We share it only where necessary, with:

  • Payment providers (e.g., PayPal, Stripe, or cryptocurrency processors) to process transactions, subject to their own privacy policies.
  • Hosting, infrastructure, and IT service providers acting as Processors on our behalf under appropriate data-processing agreements.
  • Communication platforms (e.g., Discord) where you choose to connect or contact Us through them.
  • Competent authorities, where We are required to do so by law or to protect our legal rights.

International Transfers

Where Personal Data is transferred to recipients outside the European Economic Area, We rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses or an adequacy decision, except where a derogation under Article 49 GDPR applies.

Data Retention

We retain Personal Data only for as long as necessary for the purposes set out above, including for the duration of your account and thereafter as required to comply with legal obligations (such as statutory retention periods for transactional and accounting records), to resolve disputes, and to enforce our agreements. When data is no longer required, it is deleted or anonymized.

Cookies and Similar Technologies

The Website uses cookies and similar technologies that are strictly necessary for its operation (such as session, authentication, and language-preference cookies), as well as, where applicable and subject to your consent, cookies that help Us analyze usage. You can control non-essential cookies through your browser settings or any consent mechanism provided on the Website.

Your Rights as a Data Subject

Subject to the conditions and exceptions of applicable law, you have the right to:

  • access the Personal Data We hold about you (Art. 15 GDPR);
  • request rectification of inaccurate or incomplete data (Art. 16 GDPR);
  • request erasure of your data ("right to be forgotten") (Art. 17 GDPR);
  • request restriction of processing (Art. 18 GDPR);
  • data portability (Art. 20 GDPR);
  • object to processing based on our legitimate interests (Art. 21 GDPR); and
  • withdraw any consent at any time, without affecting the lawfulness of prior processing.

To exercise these rights, contact Us through the support channels on the Website. We may need to verify your identity before responding. You also have the right to lodge a complaint with a supervisory authority in your EU member state of residence, place of work, or place of the alleged infringement.

Data Security

We implement appropriate technical and organizational measures to protect Personal Data against unauthorized access, loss, or misuse, including encryption of credentials and access controls. However, no method of transmission or storage is completely secure, and We cannot guarantee absolute security against factors beyond our reasonable control.

Minors

The Website and Services are not directed to, and may not be used by, individuals under the age of 18. We do not knowingly collect Personal Data from minors. If We become aware that we have collected such data, We will delete it.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time at our sole discretion. Changes take effect upon posting to the Website, and the "Last Updated" date above reflects the most recent revision. Your continued use of the Website following any change constitutes acknowledgment of the updated Privacy Policy.

Contact Information

For questions, concerns, or requests related to this Privacy Policy or the Processing of your Personal Data, please contact the Company through the support channels provided on the Website.

By accessing, registering, logging in, or using the Services, you acknowledge that you have read and understood this Privacy Policy.

Terms of Service Privacy Policy