Home / Store Privacy Policy
Store Privacy Server Privacy Support Terms of Service Refund Policy

Store Privacy Policy

Last Updated: 26 February 2026  ·  Effective Date: 26 February 2026

1. Introduction

1.1 This Store Privacy Policy ("Policy") governs the collection, processing, storage, and disclosure of personal data by FujiCraft ("we," "us," "our") in connection with the operation of our webstore (the "Store").

1.2 By completing a purchase or otherwise interacting with the Store, you acknowledge that you have read, understood, and consent to the practices described in this Policy.

1.3 This Policy applies exclusively to data collected through the Store. For data collected through our Minecraft game server(s), please refer to our separate Server Privacy Policy.

2. Data Controller

2.1 The data controller responsible for your personal data is FujiCraft, contactable at fujicraftmc@gmail.com.

3. Personal Data We Collect

3.1 Transaction Data. When you make a purchase, we collect:

  • Your Minecraft username and associated UUID;
  • Your email address, as provided at checkout;
  • The transaction amount, currency, and date;
  • The Stripe PaymentIntent ID and Stripe Customer ID, where applicable;
  • Any coupon codes, gift card codes, or creator codes applied to the transaction.

3.2 Technical Data. We automatically collect:

  • Your IP address at the time of checkout;
  • Browser user-agent string and approximate geographic region derived from IP;
  • Session tokens and cookies necessary for checkout functionality.

3.3 Subscription Data. For recurring subscription purchases, we additionally collect subscription status, billing cycle and renewal dates, cancellation requests and timestamps, and email verification tokens used to authenticate subscription management actions.

3.4 We do not collect, store, or have access to full payment card numbers, CVV codes, or banking credentials. All payment data is processed directly by Stripe, Inc. pursuant to their own Privacy Policy and PCI-DSS certification. We receive only tokenised references and summary data from Stripe.

4. Legal Basis for Processing

4.1 We process your personal data on the following legal bases:

  • Contractual necessity (Art. 6(1)(b) GDPR): Processing is required to fulfil your purchase, deliver digital goods, manage your subscription, and provide post-sale support.
  • Legal obligation (Art. 6(1)(c) GDPR): We retain certain transaction records to comply with applicable tax, financial reporting, and consumer protection laws.
  • Legitimate interests (Art. 6(1)(f) GDPR): We process IP addresses and behavioural data to detect fraud, prevent chargeback abuse, and maintain Store security and integrity.
  • Consent (Art. 6(1)(a) GDPR): Where we send optional transactional communications beyond those strictly necessary to fulfil your order, we rely on consent, which you may withdraw at any time.

5. How We Use Your Data

5.1 We use collected data to process and fulfil digital goods purchases; manage recurring subscription billing and cancellation; detect, investigate, and prevent fraudulent transactions and chargebacks; respond to support requests; comply with legal obligations; and enforce our Terms of Service and Refund Policy.

5.2 We do not sell, rent, or trade your personal data to third parties for marketing purposes.

6. Data Sharing and Third-Party Processors

6.1 We share personal data with the following categories of third-party processors, each engaged under appropriate data processing agreements:

  • Stripe, Inc. — payment processing, fraud detection, and subscription billing management.
  • Hosting and infrastructure providers — for Store hosting, database management, and CDN services.
  • Email service providers — for transactional emails such as purchase confirmations and subscription notices.

6.2 We may disclose personal data to law enforcement, regulatory authorities, or legal counsel if required by applicable law, court order, or to protect our legal rights.

7. Data Retention

7.1 Transaction records are retained for a minimum of seven (7) years from the date of transaction to comply with applicable financial and tax regulations.

7.2 Subscription records are retained for the duration of the active subscription and for three (3) years following cancellation or expiry.

7.3 IP address logs associated with transactions are retained for twelve (12) months for fraud prevention purposes.

7.4 Upon expiry of applicable retention periods, data is securely deleted or anonymised.

8. Your Rights

8.1 Depending on your jurisdiction, you may have the right to access, rectify, erase, restrict, or port your personal data, and to object to processing based on legitimate interests. To exercise these rights, submit a written request to fujicraftmc@gmail.com. We will respond within thirty (30) days.

8.2 If you are located in the EEA or UK, you may lodge a complaint with your local supervisory authority. If you are a California resident, see Section 10 below.

9. GDPR — EEA and UK Residents

9.1 If you reside in the EEA or UK, the General Data Protection Regulation (GDPR) or UK GDPR applies to processing of your personal data. Our lawful bases are set out in Section 4. We do not engage in automated decision-making or profiling that produces legal or similarly significant effects.

10. CCPA — California Residents

10.1 If you are a California resident, the CCPA as amended by the CPRA grants you the right to know what personal information is collected, the right to delete, the right to correct, and the right to opt out of the sale or sharing of personal information. We do not sell or share personal information for cross-context behavioural advertising. To submit a CCPA request, contact fujicraftmc@gmail.com. We will respond within forty-five (45) days.

11. Children's Privacy

11.1 The Store is not directed at children under the age of thirteen (13). We do not knowingly collect personal data from children under thirteen. If we become aware that we have collected such data, we will take steps to delete it promptly.

12. Security

12.1 We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. No method of electronic transmission is entirely secure; we cannot guarantee absolute security and disclaim liability for breaches beyond our reasonable control.

13. Changes to This Policy

13.1 We reserve the right to amend this Policy at any time. Material changes will be communicated by updating the "Last Updated" date. Continued use of the Store following such changes constitutes acceptance.

14. Contact

14.1 All privacy-related inquiries should be directed to: fujicraftmc@gmail.com.