This Privacy Policy explains how CREATIVEIMAGEAI LTD (“Company”, “we”, “us”, “our”) collects, uses, and protects personal data when you access or use noclipskins.com (the “Website” or the “Platform”).
We are committed to handling personal data in a transparent and secure manner and in accordance with applicable data protection laws, including the UK GDPR and the Data Protection Act 2018.
1. Data Controller
CREATIVEIMAGEAI LTD
Company number: 16694311
Registered office: 128 City Road, London, United Kingdom, EC1V 2NX
Email: support@noclipskins.com
For the purposes of data protection legislation, the Company acts as the Data Controller.
2. Categories of Personal Data We Collect
Depending on how you use the Platform, we may collect the following categories of data:
2.1 Information you provide directly
· name and contact details (such as email address);
· account credentials and profile information;
· communications with our support team.
2.2 Transaction and payment-related data
· records of transactions and payouts;
· limited payment identifiers provided by payment service providers;
· confirmation of payment or payout status.
Note: we do not store full card numbers or sensitive authentication data.
2.3 Verification and compliance data
· identity verification information required for KYC/AML purposes;
· documents or data necessary to comply with legal and regulatory obligations.
2.4 Technical and usage data
· IP address, device information, browser type;
· log files, access times, and interaction data;
· cookies and similar technologies (see our Cookie Policy).
3. Purposes of Processing
We process personal data for the following purposes:
· to provide and operate the Platform;
· to create and manage user accounts;
· to process transactions, payouts, and related requests;
· to prevent fraud, abuse, and unauthorised activity;
· to comply with legal and regulatory requirements, including AML/KYC obligations;
· to communicate with users regarding service updates and support enquiries;
· to improve the functionality and security of the Platform.
4. Legal Bases for Processing
We rely on the following legal bases under applicable data protection law:
· performance of a contract — to provide the services you request;
· legal obligation — to comply with financial, tax, and regulatory requirements;
· legitimate interests — to maintain Platform security, prevent fraud, and improve our services;
· consent — where required for specific processing activities, such as non-essential cookies.
5. Sharing of Personal Data
We may share personal data only where necessary and in accordance with this Policy, including with:
· payment service providers and banks for transaction processing;
· identity verification and compliance partners for KYC/AML checks;
· fraud-prevention and security providers;
· professional advisers (legal, accounting, compliance);
· public authorities or regulators where disclosure is required by law.
We do not sell or rent personal data to third parties.
6. International Data Transfers
Where personal data is transferred outside the United Kingdom or the European Economic Area, we ensure appropriate safeguards are in place, including:
· Standard Contractual Clauses approved by relevant authorities;
· other lawful transfer mechanisms recognised under data protection law.
7. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes described in this Policy and to comply with legal obligations, including:
· KYC/AML records — typically retained for at least 5 years after the end of the business relationship;
· financial and transaction records — retained in accordance with statutory accounting and tax requirements;
· support communications — retained for operational and audit purposes.
8. Your Rights
Subject to applicable law, you have the right to:
· request access to your personal data;
· request correction of inaccurate or incomplete data;
· request erasure of your data in certain circumstances;
· restrict or object to specific processing activities;
· withdraw consent where processing is based on consent;
· request data portability, where applicable.
9. Security Measures
We implement appropriate technical and organisational measures to protect personal data, including:
· encryption of sensitive information;
· access controls and authentication mechanisms;
· monitoring systems designed to detect suspicious or unauthorised activity.
We also work only with partners that apply recognised security and compliance standards, including PCI DSS where payment data is involved.
10. Automated Decision-Making
Certain processes, such as fraud detection or compliance screening, may involve automated systems.
These measures are implemented to protect users and the Platform and do not produce legal effects concerning individuals without appropriate safeguards.
11. Children’s Privacy
The Platform is not intended for individuals under the age of 18.
We do not knowingly collect personal data from minors. If we become aware that such data has been collected, we will take steps to delete it promptly.
12. Updates to This Policy
We may update this Privacy Policy from time to time to reflect changes in law, technology, or our operations.
The updated version will be published on the Platform with a revised “Last updated” date. Continued use of the Platform constitutes acceptance of the updated Policy.
13. Contact Us
If you have any questions about this Privacy Policy or our data protection practices, please contact:
