Privacy Policy

Version 1.0 – Last updated: 26.08.2025

1. Privacy at a glance

General information

This section provides a brief overview of what happens to your personal data when you visit our website. Detailed explanations can be found in the sections below.

Who is responsible?

The controller responsible for data processing on this website is specified in section 2. General information and mandatory details.

How do we collect your data?

Directly from you – e.g. via forms (contact, registration).
Automatically when you visit – e.g. technical usage data (IP address, browser, operating system, time, referrer). These are mainly collected in server log files.

What do we use your data for?

To ensure the technical availability and security of the website (e.g. load balancing, prevention of misuse/spam).
To provide features you request, such as user accounts, support, or contact forms.

Cookies & similar technologies

We only use technically necessary cookies, which are essential for the operation and security of our website (e.g. session cookies, consent cookies). These cookies do not store personal data for analytics, marketing, or tracking purposes. Legal basis: Art. 6 (1) lit. f GDPR in conjunction with § 25 (2) TTDSG (legitimate interest in a functional and secure website).

Your rights

You have the right to access, rectification, erasure, restriction of processing, data portability, and the right to object to processing based on Art. 6 (1) lit. e or f GDPR. You also have the right to lodge a complaint with a supervisory authority. For details see section 2.9 Your rights.

2. General information and mandatory details

2.1 Controller

Christopher Borchert
Weizengrund 7
39130 Magdeburg, Germany
E-mail: christopher.borchert@crazy-esports.com

2.2 Contact for privacy inquiries

For requests regarding your rights or general privacy questions, please use the contact details above.

2.3 Data protection officer

No data protection officer has been appointed. An appointment will be made if the legal requirements under Art. 37 GDPR/§ 38 BDSG are met. Until then, the controller remains your point of contact.

2.4 Legal bases for processing

Art. 6 (1) lit. b GDPR – Contract/performance (e.g. accounts, support, ticket handling).
Art. 6 (1) lit. c GDPR – Legal obligations (e.g. tax and commercial law retention).
Art. 6 (1) lit. f GDPR – Legitimate interests (e.g. IT security, misuse prevention, web operations).

2.5 Categories of recipients

IT/hosting providers, technical service providers, e-mail/newsletter services.
Providers of embedded content (e.g. captcha services), if you use these features.

No transfer to third parties for marketing purposes takes place.

2.6 Data transfers to third countries

Transfers to third countries (outside the EU/EEA) generally do not occur, unless necessary for certain functions and only with appropriate safeguards (e.g. EU standard contractual clauses).

2.7 Storage period

We process and store personal data only as long as necessary for the respective purpose. Statutory retention periods (e.g. 6 or 10 years under HGB/AO) and limitation periods apply. After the purpose has been fulfilled or the period has expired, data will be routinely deleted or anonymized.

2.8 Data security

We use TLS/SSL encryption, role-based access control, and other technical and organizational measures to protect your data. This includes regular backups, system monitoring, and access restricted to authorized persons only. Nevertheless, data transmission over the Internet (e.g. by e-mail) may have security gaps.

2.9 Your rights

Access (Art. 15 GDPR), Rectification (Art. 16), Erasure (Art. 17), Restriction (Art. 18), Data portability (Art. 20).
Objection to processing based on Art. 6 (1) lit. e/f GDPR including profiling (Art. 21 GDPR); objection to direct marketing at any time.
Withdrawal of consent (Art. 7 (3) GDPR) with effect for the future.
Right to lodge a complaint with a supervisory authority. The competent authority is the Data Protection Commissioner of Saxony-Anhalt, P.O. Box 1947, 39009 Magdeburg, Otto-von-Guericke-Straße 34a, 39104 Magdeburg, Germany. Phone: +49 391 81803-0, E-mail: poststelle@lfd.sachsen-anhalt.de, Website: https://datenschutz.sachsen-anhalt.de.

2.10 Obligation to provide data / Automated decision-making

The provision of certain data may be required for the conclusion or performance of a contract. Without this data, services may not be available. No automated individual decision-making, including profiling, takes place.

2.11 Protection of minors

Our services are not directed at children under the age of 16. We do not knowingly collect or process personal data of children. If we become aware that data has been collected without the necessary parental consent, we will delete it immediately.

3. Data collection on our website

3.1 Server log files

When visiting our website, the respective provider automatically collects and stores information in so-called server log files that your browser automatically transmits. These include:

Browser type and version
Operating system used
Referrer URL
Host name of the accessing computer
Time of the server request
IP address (shortened or pseudonymized where possible)

These data will not be merged with other data sources.

Hosting providers:
• The main website (crazy-esports.com) is hosted by all-inkl.com (Neue Medien Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany).
• Other systems and services are operated on our own servers at Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany.

Legal basis: Art. 6 (1) lit. f GDPR (legitimate interest in secure and functional website operation).

3.2 Contact form & communication

If you contact us via contact form or e-mail, the data you provide, including your contact details, will be stored by us for the purpose of processing your request and in case of follow-up questions. We will not share this data without your consent.

Legal basis:
• Art. 6 (1) lit. b GDPR – processing your request (pre-contractual or contractual measures).
• Art. 6 (1) lit. f GDPR – legitimate interest in efficient handling of inquiries.

The data entered in the contact form will remain with us until you request deletion, revoke your consent, or the purpose for storing the data no longer applies (e.g. after your request has been processed). Statutory retention periods remain unaffected.

3.3 User accounts & registration

If you create a user account on our website, we store the data you enter (e.g. username, e-mail address, password) as well as any additional voluntary information you provide during use. This data is used exclusively to manage your account and provide the features you request.

Legal basis: Art. 6 (1) lit. b GDPR (contract/performance) and Art. 6 (1) lit. f GDPR (IT security, prevention of misuse).

Your data remains stored as long as the account is active. You may delete your account at any time; statutory retention periods remain unaffected.

3.4 Newsletter

If we offer a newsletter, you may subscribe voluntarily. We require a valid e-mail address and confirmation that you are the owner of the provided e-mail address (double opt-in). No further data is collected or only on a voluntary basis.

Processing of the data entered in the newsletter form is based solely on your consent (Art. 6 (1) lit. a GDPR). You can revoke consent at any time, e.g. via the “unsubscribe” link in the newsletter. The legality of data processing carried out before revocation remains unaffected.

The data you provide for newsletter subscription will be stored until you unsubscribe and then deleted.

3.5 Payment provider PayPal

If you pay via PayPal, the payment data you enter will be transmitted to PayPal. The controller is PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg.

Your data will be transmitted to PayPal on the basis of Art. 6 (1) lit. b GDPR (contract performance) and Art. 6 (1) lit. f GDPR (legitimate interest in secure and easy payment). If consent is required, processing is based on Art. 6 (1) lit. a GDPR; you may revoke consent at any time.

PayPal may carry out credit checks based on mathematical-statistical methods (scoring) and transmit data to credit agencies. The result may influence the availability of certain payment methods.

Further privacy information, including the agencies used, can be found in PayPal’s privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

4. Embedded services & plugins

4.1 Google reCAPTCHA

To protect forms, we may use Google reCAPTCHA. Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. reCAPTCHA helps distinguish input by humans from automated misuse. Various data (e.g. IP address, mouse movements, dwell time) may be transmitted to Google.

Legal basis: Art. 6 (1) lit. f GDPR (legitimate interest in protection against misuse and spam). If consent is given via cookie banner: Art. 6 (1) lit. a GDPR. Data transfers to the USA are based on EU standard contractual clauses. More info: https://policies.google.com/privacy.

4.2 YouTube

Our website may embed YouTube videos. Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When a page with an embedded YouTube video is loaded, a connection to YouTube servers is established, informing YouTube which page you visited.

Legal basis: Art. 6 (1) lit. f GDPR (legitimate interest in attractive online presentation) or Art. 6 (1) lit. a GDPR (consent via banner). Data transfers to the USA are based on EU standard contractual clauses. More info: https://policies.google.com/privacy.

4.3 Google Maps

Our website may embed map content from Google Maps. Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. To use Google Maps features, your IP address needs to be stored. This information is usually transmitted to Google servers in the USA.

Legal basis: Art. 6 (1) lit. f GDPR (legitimate interest in user-friendly geographic presentation) or Art. 6 (1) lit. a GDPR (consent). Data transfers to the USA are based on EU standard contractual clauses. More info: https://policies.google.com/privacy.

4.4 Support systems (OSTicket Plus, Zammad)

To process support requests, we use support systems (e.g. OSTicket Plus, Zammad). When you create a ticket via these systems, the data you provide (e.g. name, e‑mail address, request content) is stored and used to handle your request. Processing is strictly purpose-bound. No data will be passed on to third parties.

Legal basis: Art. 6 (1) lit. b GDPR (handling your request) and Art. 6 (1) lit. f GDPR (efficient support processes). Your data will be deleted after completion of the process or upon expiry of statutory retention periods.

4.5 Development platforms (Gitea, GitHub)

Gitea (self-hosted)

We operate our own development platform (Gitea) where users can voluntarily create accounts. Personal data such as username, e‑mail address and optional profile information are processed. This data is stored exclusively on our servers and not transferred to third parties. Legal basis: Art. 6 (1) lit. b GDPR (user account/contract performance) and Art. 6 (1) lit. f GDPR (operating a development platform).

GitHub (external provider)

For certain projects, we use GitHub. Provider: GitHub Inc., 88 Colin P. Kelly Jr. Street, San Francisco, CA 94107, USA. If you create an account there or interact with our projects (e.g. issues, pull requests), personal data (e.g. username, e‑mail, contributions) will be processed by GitHub and transferred to the USA. Legal basis: Art. 6 (1) lit. b GDPR (user account/project participation) or Art. 6 (1) lit. f GDPR (collaboration in developer communities). Transfers to the USA are based on EU standard contractual clauses. Further information: GitHub Privacy Statement.

4.6 Social media & community platforms

We maintain public profiles on various social networks and community platforms (e.g. Discord, Facebook, X/Twitter, Instagram). When you visit these profiles, the privacy policies of the respective providers apply. When using them, personal data (e.g. IP address, usage data) may be processed by the platform operators and possibly transferred to third countries.

We have no full influence on the data processing by these providers. Processing is based on our legitimate interest in modern communication and public relations (Art. 6 (1) lit. f GDPR). If you are a user of the respective platform, processing may also be based on your consent given to the platform provider (Art. 6 (1) lit. a GDPR).

Further information from the providers:
• Discord: https://discord.com/privacy
• Facebook/Meta: https://www.facebook.com/privacy/policy
• X/Twitter: https://twitter.com/en/privacy
• Instagram: https://privacycenter.instagram.com

5. Changes to this privacy policy

We reserve the right to amend this privacy policy to ensure it always complies with current legal requirements and reflects changes to our services (e.g. the introduction of new features). The current version applies to your subsequent visits.

We will inform you appropriately about material changes that affect your rights or the purposes of processing (e.g. by notices on the website).

Our Community → Discord

Support • News • Events

Enjoy playing with us? Support the server with a quick vote — and stay up to date on Discord.

Join Discord

Announcements, support, patch notes, and events — all in one place.

Join →

Vote on TopOfMMOs

Helps our ranking and improves visibility for the server.

Vote →

Vote on GTop100

Supports the project long-term — only takes a few seconds.

Vote →

Note: Voting takes only a few seconds and helps us a lot to build reach and keep the project running long-term.