1. Who we are and who controls your information
This privacy policy explains how Blue Donut Games Ltd and Blue Donut Studios Limited use personal information collected through this website and related Horror in the Library enquiries.
Company number: 13340157
Registered office: 8 Spur Road, Cosham, Portsmouth, England, PO6 3EB
Company number: 09592070
Registered office: 8 Spur Road, Cosham, Portsmouth, England, PO6 3EB
Depending on your interaction, the relevant controller may be Blue Donut Games Ltd, Blue Donut Studios Limited, or both. For example, board game purchases and retail enquiries will usually relate to Blue Donut Games Ltd, while digital game, VR, pitch deck, press and studio enquiries may relate to Blue Donut Studios Limited.
2. Information we collect
We may collect information you provide through forms, purchases, newsletter sign-ups, demo requests, translation requests, pitch deck requests, press enquiries, creator video submissions, shopping support messages and event enquiries.
- Identity and contact details, such as name, email address, company, role, country and website.
- Order and delivery details needed to fulfil direct purchases.
- Message content and preferences you submit through forms.
- Technical information such as IP address, browser type, device type, pages visited and basic server logs.
- Consent and preference information, such as newsletter or cookie choices.
We do not intentionally collect payment card numbers through this website. Card payments are handled by Stripe or another payment provider if added in future.
3. How we use information
We use personal information to operate the website, respond to enquiries, process orders, provide downloads or demo access, send requested updates, manage press and creator relationships, support retailers, prevent misuse and improve our products and services.
| Purpose | Examples | Likely lawful basis |
|---|---|---|
| Orders and fulfilment | Processing purchases, delivery, customer service, returns | Contract, legal obligation, legitimate interests |
| Enquiries and support | Shopping questions, rules questions, press requests, retailer support | Legitimate interests, contract where relevant |
| Newsletter and launch updates | Email updates when you sign up | Consent, or soft opt-in where legally available |
| Demo and pitch deck requests | Assessing requests, replying, sharing access links or decks | Legitimate interests, consent where appropriate |
| Website security and performance | Server logs, spam prevention, troubleshooting | Legitimate interests, legal obligation where relevant |
| Analytics and optional cookies | Understanding website use if analytics are added | Consent, unless a lawful exemption applies and the setup meets the relevant conditions |
4. Stripe and payment providers
If you buy through Stripe, Stripe processes payment information under its own terms and privacy notice. We receive order/payment confirmation information needed to fulfil and support the order, but we do not receive your full card details.
5. Who we share information with
We may share personal information with service providers where needed to operate the website and business, including payment providers, hosting providers, email providers, delivery/shipping providers, spam/security tools, analytics providers where used, professional advisers and public authorities where required by law.
We do not sell your personal information to advertisers or unrelated third parties.
6. International transfers
Some third-party services, such as payment providers, email tools, analytics platforms, video platforms, cloud hosting or ticketing/event platforms, may process information outside the UK. Where required, we rely on appropriate safeguards or the provider’s published transfer mechanisms.
7. How long we keep information
We keep personal information only for as long as needed for the relevant purpose. Order, payment, tax and accounting records may be kept for statutory retention periods. Enquiry records are kept for as long as needed to respond and manage the relationship. Newsletter details are kept until you unsubscribe or we stop sending the relevant updates.
8. Your rights
Under UK data protection law, you may have rights to access, correct, delete, restrict or object to the use of your personal information, and to request portability in certain cases. Where we rely on consent, you can withdraw consent at any time.
You also have the right to complain to the Information Commissioner’s Office if you are unhappy with how your information is handled, although we would appreciate the chance to resolve your concern first.
9. Marketing and newsletters
If you sign up for updates, we may send relevant emails about Horror in the Library, Blue Donut Games, Blue Donut Studios, GameCrowd, events, launches, products, demos or related projects. You can unsubscribe using the link in the email or by contacting us.
We aim to avoid spammy, irrelevant or excessive messaging.
10. Children
This website is not aimed at young children. If you believe a child has provided personal information without appropriate permission, contact us so we can review and remove it where appropriate.
11. Security
We use reasonable technical and organisational measures to protect personal information. No website or email system can be guaranteed completely secure, so please do not send sensitive payment details or confidential information through ordinary contact forms.
12. Changes to this policy
We may update this privacy policy as the website, products, checkout, analytics or services change. The latest version will be published on this page.