BellaExports, LLC ("BellaExports," "we," "us," "our") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit www.rustyfields.com (the "Website"), access the RustyFields Rust game server (the "Server"), or purchase from our store (the "Store").
Please read this policy carefully. By using our Website, Server, or Store, you consent to the collection and use of information in accordance with this policy.
1. Who We Are
- Legal Entity: BellaExports, LLC, a Florida limited liability company (United States)
- Email: [email protected]
- Website: https://www.rustyfields.com
This policy should be read together with our Terms & Conditions, which govern your use of the Website, Server, and Store.
2. Information We Collect
We may collect the following categories of personal information (as defined by applicable US federal and state privacy laws):
Identifiers
Name, email address, SteamID, Discord ID, username, IP address, and billing ZIP/postal code.
Commercial Information
Purchase history, order details, transaction amounts, products purchased, and coupon usage.
Internet / Network Activity
Browser type and version, pages visited, time on site, referring URLs, and device information.
Geolocation Data
Approximate location derived from IP address (city/region level only; we do not collect precise GPS data).
Account / Profile Data
Linked gaming accounts, in-game identifiers, account preferences, and linked Discord information.
3. How We Collect Your Information
Information You Provide Directly
- Creating an account or linking your Steam/Discord accounts;
- Making a purchase (name, email, ZIP code provided at checkout);
- Contacting customer support;
- Signing up for email communications.
Information Collected Automatically
- Server logs capture IP addresses, browser type, and pages accessed;
- Cookies and similar technologies (see Section 6);
- Analytics tools that measure Website usage patterns.
Information from Third Parties
- Steam (Valve Corporation): Public profile data, SteamID, display name, and avatar when you sign in via Steam;
- Discord: Discord ID, username, avatar, and server membership when you link your account;
- Stripe, Inc.: Transaction confirmation, payment status, and partial billing data (we never receive your full card number);
- Cloudflare, Inc.: Web traffic analytics and security data.
4. How We Use Your Information
We use the information we collect for the following business purposes:
| Purpose | Information Used |
|---|---|
| Process and fulfill your Store purchases and deliver Digital Items to your game account | Identifiers, Commercial Information, Account Data |
| Create and manage your account; link Steam and Discord identities | Identifiers, Account Data |
| Provide customer support and respond to inquiries | Identifiers, Commercial Information |
| Detect and prevent fraud, unauthorized transactions, and abuse | Identifiers, Internet Activity, Geolocation, Commercial Information |
| Enforce our Terms & Conditions and Server rules | Identifiers, Account Data, Internet Activity |
| Improve the Website, Server, and Store experience | Internet Activity, Geolocation |
| Send transactional communications (order confirmations, delivery notices, rule changes) | Identifiers |
| Comply with legal obligations (tax reporting, law enforcement requests) | Identifiers, Commercial Information |
5. How We Share Your Information
We may disclose your information to the following categories of service providers and third parties:
| Recipient | Purpose | Data Shared |
|---|---|---|
| Stripe, Inc. | Payment processing | Name, email, billing address, transaction details |
| Cloudflare, Inc. | Website hosting, CDN, DDoS protection, analytics | IP address, browser data, usage data |
| Game Server Hosting | Server infrastructure and delivery of in-game items | SteamID, in-game identifiers |
| Law Enforcement | Compliance with valid legal process (subpoenas, court orders) | As required by law |
| Business Transfers | In connection with a merger, acquisition, or asset sale | All categories, subject to continued protection |
Our service providers are contractually obligated to use your information only for the purposes for which it was disclosed and to maintain appropriate security measures.
6. Cookies and Tracking Technologies
What Are Cookies?
Cookies are small text files stored on your device when you visit a website. They help websites function properly, remember preferences, and understand usage patterns.
Cookies We Use
| Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Authentication, session management, shopping cart, CSRF protection. Required for the site to function. | Session – 30 days |
| Functional | Remember your preferences (theme, display settings). | Up to 1 year |
| Analytics | Help us understand how visitors use the Website (page views, traffic sources). Privacy-respecting; no cross-site tracking. | Up to 1 year |
Managing Cookies: You can configure your browser to refuse all or some cookies, or to alert you when cookies are set. Note that disabling cookies may affect login functionality and the Store checkout. We do not use advertising cookies or cross-site tracking technologies.
7. Data Security
We implement commercially reasonable technical and organizational security measures to protect your personal information, including:
- Encryption of all data in transit using TLS/HTTPS;
- Payment processing through PCI DSS-compliant providers (Stripe) — we never store full credit card numbers;
- Access controls limiting data access to authorized personnel on a need-to-know basis;
- Regular security monitoring and incident response procedures.
In the event of a data breach, we will notify affected individuals and applicable authorities as required by the Florida Information Protection Act (FIPA), Fla. Stat. § 501.171, which requires notification within 30 days of determination of a breach, and any other applicable state breach notification laws.
8. Data Retention
We retain personal information only as long as necessary for the purposes outlined in this policy:
- Account data: Retained while your account is active and for 30 days after a deletion request, except as required by law.
- Transaction records: Retained for up to 7 years after the transaction as required by IRS regulations (26 U.S.C. § 6501) and Florida tax law.
- Server logs: Automatically purged after 90 days.
- Support communications: Retained for up to 3 years for quality assurance and dispute resolution.
When personal information is no longer needed, we securely delete or anonymize it so that it can no longer be associated with you.
9. Your Privacy Rights
Depending on your state of residence, you may have the following rights under applicable US state privacy laws:
Right to Know
Request what personal information we have collected about you, the sources, and how it is used.
Right to Delete
Request deletion of personal information we have collected, subject to legal exceptions.
Right to Correct
Request correction of inaccurate personal information we maintain about you.
Right to Opt-Out
Opt out of the sale or sharing of personal information. Note: we do not sell your data.
Right to Non-Discrimination
We will not discriminate against you for exercising any of your privacy rights.
To exercise your rights: Contact us at [email protected] with your request. We will verify your identity before processing any request. We will respond within 45 days of receiving a verifiable request, as required by applicable law.
You may designate an authorized agent to submit a request on your behalf. Authorized agents must provide proof of authorization.
10. California Privacy Rights (CCPA/CPRA)
If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), provides you with specific privacy rights regarding your personal information.
Your CCPA/CPRA Rights
In addition to the rights listed in Section 9, California residents have the right to:
- Know what categories and specific pieces of personal information we have collected;
- Know the categories of sources from which personal information is collected;
- Know the business purpose for collecting personal information;
- Know the categories of third parties with whom we share personal information;
- Request portability of your data in a readily usable format;
- Limit use of sensitive personal information (if applicable — we do not collect sensitive PI as defined by the CPRA).
Disclosures for the Preceding 12 Months
| Category | Collected? | Sold? | Shared for Cross-Context Behavioral Advertising? |
|---|---|---|---|
| Identifiers (name, email, SteamID, IP) | Yes | No | No |
| Commercial Information (purchase history) | Yes | No | No |
| Internet / Network Activity | Yes | No | No |
| Geolocation (approximate, from IP) | Yes | No | No |
To submit a CCPA/CPRA request, contact us at [email protected] with the subject line "California Privacy Request."
11. Children's Privacy (COPPA)
Our Website, Server, and Store are not directed to children under the age of 13. We do not knowingly collect personal information from children under 13, in compliance with the Children's Online Privacy Protection Act (COPPA), 15 U.S.C. §§ 6501–6506.
If you are a parent or guardian and believe your child under 13 has provided us with personal information, contact us immediately at [email protected]. We will promptly delete any such information.
We encourage minors between 13 and 18 to obtain parental consent before providing any personal information to us.
12. Email Communications (CAN-SPAM)
We comply with the CAN-SPAM Act, 15 U.S.C. § 7701 et seq., for all commercial email communications. This means:
- We will not use false or misleading subjects or email addresses;
- We will identify commercial messages as advertisements where required;
- We will include our physical mailing address or a valid P.O. Box in commercial emails;
- We will honor opt-out/unsubscribe requests within 10 business days;
- We will not sell, rent, or share your email address with third parties for their marketing purposes.
Transactional emails — such as order confirmations, delivery notifications, and security alerts — are not marketing communications and are not subject to opt-out, as they are necessary for providing the services you requested.
To unsubscribe from marketing emails, click the "Unsubscribe" link at the bottom of any marketing email, or email us at [email protected].
13. Third-Party Links
The Website may contain links to third-party websites and services, including Steam, Discord, and game-related platforms. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.
Key third-party privacy policies:
14. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will:
- Update the "Last Updated" date at the top of this page;
- Post a notice on the Website or send an email notification for significant changes;
- Maintain prior versions upon request.
Your continued use of the Website, Server, or Store after changes are posted constitutes acceptance of the updated policy.
15. Contact Us
If you have questions about this Privacy Policy, wish to exercise your privacy rights, or have concerns about how your information is handled:
- Email: [email protected]
- Website: https://www.rustyfields.com
If you believe your privacy rights have been violated, you may also file a complaint with the Federal Trade Commission (FTC) or your state's Attorney General.
© 2026 BellaExports, LLC. All rights reserved.