At our games, safeguarding your privacy is a cornerstone of our operations. This comprehensive Privacy Policy outlines how we collect, utilize, protect, and share information across our services, including mobile applications, websites, and related platforms. We may periodically revise this policy to reflect evolving practices, legal requirements, or technological advancements. Your continued use of our services constitutes acceptance of these terms.
The scope and nature of data collection depend on your interactions with our products, your device settings, and the functionalities you engage with. Below, we categorize the types of data we may gather:
- System Identifiers: SDK, API, or JavaScript versions, Internet Service Provider (ISP), IP address, platform type (iOS/Android), and timestamps.
- Device Metadata: Manufacturer, model, operating system version, unique identifiers (e.g., IDFA for iOS, Google Advertising ID for Android), MAC address, and network status (WiFi, cellular).
- Performance Metrics: CPU usage, battery consumption, storage capacity, and hardware diagnostics to optimize app functionality.
- Session Data: Start/end times of app usage, frequency of access, in-app navigation patterns, and crash reports.
- Localization Details: Language preferences, and time zone settings.
- Optional submissions such as customer support inquiries, survey responses, or social media interactions may include email addresses, usernames, or feedback.
We process your information to deliver, enhance, and personalize your experience, guided by the following objectives:
- Ensure seamless app performance, troubleshoot errors, and adapt features to device capabilities.
- Analyze aggregated usage trends to prioritize updates, introduce functionalities, or retire underutilized components.
- Partnering with ad networks (e.g., Google Admob, Facebook Audience Network, Unity Ads), we enable behaviorally targeted ads based on:
- Demographic profiles: Age, gender, inferred interests.
- Cross-platform insights: Data shared by third-party platforms (with user consent).
- Opting into personalized ads enhances relevance but does not increase ad frequency. You may adjust preferences via device settings or in-app controls.
- Detect and mitigate fraudulent activities, unauthorized access, or breaches.
- Fulfill tax reporting, accounting mandates, or lawful government requests.
- Send service-related notifications (e.g., updates, security alerts).
- With consent, deliver promotional offers, newsletters, or event invitations.
We collaborate with third parties under strict contractual obligations to uphold privacy standards:
- Analytics Firms (e.g., Firebase, Adjust): Monitor user engagement, retention rates, and feature performance.
- Cloud Hosting Platforms (e.g., AWS, Google Cloud): Securely store and manage data.
- Customer Support Tools: Facilitate ticketing systems and live chat functionalities.
Ad networks utilize device IDs, IP addresses, and browsing history to:
- Serve contextually relevant ads.
- Measure campaign effectiveness (e.g., click-through rates, conversions).
- Prevent ad fraud through impression validation.
- Google - click to read more
- Adjust - click to read more
- Applovin - click to read more
- Share data when compelled by subpoenas, court orders, or governmental investigations.
- Disclose information to protect our rights, user safety, or public welfare.
- In mergers, acquisitions, or asset sales, user data may transfer to successors under confidentiality agreements.
For users in the European Economic Area (EEA) or United Kingdom (UK), processing aligns with the following legal frameworks:
- Executing terms of service, processing payments, or providing customer support.
- Balancing our operational needs against user rights, such as:
- Enhancing cybersecurity protocols.
- Conducting market research to refine user experience.
- Preventing financial fraud or intellectual property infringement.
- Adhering to tax laws, anti-money laundering regulations, or data retention statutes.
- For non-essential activities like email marketing, cross-device tracking, or sensitive data processing. Consent is revocable via account settings or direct requests.
As a global entity, data may traverse borders for processing. Transfers outside the EEA/UK employ safeguards such as:
- Adequacy Decisions: Hosting data in jurisdictions recognized by the EU Commission (e.g., Japan, Canada).
- Standard Contractual Clauses (SCCs): Legally binding agreements with vendors to enforce GDPR-level protections.
- Binding Corporate Rules (BCRs): Internal policies governing multinational data handling.
We implement a layered defense strategy to safeguard your information:
- Encryption: AES-256 encryption for data at rest and TLS 1.2+ for in-transit communications.
- Access Controls: Role-based permissions, multi-factor authentication, and routine audits.
- Incident Response: 24/7 monitoring, breach notification protocols, and forensic investigations.
- Employee Training: Annual workshops on phishing prevention, data minimization, and regulatory updates.
Our services do not target users under 13 (or 16 in the EEA/UK). If inadvertent collection occurs, contact us immediately for data deletion. Parental oversight tools, such as account activity dashboards, are available upon verification.
Subject to jurisdictional laws, you may:
- Access/Portability: Request a copy of your data in machine-readable format.
- Rectification: Update inaccurate or incomplete profiles.
- Erasure: Demand deletion under "right to be forgotten" statutes.
- Restriction/Objection: Limit processing during disputes or opt out of non-essential uses.
- Withdraw Consent: Revoke permissions for marketing or third-party sharing.
To exercise these rights, submit a verifiable request via [email/portal]. Response times may vary based on request complexity and legal mandates.
We retain data only as long as necessary:
- Transactional Records: 7 years for tax compliance (varies by jurisdiction).
- Marketing Data: Until consent withdrawal or account termination.
- Anonymized Analytics: Indefinitely, stripped of personally identifiable markers.
Our apps/websites may link to external sites (e.g., social media, forums). We disclaim responsibility for their privacy practices. Review their policies before sharing data.
For inquiries, complaints, or regulatory filings, reach our Data Protection Officer (DPO) at: Email: [SandPopService@outlook.com]