Privacy Policy — myBalls
Effective date:
Who we are
GoodAF (“we”, “us”) develops and operates myBalls. We are the data controller for personal data processed through the app.
What the app does
You can play either:
- as a Guest (local play, no online account), or
- with an Online Account (nickname and optional country; global leaderboards).
Data we process
A) Guest (local play)
- Stored only on your device: nickname, local scores, in‑app settings.
- We do not transmit Guest data to our servers.
- Ads SDK (Google Mobile Ads/AdMob) may independently collect advertising/device identifiers and related signals to serve ads, measure performance, and prevent fraud. See “Third‑party SDKs”.
B) Online Account (server)
- Account data: nickname, country, recovery key hash (not the key), auth token and expiry, timestamps.
- Gameplay data: best scores per mode/board size, ranking metadata.
- Purpose: account management, leaderboards, fraud prevention, service integrity.
- Storage: Google Firebase / Firestore (EU region where available).
Categories of data (summary)
- Identifiers: advertising identifier (from Ads SDK), auth token (account only).
- App activity: gameplay scores and ranking metadata (account only).
- Device data: coarse device/network signals collected by Ads SDK for delivery, measurement, and safety.
Third‑party SDKs
We integrate Google Mobile Ads (AdMob) and the User Messaging Platform (UMP):
- AdMob processes advertising/device identifiers and signals to show ads, measure performance, and protect against abuse.
- UMP is used to obtain and store consent in the EEA/UK/CH and to provide an in‑app “Privacy options” entry point.
Data is encrypted in transit. For more information about Google’s handling of data and ads, see:
- Google Privacy Policy
- How Google uses information from sites or apps that use Google services
- Advertising (cookies & technologies)
- My Ad Center — control the ads you see
Developer documentation (optional): Play data disclosure for the Mobile Ads SDK, UMP SDK docs, EU User Consent Policy.
Legal bases (EEA/UK/CH)
- Contract / performance — to provide account and leaderboard features.
- Legitimate interests — to prevent fraud and maintain service security.
- Consent — where required for advertising identifiers and personalization (managed via UMP).
Sharing
We do not sell personal data. We share data only with service providers acting on our behalf (e.g., Google Firebase / Cloud Functions / Firestore, Google Mobile Ads) to operate the app.
Retention
- Guest data: remains on your device until you uninstall the app or use the in‑app “Delete account” option (removes the local profile).
- Online account data: retained while your account is active. On deletion request, we remove your user record, username reservation, and leaderboard entries. Residual data may persist in backups for a limited period.
Your choices & rights
- Consent (EEA/UK/CH): manage at any time via Settings → Privacy (invokes UMP “Privacy options”).
- Delete account: in‑app via Settings → Delete account.
- Data rights: you may request access, correction, or deletion of your personal data by contacting us.
Children
The app is not directed to children under 13. We do not knowingly process data of children under 13.
Security
We use industry‑standard protections (e.g., TLS in transit; Google Mobile Ads SDK encrypts data in transit). Keep your recovery key private.
International transfers
Our providers (Google Firebase / Google Cloud, Google Ads) may process data in various regions. We rely on appropriate safeguards offered by those providers.
Changes
We may update this policy from time to time. We will post changes here with a new effective date.
Contact
This document is provided for information purposes for your app. It is not legal advice.