Privacy Policy

How we collect, use, and protect your information

Information We Collect

Account Information

  • Firebase Authentication ID (auto-generated)
  • Username or display name (if provided)
  • Email address (if you choose to sign in with email)
  • Authentication method (anonymous, email, Google, etc.)

Game Data

  • Game preferences and settings
  • Game statistics and scores
  • Deck selections and customizations
  • Multiplayer game sessions (when participating)

Usage Analytics

  • Anonymous game session recordings for improvement purposes
  • Performance metrics and error logs
  • Feature usage statistics

How We Use Your Information

We use the collected information to:

  • Provide and maintain the ChronoNuts gaming experience
  • Save your game preferences and progress
  • Enable multiplayer functionality
  • Improve game features and fix bugs
  • Analyze usage patterns to improve user experience
  • Ensure security and prevent abuse

Data Protection & Security

Security Measures

  • All data is encrypted in transit using HTTPS
  • Firebase security rules protect your personal data
  • Administrator access is strictly controlled and monitored
  • Regular security audits and updates

Data Retention

  • Account data is retained while your account is active
  • Game data is stored to preserve your progress and preferences
  • Anonymous analytical data may be retained for improvement purposes
  • You can request data deletion by contacting us

Your Privacy Rights

Data Subject Rights (GDPR)

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete information
  • Erasure: Delete your account and associated data
  • Portability: Export your data in machine-readable format
  • Restriction: Limit processing of your data
  • Objection: Object to data processing for marketing purposes
  • Withdraw Consent: Revoke consent for optional data processing

How to Exercise Your Rights

  • Access your profile settings for basic data management
  • Contact us through GitHub for complex requests
  • Account deletion available through profile settings
  • Data export feature planned for future versions

Response Timeline

We will respond to privacy requests within 30 days. Complex requests may take up to 90 days with notification of the delay.

Third-Party Services

ChronoCards uses the following third-party services:

  • Firebase (Google): Authentication, database, and hosting
  • AI services: Some card content may be generated using AI services

These services have their own privacy policies. We recommend reviewing them as well.

Children's Privacy

ChronoNuts is designed to be educational and family-friendly. We do not knowingly collect personal information from children under 13 without parental consent.

If you are a parent and believe your child has provided us with personal information, please contact us immediately to have it removed.

Parents can review, edit, or delete their child's personal information by contacting us through our GitHub repository.

Mobile App Store Compliance

Google Play Store

  • This app is distributed through Google Play Store
  • We comply with Google Play Developer Program Policies
  • Currently no in-app purchases or paid content available
  • App is free to download and use
  • No advertising or third-party ad networks

Trusted Web Activity (TWA)

  • This app is built using Trusted Web Activity technology
  • Web content is served from our verified domain: chrononuts.com
  • Digital Asset Links verify domain ownership
  • Same privacy practices apply to both web and mobile versions

Updates to This Policy

We may update this privacy policy from time to time. We will notify users of any significant changes by posting the new policy on this page and updating the "Last Updated" date below.

Data Controller Information

Data Controller: ChronoNuts Development Team

Contact: Privacy inquiries can be submitted through our GitHub repository

Response Time: We aim to respond to privacy requests within 30 days

Legal Basis: We process your data based on legitimate interests (game functionality), consent (optional features), and contractual necessity (account management)

Data Retention & Geographic Processing

Retention Periods

  • Account data: Retained while your account is active, deleted within 30 days of account deletion
  • Game statistics: Retained for 2 years after last activity for performance analysis
  • Error logs: Retained for 90 days for debugging purposes
  • Anonymous analytics: Retained for 26 months for trend analysis

Data Processing Locations

  • Primary data storage: Firebase servers (Google Cloud Platform)
  • Geographic regions: United States and European Union
  • Data transfers comply with GDPR and other applicable privacy laws

Mobile App Specific Disclosures

Device Permissions

  • Internet access: Required for multiplayer games and content updates
  • Local storage: Game preferences and offline content caching
  • Notification permissions: Optional, for game updates and reminders

Local Data Storage

  • Game preferences and settings stored locally on your device
  • Offline game content cached for better performance
  • No sensitive personal data stored locally
  • Local data can be cleared through app settings

Contact Us

If you have any questions about this privacy policy or your data, please contact us through our GitHub repository or create an issue for privacy-related concerns.

Last Updated: July 25, 2025