Privacy Policy

How Synoos Studio collects, uses and protects data in its apps and games, plus your choices and contact details.

Synoos Studio
Last updated:

We explain plainly what we collect, why we use it and the limited cases where we share it. This Policy covers all interactions with our apps and games.

Controller

The data controller is Synoos Studio (legal entity: EURL Synoos Studio) located at Algeria Venture, Parc Dounya, Dely Brahim, Algiers, Algeria. No Data Protection Officer has been appointed (not legally required at current scale). Contact: info@synoos.com.

Information We Collect

Automatic data: device model, OS version, language, advertising IDs, IP address, and non‑personal interaction events (e.g. feature usage). We do not collect name, physical address, phone number or in‑app email fields.

Voluntary data: if you email support, we use that email solely to answer your request.

App state & minimal gameplay / feature usage data may be stored in Firebase Firestore (pseudonymous documents keyed by app instance) — no payment credentials, no precise location, and no direct identifiers (name, email) are stored there.

User Rights

If you are in the EU/EEA, UK or similar jurisdictions you may request: access, rectification, deletion, restriction, objection (including to legitimate interest processing), portability, and withdrawal of consent (without affecting prior lawful processing). California residents may request: access (categories & specific pieces), correction, deletion, information on disclosures, and to opt out of sale/share (we do not sell or share as defined). Submit requests to info@synoos.com. We may ask for limited information (e.g. device advertising ID) to verify and locate relevant data. You also have a right to lodge a complaint with your local supervisory authority (e.g. CNIL, ICO).

Partners / Processors

We use carefully selected service providers. Each only receives the minimum data needed to perform its function and is bound by contractual confidentiality & security obligations.

No data is sold; processors act only on our documented instructions.

No Sale of Data

We do not sell, rent, trade or otherwise monetize your personal or device data. Any information collected is used strictly to deliver and improve core application and gameplay features (analytics to understand crashes & performance, feature usage to prioritize updates, contextual advertising where applicable, and security / abuse prevention).

Cookies

We use: (a) strictly necessary cookies (session & preference) – required for basic site operation; (b) analytics cookies (e.g. Firebase / Google) – to understand aggregate usage & performance; (c) advertising tags (AdMob / Google) – only for ad delivery & (where consented) personalization. In the EEA/UK we request consent for non‑essential cookies; if you decline, only necessary cookies load. You can delete or block cookies via browser settings. We currently do not respond to legacy Do Not Track (DNT) signals but honor legally required consent frameworks.

In‑App Purchases

Purchases are made directly inside the iOS application through Apple’s App Store (Apple in‑app purchase system) using your Apple ID, or on other platforms via their respective official stores (e.g. Google Play). Payment credentials are handled solely by the platform; we never receive or store full card numbers or bank details. We only receive the minimal transaction confirmation (e.g. a receipt / order identifier) needed to unlock the purchased content or features.

Social Features

Our games may integrate social features (e.g. share buttons). These are provided by third parties and your use of them is governed by those providers’ privacy policies.

Children’s Privacy & COPPA

We do not knowingly collect personal data from children. If we learn a child under 13 has provided personal information, we delete it securely.

We filter sensitive ad categories; occasional misclassification by an ad partner may occur beyond our control.

Use & Disclosure

Purposes: improve performance, personalize content/ads, prevent abuse, analytics, feature development.

Primary partner: Google LLC (privacy: https://www.google.com/policies/privacy/partners/).

We share data only to: (1) comply with law; (2) service providers assisting operations; (3) a merger, acquisition or asset transfer; (4) publish aggregated, non‑identifying usage insights.

Advertising & Tracking

We display AdMob banner and interstitial ads which may be contextual or (where legally permitted & consented) personalized using device identifiers (e.g. IDFA on iOS, AAID on Android) and coarse interaction signals. On iOS you may see an App Tracking Transparency (ATT) prompt; declining limits tracking and we serve only contextual ads. You can reset or limit advertising identifiers in your device settings. We do not combine data to build sensitive profiles.

CCPA / CPRA: We do not “sell” or “share” personal information (for cross‑context behavioral advertising) as defined under the CPRA. We do not process sensitive personal information for the purpose of inferring characteristics.

Data Retention

We retain data only so long as needed for the purposes described or legal requirements, then delete or irreversibly aggregate/anonymize.

  • Crash logs: raw up to 90 days (aggregated metrics may persist).
  • Analytics events: up to 24 months then aggregated.
  • Purchase receipts / entitlement tokens: while feature remains active + up to 5 years for accounting.
  • Support emails: deleted within 12 months after last reply (unless legal retention applies).
  • Ad identifiers: governed by platform reset (we reflect resets promptly in new sessions).

Support

If you contact support we receive your email and any details you include. Support information is used solely to address your request.

Data Deletion & Access Requests

We do not operate user login accounts; most data is pseudonymous and tied to device identifiers. To request access or deletion provide (a) your device type, (b) app name & version, and (c) your advertising ID (if available) to info@synoos.com. We will act within applicable statutory timeframes (generally 30 days, extendable where permitted).

Security

We apply industry standard safeguards: encryption in transit (TLS), principle of least privilege, restricted production access, monitored dependencies for vulnerabilities, periodic log review, and incident response procedures. No method is 100% secure, but we continuously refine our controls.

International Transfers

Where data is transferred outside your jurisdiction (e.g. to the United States for Google or other vendors), we rely on appropriate safeguards such as Standard Contractual Clauses and supplementary technical & organizational measures. By using the services you acknowledge such transfers subject to these protections.

Contact

Questions or feedback? Email us at info@synoos.com.

Changes

We may update this policy periodically. Material updates will be reflected by updating the date at the top. Continued use after changes constitutes acceptance.