Privacy Policy — Geoshatter

1. Introduction

This Privacy Policy describes how personal information is handled when you use Geoshatter (the “Application”, package name com.geoshatter), a free-to-play mobile game for Android devices. Geoshatter is developed and distributed as an independent project by the developer (“we”, “us”, or “our”).

Geoshatter is designed to run primarily offline. The game state, your progress, purchases, and settings are stored locally on your device. We do not operate a game server, we do not maintain user accounts, and we do not ask you to register or provide personal information to play.

However, the Application integrates a small number of third-party services (advertising, crash reporting, analytics, and in-app purchases) that may collect information automatically. This policy explains what those services collect, why, and what choices you have.

2. Information We Do Not Collect

We do not directly collect any of the following from you:

Name, email address, phone number, or postal address
Account credentials or login information
Photos, contacts, microphone, camera, or location data
Messages, gameplay content you create, or clipboard contents

The Application does not request access to your precise location, contacts, camera, microphone, or storage. It requests only the following Android permissions:

INTERNET — required to load ads, process in-app purchases, and report crashes.
VIBRATE — used for gameplay haptic feedback. No data leaves the device.
POST_NOTIFICATIONS — used to display optional in-game notifications. No data is transmitted.

3. Information Collected Automatically by Third-Party Services

The Application integrates the following third-party SDKs (software development kits). These services act as independent data controllers or processors for the information they collect, under their own privacy policies.

3.1 Google AdMob (Advertising)

We use Google AdMob to display rewarded video ads that you may optionally watch in exchange for in-game rewards. When AdMob serves an ad, it may collect:

Your Android Advertising ID (a resettable identifier)
IP address and approximate (coarse) location derived from it
Device information (model, operating system version, language, time zone)
Interactions with the ad (impressions, clicks, viewability)
A limited identifier used to prevent ad fraud and limit ad frequency

AdMob uses this information to deliver, measure, and (if you consent) personalize advertising. For users in the European Economic Area (EEA), the United Kingdom, or Switzerland, the Application displays a Google-certified consent dialog (Google User Messaging Platform, UMP) the first time you play. Your choice there determines whether AdMob serves you personalized or non-personalized ads. You can change your choice at any time from the in-game settings menu.

Learn more: Google Privacy Policy, How Google uses data from AdMob.

3.2 Firebase Crashlytics (Crash Reporting)

We use Firebase Crashlytics (a Google service) to detect crashes and stability issues in the release build of the Application. When the Application crashes, Crashlytics collects:

Anonymized stack trace information identifying the code path that failed
Device state at the time of the crash (device model, OS version, free memory, orientation)
A randomly generated Crashlytics Installation UUID that allows crash reports from the same installation to be grouped together; it is not linked to your identity
The app version the crash occurred on

Crash reporting is disabled in debug builds so that development crashes never reach production. You can reset the Crashlytics Installation UUID at any time by clearing the Application’s data from Android system settings or reinstalling the Application.

See Firebase privacy and security information for more details.

3.3 Firebase Analytics (Usage Analytics)

We include the Firebase Analytics SDK to receive aggregate usage information (for example, number of sessions, session duration, crashes per version, country-level installs). Firebase Analytics collects a limited set of automatic events and device/app information including:

App open, first open, app update, and session events
Device information (model, OS version, language, app version)
Country / region (derived from IP address, which is then discarded by Google)
A Firebase Installation ID that is not linked to your personal identity

We do not log custom events that identify individuals, and we do not link analytics data to any advertising identifier. Analytics data is used solely to understand product health and guide improvements.

3.4 Google Play Billing (In-App Purchases)

The Application offers optional in-app purchases (for example, cosmetic upgrades and offers that remove ads). All purchases are processed by Google Play Billing. We never see or store your payment card number, billing address, Google account, or email.

Google Play returns to the Application only a purchase token and product identifier so the Application can unlock the purchased content locally on your device. Please review Google’s Privacy Policy to understand how Google handles your payment information.

3.5 Summary of Data Recipients

Information collected by the SDKs above is transmitted directly from your device to Google LLC and its affiliates. We do not operate our own server, so no game-related personal data is transmitted to, or stored by, us. We do not sell or rent personal information to anyone.

4. Purposes and Legal Bases for Processing (GDPR)

If you are located in the EEA, the UK, or Switzerland, the legal bases we (and our SDK providers) rely on are:

Consent (Art. 6(1)(a) GDPR) — for personalized advertising and, where applicable, analytics. You provide consent via the in-app UMP dialog and may withdraw it at any time.
Legitimate interest (Art. 6(1)(f) GDPR) — for non-personalized advertising, crash reporting, fraud prevention, and aggregate analytics needed to keep the Application functional and stable.
Performance of a contract (Art. 6(1)(b) GDPR) — to process optional in-app purchases you initiate.

5. Your Advertising Choices

Change consent: Open the in-game Settings menu to re-open the consent dialog and change your personalization choice.
Opt out of personalized ads at the device level: Android → Settings → Privacy → Ads → Delete advertising ID (Android 12+) or Opt out of Ads Personalization.
Reset your advertising ID: Android → Settings → Privacy → Ads → Reset advertising ID.

6. Data Retention

We do not retain personal data on our own servers, because we do not operate any. Third-party services retain data according to their own policies:

Google AdMob typically retains ad-serving logs for a limited period (see Google’s policy).
Firebase Crashlytics retains crash records for up to 90 days by default.
Firebase Analytics default retention is 2 months for event-level data and 14 months for user-level properties (subject to your consent where required).

Data stored locally in the Application (your game progress) remains on your device until you uninstall the Application or clear its data.

7. Data Security

All network communication between the Application and Google services occurs over HTTPS. Game data stored on your device is stored using Android’s standard application storage, protected by the Android sandbox from other applications. However, no method of electronic transmission or storage is 100% secure.

8. International Data Transfers

Because the SDKs we integrate are operated by Google LLC and its affiliates, information collected may be processed in the United States and other countries where Google operates. Google relies on Standard Contractual Clauses and other lawful transfer mechanisms for transfers out of the EEA; see Google’s privacy policy for details.

9. Your Rights

9.2 California Residents (CCPA / CPRA)

Under the California Consumer Privacy Act, you have the right to know what personal information is collected, to request deletion, to correct inaccurate personal information, and to opt out of the “sale” or “sharing” of personal information. We do not sell personal information for monetary value. Certain advertising activities may constitute “sharing” for cross-context behavioral advertising under the CPRA; you can limit such sharing by opting out of personalized ads (see Section 5).

9.3 How to Exercise Your Rights

To exercise any of the rights above regarding data collected by the Application, contact us at the email address in Section 12. Because we do not operate a server and store no personal identifiers ourselves, most requests will require us to forward them to the relevant third party (for example Google). You may also contact Google directly to exercise rights regarding data they process.

10. Children’s Privacy

Geoshatter is not directed to children under the age of 13, and is not knowingly used to solicit data from, or market to, children under 13. In order to comply with the Children’s Online Privacy Protection Act (COPPA), the EU General Data Protection Regulation (GDPR), and Google Play Families policies, the Application is intended for users who are at least 16 years of age.

If you are a parent or guardian and believe a child under 16 has used the Application, please contact us at the address below and we will work with you to remove any data that we are able to identify.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in the Application, the SDKs it uses, or applicable law. When we do, we will update the “Last Updated” date at the top of this page. Continued use of the Application after the changes take effect constitutes acceptance of the updated policy.

12. Contact

If you have any questions about this Privacy Policy, or would like to exercise any of your rights under applicable privacy law, please contact the developer at:

Email: patrascuemil99@gmail.com

For requests, please include the word “Privacy” in the subject line and describe the nature of your request so we can respond efficiently.