Privacy Policy

This Privacy Policy describes how we collect, use, store, and protect your information when you use our application ("the App"). We are committed to respecting your privacy and being transparent about our data practices.

The App is a board game companion tool that helps you track game statistics and provides an AI-powered rules assistant. We collect only the minimum amount of data necessary to provide and improve our service.

1. Information We Collect

1.1 Email Address (Optional)

If you voluntarily choose to create an account or sign in, we collect your email address. Providing an email is entirely optional. If you choose not to provide one, you can still use the App's features that do not require authentication.

1.2 Game Statistics

When you use the App to track board game sessions, we store game-related data such as scores, win/loss records, game names, player names or nicknames you enter, and session dates. This data is associated with your account if you are signed in.

1.3 AI Assistant Interactions (Anonymous Data)

When you use the AI rules assistant, we collect the content of your queries (prompts) and the AI-generated responses. This data is immediately anonymized upon collection: it is stripped of any user identifiers, account associations, session identifiers, or other information that could be used to trace it back to an individual user. The anonymized data is stored separately from your account and cannot be linked to you.

We use this anonymous data for the following purposes:

• Semantic caching: to serve faster responses for similar questions asked in the future.
• Quality analysis: to identify and improve poor-quality AI responses.

Because this data is fully anonymized, it does not constitute personal data under GDPR or other applicable data protection laws, and it is not subject to individual data access, correction, or deletion requests.

The AI assistant is designed exclusively for questions about board game rules and gameplay. We do not expect or encourage you to include any personal information in your queries. Please avoid including sensitive personal information in your AI queries, as once anonymized, such data cannot be identified or removed.

1.4 Technical and Usage Data

We may automatically collect basic technical data such as device type, operating system version, app version, crash logs, and general usage patterns. This data is used solely to maintain and improve the App's performance.

2. How We Use Your Data

• Email address: to identify you within the App, sync your data across devices, and communicate with you about your account or technical support if requested.
• Game statistics: to provide you with your personal gameplay history and analytics.
• AI interaction logs (anonymous): to build and maintain a semantic cache for faster responses, and to analyze response quality so we can improve the AI assistant. This data is anonymized and cannot be linked to any individual user.
• Technical data: to diagnose bugs, improve performance, and understand general usage trends.

We do not sell, rent, or share your personal information with third parties for marketing purposes.

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), we process your personal data under the following legal bases:

• Contract performance: processing your email and game data is necessary to provide you with the App's core functionality and your account services (Article 6(1)(b) GDPR).
• Consent: where required by applicable law, we will obtain your consent before processing (Article 6(1)(a) GDPR).

AI interaction logs are fully anonymized and therefore fall outside the scope of GDPR and other personal data protection regulations. No legal basis for processing is required for anonymous data.

4. Data Storage, Retention, and Security

Your data is stored on servers located in the European Union. We use commercially reasonable technical and organizational measures to protect your personal information, including encryption in transit and at rest.

We retain your personal data (email address and game statistics) for as long as your account is active or as needed to provide the service. Upon account deletion, your personal data will be removed.

Anonymized AI interaction logs are retained indefinitely as they cannot be linked to any individual user and do not constitute personal data. These logs are used solely for improving the AI assistant's response quality and caching performance.

No method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

5. Third-Party Services

Our App uses the following third-party services that may process your data:

• Google Play Services: for app distribution, updates, and basic analytics on Android devices.
• AI service provider (OpenAI): your AI queries are sent to a third-party AI model provider for processing. These providers process the content of your queries and generate responses. Please review their respective privacy policies for details on how they handle data.
• Supabase: we use Supabase as our backend service for authentication and data storage. Supabase processes your email address and authentication credentials on our behalf. For more information, refer to the Supabase Privacy Policy.
• Third-party sign-in providers: the App offers the option to sign in using your Google or Apple account. When you choose one of these sign-in methods, the respective provider shares limited information with us (typically your email address) to complete the authentication process. We do not receive your password from these providers. Your use of Google or Apple sign-in is governed by their respective privacy policies.

We only share the minimum data necessary with these providers to deliver the App's functionality.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal data (email address and game statistics):

• Access: request a copy of the personal data we hold about you.
• Rectification: request correction of inaccurate or incomplete data.
• Erasure: request deletion of your data. You can delete your account and all associated personal data through the App's settings or by contacting us.
• Data portability: request a copy of your data in a structured, machine-readable format.
• Restriction of processing: request that we limit how we use your data in certain circumstances.
• Object: object to our processing of your data based on legitimate interest.
• Withdraw consent: where processing is based on consent, you may withdraw it at any time.

Please note that these rights apply only to personal data that can be linked to your identity. Anonymized AI interaction logs cannot be associated with any individual user and are therefore not subject to access, rectification, portability, or deletion requests.

To exercise any of these rights, please contact us at tallydice.app@gmail.com. We will respond to your request within 30 days (or as required by applicable law).

If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority.

7. Children's Privacy

Our App does not target or knowingly collect personal information from children under the age of 16 (or the applicable age of consent in your jurisdiction). If we learn that we have collected personal data from a child without appropriate parental consent, we will delete that information promptly. If you believe a child has provided us with personal data, please contact us.

8. International Data Transfers

If your data is transferred to servers or third-party providers outside the European Economic Area, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses or adequacy decisions) to protect your data in compliance with GDPR.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy within the App and updating the "Last updated" date at the top of this document. For significant changes, we may also notify you via email (if you have provided one). We encourage you to review this policy periodically.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, you can contact us:

• By email: tallydice.app@gmail.com