Privacy Policy

1. Introduction

This Privacy Policy is a legal agreement between you (“you”, “your” or “user”) and Hakan Turinay, an individual based in Antalya, Turkey (referred to as “we”, “us”, or “our”).

This Policy applies to the Imposter Game: Word Spy mobile game, this website, and any related services we provide (collectively, the “Services”). It explains how we collect, use, share, and protect your personal data when you access or use our Services.

Please read this Privacy Policy carefully to understand our policies and practices regarding your personal information and how we handle it.

2. Information We Collect and How

Imposter Game: Word Spy is designed to be played without accounts and without sending your data to our servers. The categories of personal data that may be processed in connection with the Services are limited to the following:

Local Game Data (stored on your device only)

Player names you enter, custom word packs you create, leaderboard standings, language preference, sound and haptics settings, and unlocked-feature flags. This information is stored locally using your device's app storage (AsyncStorage on iOS and Android). We do not receive, transmit, or access this data.

Commercial Information

The optional Pro upgrade is an auto-renewable subscription (weekly at $9.99 USD or yearly at $59.99 USD; prices may vary by region). The transaction and any renewals are processed entirely by Apple's App Store or Google Play. We do not receive your payment information, billing address, or account identifiers. We only receive a confirmation that the purchase succeeded, which the app stores locally. You can manage or cancel the subscription at any time in your platform account settings (on iOS: Settings → your Apple Account → Subscriptions).

Diagnostic Information (platform-level)

Apple and Google may collect crash logs, performance metrics, and aggregate usage statistics from apps installed through their platforms, subject to your device-level privacy settings (e.g., “Share With App Developers” on iOS). When this data is shared with us by the platform, it is aggregated and does not identify individual users.

Contact Information

If you choose to contact us by email or through a support form, we will process the name, email address, and message contents you provide, solely to respond to your inquiry.

Reviews and Public Communications

We may process the metadata and content of public reviews left on the App Store or Google Play, or comments made on our public social media channels, for the purposes of customer support and product improvement.

Website Server Logs

When you visit this website, our hosting provider may automatically record standard server-log information, including your IP address, browser type, referring page, and request timestamps. This data is used to ensure security and availability of the website.

What We Do Not Collect

• No accounts, sign-up, or login credentials
• No third-party analytics SDKs (no Mixpanel, Firebase Analytics, etc.)
• No advertising identifiers (the app shows no ads)
• No precise or coarse location data
• No access to your contacts, photos, microphone, or camera
• No AI-feature inputs (the app has no AI-powered features)
• No cross-app or cross-site tracking

Cookies and Similar Technologies

Our mobile app does not use browser cookies. Our app does not use tracking SDKs, beacons, or device-identifier-based tracking technologies. Our website uses only essential first-party cookies required to deliver the page; we do not use marketing or analytics cookies.

While your browser settings may transmit a “Do Not Track” signal, our Services do not engage in the kind of cross-context behavioral tracking that such signals are designed to limit.

3. Sources of Data

We collect personal information from a limited set of sources, depending on how you interact with the Services. These may include:

• Information you provide directly, such as when you contact us via email or submit a support request;
• Information generated locally on your device when you use the app (game state, settings, custom packs) which remains on your device;
• Publicly available content, such as reviews or comments you post on the App Store, Google Play, or our public social media channels;
• Confirmation receipts received from Apple App Store or Google Play when you complete an in-app purchase;
• Standard server logs generated by our website hosting provider when you visit this website.

4. Purposes for Which We Use Your Personal Data

Our mission is to provide a great party game experience while respecting your privacy. We use personal data only to the extent necessary for the following purposes:

To make our Services available

We process information necessary to enable core functionality of the app and website. Most of this happens locally on your device. This processing is carried out to perform our contract with you and based on our legitimate interest in operating our Services.

To fulfill in-app purchases

When you complete an in-app purchase, we rely on Apple App Store and Google Play to process the transaction and deliver the entitlement to your installation of the app. This processing is necessary to fulfill our contractual obligations to you.

To communicate with you

When you contact us, we use the information you provide to respond to your inquiry, assist with issues (such as purchase errors), or follow up as necessary. This processing is based on our legitimate interest in supporting users and fulfilling our contract with you.

To monitor app performance

We may review aggregate, non-identifying crash and performance data made available by Apple and Google through their respective developer consoles, to identify and fix technical issues. This processing is based on our legitimate interest in maintaining the stability and security of our Services.

To enable user-generated content

The app allows you to create custom word packs. This content is stored locally on your device. We do not access, retain, or moderate this content unless you choose to share it with us directly (e.g., by emailing support).

To detect and prevent abuse

We may process website server logs to identify, investigate, and mitigate fraudulent or abusive activity directed at our infrastructure. This processing is based on our legitimate interest in protecting our Services.

To comply with legal obligations

We may process your information as required by applicable law, regulation, court order, or to establish, exercise, or defend legal claims.

If we introduce new purposes for processing your personal data in the future (for example, if we add analytics or advertising), we will update this Privacy Policy and, where required by law, obtain your consent before doing so.

5. Sharing of Your Information

We do not sell your personal data. In certain limited cases, we may share it with trusted third parties as described below.

App distribution platforms

Apple App Store and Google Play act as the distribution and payment processors for the app. When you download the app or make an in-app purchase, you interact with these platforms directly, subject to their own privacy policies.

Website hosting provider

Our website is hosted by a third-party infrastructure provider, which processes server-log data on our behalf for the limited purposes of delivering the website and maintaining its security.

Legal reasons and safety

We may share data when we believe it is necessary to: comply with the law, respond to legal requests, protect the safety of our users or others, enforce our Terms of Service, or prevent fraud and abuse.

If our business changes

If we are involved in a business transaction such as a merger, acquisition, or asset sale, personal data may be part of that transfer. If that happens, we will take steps to notify you as required by law.

With your permission

If you ask us to share your data or otherwise give us permission, we will do so according to your request.

6. Retention of Personal Data

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required to comply with legal obligations, resolve disputes, or enforce our agreements.

Local game data (player names, custom packs, leaderboard, settings) remains on your device until you delete it or uninstall the app. We do not have access to or copies of this data.

Support correspondence is retained for as long as necessary to handle your inquiry and for a reasonable period thereafter for recordkeeping. Website server logs are retained for a limited period (typically no more than 30 days) for security and diagnostic purposes.

You may request the deletion of personal data we hold about you, subject to our legal obligations and technical feasibility, by contacting us using the methods described in the Contact Us section.

In no case will we retain personal data for more than five (5) years from the date of collection, unless a longer retention period is required by applicable law.

7. International Data Transfers

Our Services are accessible globally, and some of the third-party providers we rely on (such as Apple, Google, and our website host) may process personal data in countries outside your country of residence, including outside the European Economic Area (EEA).

When personal data is transferred across borders, we aim to ensure that it is processed in accordance with applicable data protection laws. Where required, we rely on safeguards such as Standard Contractual Clauses approved by the European Commission or on adequacy decisions, depending on the recipient country.

By using our Services, you acknowledge that your personal data may be transferred to countries whose data protection laws may differ from those in your jurisdiction. We take reasonable steps to ensure that any such transfers are conducted in a manner that seeks to provide an appropriate level of protection.

8. Age Limits

Our Services are intended for users aged 13 and older and are not directed to children under that age. We do not knowingly collect or process personal data from individuals under 13 (or the equivalent minimum age in your jurisdiction).

Parents and legal guardians are encouraged to monitor their children's access to devices and to prevent them from using our Services if they do not meet the minimum age requirement.

If you believe that a child has accessed our Services or provided personal information without proper authorization, please contact us using the methods provided in the Contact Us section. We will evaluate the request and take appropriate steps in accordance with applicable laws.

9. Your Privacy Rights

Under the General Data Protection Regulation (GDPR) and similar laws, you have certain rights regarding your personal data, including:

• Right to access: You have the right to request access to the personal data we hold about you.
• Right to rectification: You have the right to request the correction of any inaccurate or incomplete personal data.
• Right to erasure: You have the right to request the deletion of your personal data in certain circumstances.
• Right to restrict processing: You have the right to request that we restrict the processing of your personal data in specific situations.
• Right to data portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
• Right to object: You have the right to object to the processing of your personal data in certain circumstances, including when we rely on legitimate interests.
• Right not to be subject to automated decision-making: You have the right not to be subject to a decision based solely on automated processing that produces legal effects or similarly significant effects.
• Right to withdraw consent: Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.
• Right to lodge a complaint: You have the right to lodge a complaint with the data protection authority in your country.

To exercise any of these rights, please contact us using the methods described in the Contact Us section. We can only act on these rights with respect to personal data that we directly control and have access to. Because most game data remains only on your device, the simplest way to exercise the right to erasure for local data is to delete the app.

We aim to respond to all verified requests within 30 days. If we require more time or cannot fulfill your request, we will inform you of the reason and any available options.

10. Supplemental Privacy Notice for USA Residents

This section supplements the main Privacy Policy and applies to residents of U.S. states with applicable privacy laws, including but not limited to California, Colorado, Connecticut, Utah, and Virginia.

We do not sell your personal information, and we do not share it for cross-context behavioral advertising. The app contains no advertising or tracking SDKs.

Your Privacy Rights

Depending on your state of residence and subject to certain legal exceptions, you may have the right to:

• Access the categories and specific pieces of personal information we have collected about you;
• Delete personal information we have collected, subject to legal exceptions;
• Correct inaccurate personal information (where applicable);
• Opt out of the sale or sharing of personal data for targeted advertising and of profiling that produces legal or similarly significant effects;
• Limit the use and disclosure of sensitive personal information (where applicable);
• Not be discriminated against for exercising any of your privacy rights.

To exercise your rights, please contact us using the information in the Contact Us section. We may request additional information to verify your identity and the scope of your request. You may also authorize an agent to act on your behalf, subject to verification.

We aim to respond to verifiable requests within the timeframe required by applicable law, generally within 45 days of receipt. If we need more time, we will inform you in writing.

Additional Notes for California Residents

Under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), California residents have the rights summarized above, including the right to know, to delete, to correct, and to opt out of the sale or sharing of personal information for cross-context behavioral advertising. We do not engage in such sales or sharing and do not use sensitive personal information to infer characteristics about you.

To submit a request under the CCPA, please clearly indicate in your message that you are a California resident and include the phrase “California Privacy Rights Request.”

11. Data Security

We take the security of personal information seriously and apply reasonable technical and organizational measures to help protect it from unauthorized access, loss, misuse, or disclosure.

These measures are designed to uphold data protection principles such as data minimization. Because our app stores game data only on your device and does not transmit it to our servers, the most important security boundary is your own device's lock screen and platform protections.

No method of transmission over the internet or electronic storage is entirely secure. While we strive to protect your information, we cannot guarantee its absolute security. If we become aware of a data breach that affects your personal information, we will notify you in accordance with applicable laws.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the features of our Services. When we do, we will revise the “Last Updated” date at the top of this page.

We encourage you to review this Privacy Policy periodically. If we make material changes that may affect your rights or how your data is processed, we may notify you within the app or through other appropriate means.

By continuing to use our Services after such updates, you acknowledge and accept the revised Privacy Policy.

13. Contact Us

If you have any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us at:

info@hakanturinay.com