Privacy Policy

Who We Are

"What Was That?" is a daily riddle mobile app published by ApeakData. This Privacy Policy explains what information we collect when you use our app, how we use it, and what rights you have over your data.

1. Information We Collect

1.1 Anonymous Account Identifier

When you open the app for the first time, Firebase Authentication automatically creates an anonymous account for you. This generates a random unique ID (UID) — it contains no name, email address, or any personally identifying information. It exists solely to save your progress across devices.

1.2 Gameplay Data

We store the following gameplay records in Firebase Firestore, linked to your anonymous UID:

• Daily puzzle scores (number of clues used per puzzle)
• Streak data (consecutive days played)
• Play history (which puzzles you completed and when)
• Country selection (chosen by you during onboarding — used for leaderboard grouping)

1.3 Display Name (Optional)

If you choose to set a display name for leaderboard participation, that name is stored in Firestore. This is entirely optional. You may leave it blank or use a pseudonym.

1.4 Push Notification Token

If you grant permission for push notifications, we store an FCM (Firebase Cloud Messaging) token linked to your anonymous UID. This token is used only to send you daily riddle reminders. You can revoke this permission at any time in your device settings.

1.5 Advertising Data (via Google AdMob)

Our app is free to play and supported by ads served by Google AdMob. AdMob may collect:

• Advertising ID (Google GAID on Android, IDFA on iOS)
• Device type, OS version, and screen size
• IP address (used to estimate general region for ad targeting)
• Ad interaction data (impressions, clicks)

AdMob's data collection is governed by Google's Privacy Policy: policies.google.com/privacy

1.6 Analytics and Crash Reports (Firebase)

We use Firebase Analytics and Firebase Crashlytics to understand how the app is used and to fix bugs. These services collect:

• App events (e.g., puzzle started, clue revealed, puzzle completed)
• Device model, OS version, app version
• Crash logs and stack traces (Crashlytics)
• General usage patterns (session length, screen views)

This data is aggregated and anonymized. We do not use it to identify individual users.

2. How We Use Your Information

We do not sell your personal data. We do not use your data for purposes beyond those listed above.

3. How Long We Keep Your Data

• Gameplay data and anonymous UID: Retained as long as your account is active. If you do not return for 24 months, your data may be purged automatically.
• Push notification tokens: Deleted when they become invalid (e.g., app uninstalled) or upon your request.
• Analytics data: Retained by Firebase per Google's standard retention policies (up to 14 months for event data).
• Crash logs: Retained for 90 days in Crashlytics.
• AdMob data: Governed by Google's data retention policies.

4. Data Sharing

We do not sell or rent your data to third parties. We share data only with the following service providers, strictly to operate the app:

All third-party providers are required to handle your data in accordance with applicable privacy laws.

5. Your Rights

Regardless of where you live, you have the following rights over your data:

• Access: You can request a copy of the data we hold about you.
• Deletion: You can request deletion of your account and all associated data. Email privacy@apeakdata.com with the subject "Data Deletion Request." We will process your request within 30 days.
• Correction: If any stored data about you is inaccurate, you can request a correction.
• Opt out of advertising ID use: On Android, go to Settings > Privacy > Ads and reset or opt out of ad personalization. On iOS, go to Settings > Privacy & Security > Tracking.
• Revoke push notifications: Go to device Settings > Notifications > What Was That? and turn off notifications.

GDPR (European Users)

If you are in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including the right to data portability and the right to lodge a complaint with your local supervisory authority. Our legal basis for processing your data is legitimate interest (app functionality) and consent (push notifications, advertising ID where consent is required).

CCPA (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) including the right to know what personal information is collected, the right to delete it, and the right to opt out of the "sale" of personal information. We do not sell personal information. To exercise your CCPA rights, contact privacy@apeakdata.com.

6. Children's Privacy (COPPA)

If we become aware that a child under 13 has provided us with personal data, we will delete it promptly. If you are a parent or guardian and believe your child has used the app, please contact us at privacy@apeakdata.com.

7. Data Security

We take reasonable technical and organizational measures to protect your data. All data is transmitted over encrypted connections (HTTPS/TLS). Firebase enforces security rules to prevent unauthorized access to our Firestore database. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

8. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this document. If changes are significant, we will notify you through the app. Continued use of the app after any changes constitutes your acceptance of the updated policy.

9. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, please contact: