Privacy Policy

Effective date: 2025-01-01

This Privacy Policy explains how QuaesitumTech ("we", "us") collects, uses, and protects personal data when you use our websites, apps, and games (collectively, the "Services").

Data we collect

• Account data you provide (e.g., email, display name).
• Usage data and telemetry (e.g., device, app version, interactions).
• Support communications (e.g., messages, feedback).
• Optional analytics and crash diagnostics.

How we use data

• Provide and operate the Services.
• Improve performance, reliability, and user experience.
• Communicate updates and respond to support requests.
• Maintain safety, security, and fraud prevention.
• Comply with legal obligations.

Cookies and similar technologies

We use essential cookies for core functionality (e.g., session, security). Where required by law, non‑essential cookies (e.g., analytics) are used only with your consent via our banner. You can change preferences in your browser and through the consent banner.

Legal bases

Where applicable (e.g., EEA/UK), we rely on:

• Performance of a contract;
• Legitimate interests (e.g., service improvement, security);
• Consent for optional analytics or marketing where required;
• Compliance with legal obligations.

Data processors (sub‑processors)

We engage vetted service providers who process data on our behalf under data processing agreements. Typical categories include hosting/infrastructure, email/support, optional analytics, and crash diagnostics. We require appropriate security and confidentiality commitments and limit processing to our instructions.

Representative list (by category)

• Hosting / Infrastructure: Cloud providers for compute, storage, and CDN in supported regions (EEA/UK, US, APAC where applicable).
• Email / Customer Support: Email delivery and support desk tools used for user communications and support tickets.
• Analytics (optional): Privacy‑respecting analytics providers; opt‑in where required by law and configurable by product and region.
• Crash Diagnostics: Crash and performance telemetry with pseudonymized identifiers to improve reliability.

A downloadable text version is also available: processors.txt.

Sharing

We may share data with service providers who process data on our behalf (e.g., hosting, analytics, customer support). We require appropriate safeguards and limit processing to our instructions.

Retention

We retain personal data only as long as needed for the purposes above or as required by law. Typical periods include: account and entitlement data for the life of the account; security logs for 30–180 days; support records up to 24 months; tax/ledger records up to 7 years. We aggregate or delete when no longer necessary.

Security

We employ technical and organizational measures designed to protect personal data. No method of transmission or storage is 100% secure.

Children

Our Services are not directed to children under 13 (or the relevant age in your jurisdiction). Under the GDPR, where the legal basis is consent and the user is under 16 (or lower age provided by member state law, but not below 13), consent must be given or authorized by the holder of parental responsibility. We do not knowingly collect personal data from children.

Your rights

Subject to applicable law, you may request access, correction, deletion, portability, or restriction of your personal data, and you may object to processing. You may also withdraw consent at any time.

Regional data residency and transfers

We aim to process data in the region closest to users where feasible. For EEA/UK users, we endeavor to process and store personal data in the EEA/UK when supported by our infrastructure. Where transfers outside these regions occur, we implement appropriate safeguards (e.g., EU Standard Contractual Clauses) and additional technical/organizational measures where required.

Your GDPR rights (EEA/UK)

• Access, rectification, erasure, restriction, portability, objection;
• Where processing is based on consent, the right to withdraw consent at any time;
• The right to lodge a complaint with a supervisory authority in your country of residence or work.

Apple App Store subscriptions and data

If you purchase in‑app subscriptions via Apple’s App Store, billing is handled by Apple. We receive receipts and transaction identifiers for entitlement, support, and fraud prevention. We do not receive or store your full payment card data. Manage subscriptions in your Apple ID account (Settings → Apple ID → Subscriptions). Free trials convert to paid unless canceled at least 24 hours before the trial ends, subject to Apple’s policies.

California privacy rights (CCPA/CPRA)

California residents have rights to know/access, correct, delete, and to opt‑out of certain data “sales” or “sharing” for cross‑context behavioral advertising. We do not “sell” personal information as defined by California law. You may exercise rights by contacting us at the email below. We will verify your request as required and will not discriminate for exercising your rights.

Contact and controller

QuaesitumTech acts as the data controller for personal data processed via our Services. Email: privacy@quaesitumtech.com.

Comprehensive policy versions

Detailed HTML version: privacy-comprehensive.html (comprehensive policy with all sections)

Text downloads: privacy-policy.txt | processors.txt

Changes

We may update this policy from time to time. Material changes will be posted on this page with an updated effective date.

---

This page summarizes key points. For a comprehensive version, see privacy-policy.txt.