Game For Friends • Privacy & Cookies
Privacy & Cookies
Game For Friends respects your privacy. We only collect what’s needed to run the game, manage packs and subscriptions, and pay creators fairly — no third-party ad tracking.
1. Overview
This page explains in simple terms how Game For Friends uses personal data and cookies when you play the game, browse or buy question packs, hold a subscription, or publish packs as a creator.
We do not sell your personal data and we do not use third-party advertising cookies. Any processing of personal data is limited to what is necessary to provide the service, improve it, and comply with applicable laws.
This summary works together with our full Privacy Policy and Terms of Service. If something here seems unclear, the full legal texts published in the app footer take priority.
2. What we collect
Depending on how you use the app, we may process the following categories of data:
- Account data. Email, username, password hash, and basic role information (for example, player, host, or creator).
- Technical data. Session or token cookies, device and browser information, IP address, and logs needed to keep multiplayer rooms stable and secure.
- Gameplay data. Rooms you host or join, scores, game progress, and in-room actions such as buzzers or chat (if available).
- Commerce data. Purchases, subscription tier and status, discounts, and invoice/receipt metadata.
- Creator data. Pack metadata, moderation status, reported issues, usage statistics, and payout information (processed through payment providers such as Stripe).
- Pack media. Text, images, audio, and video contained in packs you upload or use, together with technical metadata needed to store and deliver that content.
3. Cookies
Cookies are small files stored on your device. We use them primarily to keep you signed in, protect your account, and run realtime multiplayer rooms. We do not use cookies for third-party advertising or cross-site marketing.
- Strictly necessary cookies. Used for secure login, session management, CSRF protection, and realtime connectivity. Without these cookies the service would not function correctly.
- Preference cookies. For example, remembering that you closed the cookie banner or using a “remember me” option if you choose it.
- Analytics (if enabled). We may use privacy-friendly analytics to understand usage patterns in aggregate. These are designed not to identify you directly.
You can control cookies through your browser settings. Some features of the service may not work properly without strictly necessary cookies.
4. Payments & subscriptions
Payments for packs and subscriptions are processed by Stripe or a similar reputable payment provider. We do not store full card or bank details on our servers.
- We receive information such as payment status, product purchased, currency, and partial card details (for example, last four digits) used for receipts.
- The payment provider receives and processes the financial data required to complete the transaction and comply with financial regulations.
- Subscription status (active, canceled, past due) is stored so we can grant access to features included in your plan.
5. Packs store & media
Packs may be free or paid and can include text, images, audio, and video. We store and deliver this content so that games load quickly and run smoothly.
We may review packs for quality or to investigate reports. If a pack violates our content rules or applicable law (for example, illegal content or clear intellectual-property infringement), it may be removed or restricted.
6. Creators & payouts
If you publish packs as a creator, you may be eligible for payouts when your content passes moderation and meets program conditions. Identity and payout-related data are handled through providers such as Stripe (for example, Stripe Connect).
- We keep moderation status, reviewer notes, timestamps, and violation categories (if any) to protect the store and other users.
- We store sales and usage statistics at pack level to calculate payouts and improve ranking and discovery.
- Bank and card details are processed by the payment provider using tokenized identifiers, not stored in plain form in our systems.
7. Legal bases for processing
Depending on your location, we rely on one or more of the following legal bases when processing personal data:
- Contract. To provide the core service you sign up for, including accounts, gameplay, subscriptions, and creator payouts.
- Legitimate interests. To keep the service secure, prevent fraud and abuse, understand aggregated usage, and improve features.
- Consent. For optional features such as certain preferences or optional cookies, where applicable.
- Legal obligations. To comply with financial, tax, and regulatory requirements, and to handle disputes or lawful requests from authorities.
8. Data retention
We keep your account and gameplay data for as long as your account remains active. Purchase and subscription records are retained for the time required by applicable financial and tax laws.
Creator payout and moderation records are kept as needed for audit, dispute resolution, and compliance. When you request deletion of your account, we remove or anonymize personal data that we are not legally required to keep.
9. Security
We use industry-standard measures such as encryption in transit (TLS), hashed passwords, scoped tokens, and access controls to protect your data. No online service can guarantee perfect security, but we work to monitor and improve our safeguards on an ongoing basis.
10. Third-party services
We rely on trusted providers for infrastructure and supporting services, such as hosting, file storage or CDN, email delivery, analytics, error monitoring, and payment processing.
Where these companies process personal data on our behalf, they do so under appropriate contractual safeguards and only for the purposes described in this policy.
11. Your rights
Depending on your region and local laws, you may have rights such as:
- Accessing the personal data we hold about you.
- Requesting correction of inaccurate information.
- Requesting deletion of your account and certain data.
- Objecting to or restricting certain types of processing.
- Withdrawing consent for optional features where we rely on consent.
Some rights may be limited, for example when we are required by law to keep certain records (such as invoices or tax-related information).
12. Children
The service is intended for use by people who are old enough to manage their own online accounts or who have appropriate parental or guardian consent, as required by local law. If you believe that a child has provided personal data without necessary consent, please contact us and we will review the situation and take appropriate steps.
13. Changes to this page
We may update this Privacy & Cookies page as our product or legal requirements change. When we do, we will update the “Last updated” date above. In some cases we may provide additional notice inside the app.
14. Contact
If you have questions about privacy, cookies, or how we handle personal data, you can contact our support team at support@gff.com .