GameRecord Privacy Policy

Version: v1.1
Effective Date: March 10, 2026

This Privacy Policy explains how gamerecord collects, uses, stores, shares, and protects personal data when you use the gamerecord application and related services (the "Service").

1. Data Controller

• Controller/Operator: GameRecord Team
• General Contact: support@gamerecord.app
• Privacy Contact: privacy@gamerecord.app

2. Scope

This Policy applies to personal data processed through gamerecord mobile/web experiences and related support/moderation channels.

3. Data We Collect

Depending on your use of the Service, we may process:

3.1 Account and Identity Data

• Account identifiers (user ID)
• Email address
• Username/display name
• Date of birth used for age verification and eligibility enforcement
• Authentication-related records, including sign-in method and verification-related records

3.2 Profile and Social Data

• Profile photo, banner, and biography/description text
• Featured game selections shown on your profile (for example, up to 3 selected games)
• Followers/following relationships
• Blocked users

3.3 Game Activity and Content Data

• Game statuses (including played, playing, and playlist)
• Ratings and reviews
• Comments/replies
• Custom lists/playlists, tier lists, and their entries
• Likes and interaction counts

3.4 Preferences, Notification, and Device Data

• Notification preferences, including in-app and email notification settings
• Language preference
• Content preferences, including adult-content visibility settings
• Push token/device platform data required for notifications
• Notification read/unread state and timestamps

3.5 Safety and Compliance Data

• Reports submitted or received
• Moderation actions and appeal records

3.6 Technical, Feedback, and Operational Data

• Basic app diagnostics/log data needed for stability, abuse prevention, and service operation
• Locally cached settings/data on your device (where applicable)
• Feedback or support submissions you send us, which may include your message text and related device/timezone metadata

4. How We Use Data

We use personal data to:

• Create and manage accounts
• Verify user age eligibility (including the 13+ requirement)
• Operate core features (tracking, lists, tier lists, reviews, comments, profile customization, and social interactions)
• Enforce rating integrity rules (including the requirement that ratings are allowed only for played or playing statuses)
• Store and apply your notification, language, and content preferences
• Deliver in-app/push notifications and other service communications
• Detect and prevent abuse, fraud, and policy violations
• Process reports, moderation actions, and appeals
• Provide customer support
• Comply with legal obligations

5. Legal Bases

Where applicable, we rely on one or more of the following legal bases:

• Performance of a contract (providing the Service)
• Legitimate interests (security, moderation, product integrity, abuse prevention)
• Consent (where required, e.g., certain notification or local data behaviors)
• Legal obligation

6. Data Sharing

We do not sell your personal data. We may share data only as needed with:

• Service providers/processors that help operate the Service, including Google Firebase / Google Cloud services used for authentication, database hosting, cloud functions, and push notifications
• External game metadata or infrastructure providers involved in delivering Service features
• Competent authorities or legal parties where required by law or to protect rights/safety
• Successor entities in case of merger, acquisition, or reorganization

7. International Transfers

Your data may be processed in countries other than your own, including on Google Firebase / Google Cloud or other provider infrastructure that may be located in the United States or other jurisdictions.

Where required, we apply reasonable safeguards appropriate to the transfer context.

8. Data Retention

We retain data only as long as needed for service operation, legal obligations, and safety.

8.1 Account Deletion

• When you request account deletion, we begin deleting the account and associated production data through our account-deletion workflow as soon as the request is processed.
• After deletion is completed, there is no self-service restoration or grace period.

8.2 Backups

• System backups may retain limited data fragments for up to 90 days before overwrite.

8.3 Moderation and Reports

• Moderation logs and reports are retained for 1 year for safety and legal compliance.

9. Your Rights

Subject to applicable law, you may have rights to:

• Access your data
• Correct inaccurate data
• Delete data
• Restrict or object to certain processing
• Request portability of provided data
• Withdraw consent where processing is based on consent

To exercise rights, contact: privacy@gamerecord.app

10. Children's Privacy

gamerecord is intended for users aged 13+. We require users to confirm they are at least 13 years old during account creation or account completion, and we may use the date of birth provided to verify eligibility.

We do not knowingly permit under-13 users. If you believe a child under 13 has provided data, contact privacy@gamerecord.app so we can investigate and take appropriate action.

11. Security

We apply reasonable technical and organizational measures to protect data. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

12. Third-Party Content and Metadata

Game metadata may come from third-party sources. We are not responsible for inaccuracies or changes in third-party content.

13. Policy Changes

We may update this Privacy Policy from time to time. Updated versions will include a revised version and effective date. Material changes may be communicated in-app, by email, or by other reasonable means.

14. Governing Language

If translated versions of this Policy are provided, they are for convenience only. In case of conflict, the English version governs.

15. Contact

• privacy@gamerecord.app
• support@gamerecord.app
• moderation@gamerecord.app