Privacy Policy – Wheels in Mud 2: Online

This Privacy Policy ("Policy") describes how we process your personal data. The Policy is an integral part of our End User License Agreement ("EULA").

By downloading, installing, accessing, or using our Services, you acknowledge that you have read and understood this Privacy Policy. Where required by applicable law, we request your consent for specific data processing activities.

Important information. This Privacy Policy applies to all users of our Services worldwide, regardless of their country or region of residence.

Data Controller Information

Eivex Interactive is the data controller responsible for the processing of your personal data as described in this Policy.

Controller:	Eivex Interactive (sole proprietorship / independent developer) Represented by: Ghenadie Zotov
Postal Address:	Republic of Moldova (full address available upon verified legal request).
Jurisdiction:	Republic of Moldova
Contact Email:	support@eivex.org

This Policy applies to both our mobile Game and our official website, unless stated otherwise.

Under Article 37 of the GDPR, we are not legally required to appoint a Data Protection Officer (DPO). For all privacy-related inquiries, please contact us at support@eivex.org.

Age Restrictions and Parental Consent

1. Minimum Age Requirement. Our Game is not directed to, and we do not knowingly collect personal information from, children under the age of 13 (or the applicable age of digital consent in the user's country of residence, if higher).

2. Parental Consent for Minors. If you are over 13 but under the age of legal majority to enter into binding agreements in your country of residence (typically 18 years old), you represent that you have reviewed this Policy with your parent or legal guardian, and that they understand and agree to it on your behalf. Specifically, if you reside in a jurisdiction where the age of digital consent is higher than 13 (such as 16 in several EU countries, including Germany and the Netherlands, or 15 in France), you must have verifiable parental permission to use the Game and provide consent for data processing under applicable laws (such as GDPR Article 8).

3. COPPA Compliance (United States). Our Game is not directed to children under 13 in the United States, and we do not knowingly collect personal information from children under 13 in violation of the Children's Online Privacy Protection Act (COPPA). If we become aware that we have inadvertently collected such information, we will delete it as quickly as possible and take reasonable steps to disable further data collection associated with the device. See the notice for parents below.

4. Age Verification for Restricted Content. For certain jurisdictions with specific legal requirements (such as Brazil under Law No. 15.211/2025), where our services may contain content restricted to adults (18+), we implement or rely on reliable age verification mechanisms provided by platforms (e.g., Google Play, Apple App Store) or operating systems, where available and supported by platform providers.

For Parents: If you believe your child (under 13, or under the applicable age of consent) has provided us with personal information without your consent, please contact us immediately at support@eivex.org. We will take steps to delete such information and disable further data collection associated with the device.

Protection of Minors (Specific Jurisdictions)

We design our Services with consideration for the best interests of children. Where required by applicable law (including, but not limited to, Brazilian legislation Lei nº 15.211/2025), we adhere to the following principles, where technically feasible:

avoid the use of manipulative or addictive design patterns targeting minors;
limit or disable personalized advertising for users identified as children;
do not knowingly provide randomized paid rewards (such as loot boxes) to children where prohibited by law;
implement additional safeguards for accounts used by minors;
enable parental control features where technically feasible.

If we become aware that a user is a child under applicable law, we may restrict certain features or processing activities to ensure compliance and provide enhanced protection.

We do not profile children for advertising or behavioral targeting purposes.

Randomized Items: Certain in-game features may include randomized elements (sometimes referred to as "loot boxes" or "gacha mechanics"). Where required by applicable law (such as in Brazil under Lei nº 15.211/2025 or other relevant regulations), such features may be restricted, disabled, or modified for users identified as minors to ensure compliance with local requirements.

Applicable Legislation

Eivex Interactive treats the collection and use of players' and Service users' data responsibly. Considering the international distribution of our Services, this Privacy Policy has been developed to comply with the General Data Protection Regulation (EU) 2016/679 ("GDPR") as a high standard, and takes into account other applicable data protection laws worldwide, including where relevant the California Consumer Privacy Act (CCPA/CPRA), the Brazilian General Data Protection Law (LGPD), the Brazilian Digital Statute for Children and Adolescents (Lei nº 15.211/2025), and similar frameworks in jurisdictions such as Canada, Australia, Japan, Singapore, and others.

We implement internal policies and procedures designed to support compliance with this Privacy Policy and applicable legal requirements.

Application and Amendments

This Policy applies to games published by Eivex Interactive unless otherwise stated. Please note that the privacy policies of the Platforms from which the Game was downloaded may establish their own rules regarding the processing of users' personal data when using those Platforms. Such Platforms are independently responsible for their own data processing activities.

Eivex Interactive may update this Policy from time to time, including to reflect changes in applicable laws, regulations, or our data processing practices. Updates become effective when published on this page unless otherwise stated. We encourage you to review this page periodically to stay informed about the latest version of this Policy.

Definitions

Contact data

Data we collect when a user contacts our technical support in order to provide assistance. Such data may include the email address provided when contacting us.

Cookies

Cookies are small pieces of data that may be stored on a user's device by websites or third-party services to enable functionality, remember preferences, or analyze usage. Some services may also use similar technologies such as local storage or device identifiers.

Device

A device used to access or use our Game and/or Website. Devices include mobile devices, tablets, personal computers, consoles, etc.

Device information

Technical information about your Device, including operating system and version, information about the device type and manufacturer, language settings, version of Game installed.

Financial information

Information about purchases made by a User, including transaction ID, transaction amount, transaction date, purchase history. Please note that when you make in-game purchases, we do not collect and do not have access to your payment information. This information is collected and stored by the Platform or payment system operator.

Game

The mobile game "Wheels in Mud 2: Online" developed and published by Eivex Interactive, including all versions, updates, downloadable content, and related software, regardless of the platform (iOS, Android, etc.) or device on which it is used.

IDs

Technical identifiers of a User assigned to them or their Device, including User ID assigned by Eivex Interactive, Platform ID, advertising identifier of a User's Device (IDFA, GAID, etc.).

Location information

General information about User's location, collected when they run the Game. Eivex Interactive does not collect accurate information about User's location. However, we may collect Device's IP address, which can be used to determine the general location of a User (country of residence).

Platform

An online store or service through which the Game is provided to the User, including Google Play, Apple App Store, Huawei AppGallery, and other digital distribution platforms where the Game may be published.

User information

Information that a User independently creates in a Game, including nickname, game statistics and progress, vehicle customizations, and gameplay data.

What Types of Information Do We Collect and For What Purposes?

Data Sources

We collect personal data from the following sources:

Directly from users: When you contact support or create user-generated content.
Automatically via device: Technical information, IDs, and usage data collected through our SDKs.
From platform providers: Google Play, Apple App Store (purchase confirmations, device identifiers).
From third-party partners: Advertising and analytics providers as described in this Policy.

Why do we process your personal data?

Collection and processing of Users' personal data is essential for supporting certain functionality of the Game. Without such processing, we may be unable to provide certain features of the Game, including user support, advertisements that allow the Game to remain free, restoring game progress when switching devices, analyzing statistics to improve the Game experience, detecting and fixing errors, and making informed decisions regarding further development of the Game.

We do not use automated processing of personal data to make decisions that entail legal consequences for a subject of personal data, or otherwise affect their rights and legitimate interests.

Legal grounds to process your personal data

If you choose not to provide consent for certain types of data processing (such as personalized advertising or analytics), some features of the Game may be limited, but the core gameplay functionality will remain available. Consequences of not providing data: Failure to provide certain data may result in limited functionality (e.g., inability to restore game progress across devices or receive personalized ads).

Collectively, we rely on the following grounds for data processing:

your explicit informed consent to specific data processing activities, expressed through in-app consent dialogs or device privacy settings where required by applicable law;
the need to collect data in order for us to fulfill our obligations under the contract concluded between you and Eivex Interactive (the EULA);
our legitimate interest, including:
- ensuring security of the Game and fraud prevention;
- detecting and preventing cheating or abuse in multiplayer;
- statistics analysis and improvement of game performance and user experience (without using data for direct marketing purposes);
- exercise and protection of our legal rights (e.g., in case of disputes or claims).

Our Legitimate Interest Assessment (LIA) Process:

Where we rely on legitimate interests as a legal basis, we conduct a balancing test to ensure that our interests do not override your fundamental rights and freedoms. This assessment considers:

The purpose and necessity of the processing (e.g., fraud prevention is strictly necessary to maintain game integrity);
The potential impact on users' privacy (we minimize data used for these purposes and apply strict access controls);
Safeguards implemented (data is pseudonymized where possible, retention is limited, and we provide clear opt-out mechanisms where feasible).

Example: For cheat detection in multiplayer, we process technical device information and gameplay patterns. Our LIA concluded this is necessary to provide a fair gaming environment for all players, the impact on privacy is low (we do not use this data for any other purpose), and users expect such measures in online games. We document these assessments and make them available to supervisory authorities upon request where required by law.

Google Services (Firebase, AdMob)

We use Google services including Firebase (for analytics and crash reporting) and AdMob (for advertising). These services may enable certain Google Advertising Features if you have provided appropriate consent. These features may include:

Advertising ID: Used for delivering personalized ads and measuring ad performance, based on your consent.
User-ID (Firebase): We do not enable the User-ID feature in Firebase. We do not merge analytics data across different apps or devices to create cross-device profiles.
Cross-device tracking: We do not intentionally link your activity across different devices for advertising or analytics purposes. Any cross-device functionality would be handled by Google's advertising networks only if you are logged into a Google service on multiple devices and have consented to such tracking. You can manage this via your Google Ad Settings.
Remarketing: We do not use remarketing lists to show you ads from our Game outside of the Game context.

Google acts as an independent data controller for data collected through its SDKs. We encourage you to review How Google uses information from sites or apps that use their services and manage your privacy preferences at Google Account.

In-App Consent for Advertising and Analytics

To display personalized advertising and collect analytics, we use Google User Messaging Platform (UMP) or the built-in consent manager from Appodeal Stack (based on UMP).

Before initializing advertising and analytics SDKs (AdMob, Appodeal, Firebase), the game displays a dedicated consent dialog where you can:

give explicit consent for processing data for personalized advertising and analytics;
opt out of personalized advertising (you will see only contextual/non-personalized ads);
opt out of analytics (Firebase may still collect limited technical information such as crash reports and basic performance metrics necessary to maintain the stability of the Game);
manage your consent preferences later through the in-game settings menu (Privacy Settings or Manage Ads, if available in the current version).

In certain regions (including where required by GDPR or U.S. state privacy laws), we provide a persistent privacy options entry point in the game settings menu. This allows you to review, change, or withdraw your consent preferences at any time during gameplay.

Advertising SDKs may be initialized when the Game starts, however personalized advertising features and the use of advertising identifiers (IDFA, GAID) are disabled until your consent is obtained through the consent dialog. If you opt out, we respect your choice and pass the non-personalized ads signal to our partners.

Appodeal acts as our data processor and handles data only in accordance with the consent obtained and its own privacy policy.

Our consent management system supports the IAB Transparency and Consent Framework (TCF) v2, ensuring compatibility with global industry standards for transparent user consent in digital advertising.

What information do we collect and process?

We collect only the following categories of personal data:

User information (nickname, game progress, statistics, customizations);
Contact data (email address when contacting support);
IDs (user ID, device ID, advertising ID);
Financial information (purchase history, transaction IDs);
Location information (country based on IP address);
Device information (OS, device type, game version);
Cookies or similar technologies (used by third-party services).

We do not intentionally collect additional categories of personal data beyond those described above. We make every effort to exclude accidental collection of additional data.

Legal Basis Mapping per Data Category

The table below maps each data category to its specific legal basis, purpose, and necessity for the Service to function:

Category	Legal basis	Purpose(s)	Necessity
User information	• Consent • Agreement (EULA) • Legitimate interest	• Save game progress • Provide user support • Statistics analysis • Multiplayer functionality	Required for core functionality of the Game
IDs	• Consent • Legitimate interest	• Access to Game • Statistics analysis • Personalized advertising (used only with your consent where required by applicable law)	Device ID is required for game access; Advertising ID is used based on your consent/device settings.
Financial information	• Agreement (EULA) • Legal obligation	• Transaction accounting • Payment processing • User support	Required for purchase functionality
Location & Device info	• Consent • Agreement (EULA) • Legitimate interest	• Statistics analysis • Save game progress • Region-specific content	Country-level location (derived from IP) is required for regional features and analytics.
Cookies (Website – may be used by third-party services)	• Consent • Legitimate interest	• Website functionality • Statistics analysis	Functional cookies are mandatory; tracking cookies are optional.
Contact data	• Consent • Agreement (EULA) • Legitimate interest	• User support • Communication with users	Only collected when you contact us.

We do not process your personal data for direct marketing purposes based on legitimate interest. Any personalized advertising is based on your consent, device advertising preferences, or in-game opt-out options (as described in the relevant sections of this Policy).

We strive to ensure that the data practices described in this Privacy Policy align with and accurately reflect our declarations in the Apple App Store Privacy Nutrition Labels and the Google Play Data safety section. We only declare the collection and sharing of data categories listed here and only for the purposes described in this Policy.

Cookies and Similar Technologies

Website Cookies

Our website does not currently use first-party cookies for tracking purposes. However, certain third-party services integrated with our website (such as analytics providers) may use cookies or similar technologies in accordance with their own privacy policies.

In-Game Identifiers

Important: The "Wheels in Mud 2: Online" mobile game itself does not use browser cookies. Mobile applications use device identifiers (IDFA, GAID) and other technologies provided by your device's operating system instead of browser cookies.

You can manage your tracking preferences:

in your browser settings (for the website);
in your device's privacy settings (Limit Ad Tracking on iOS or Opt out of interest-based ads on Android);
in the game settings menu (if available in the current version).

Third-party services we use that may employ cookies or similar technologies (please review their privacy policies):

Firebase Analytics (Google) - Google Privacy Policy
AdMob (Google) - AdMob Policy
Appodeal - Appodeal Privacy Policy

By using our website or the Game, you acknowledge that third-party services may process certain technical information in accordance with their respective privacy policies.

On iOS devices (iOS 14.5 and later), we request permission to track through Apple's App Tracking Transparency (ATT) framework before accessing the advertising identifier (IDFA). Without your "Allow" permission, we do not use IDFA for cross-app tracking or targeted advertising. You can change your tracking preferences at any time in your device settings (Settings > Privacy & Security > Tracking).

Data Security Measures

We implement appropriate technical and organisational measures designed to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include:

Encryption: Data transmitted between your device and our servers is protected using industry-standard encryption protocols (such as TLS).
Access controls: We follow internal policies that limit access to personal data only to individuals who require such access for the purposes described in this Policy.
Security monitoring: Our systems are regularly reviewed to detect vulnerabilities and potential security risks.
Pseudonymization: Where possible, identifying information is separated from gameplay data.
Incident response: We maintain procedures designed to detect, investigate, and respond to security incidents.
Data minimization: We collect and process only the minimum amount of personal data necessary to provide, maintain, and improve the Game.

Despite these measures, no method of transmission over the Internet or electronic storage is completely secure. While we strive to protect your personal data, we cannot guarantee absolute security.

Users are responsible for maintaining the confidentiality of their device access and player information. We are not responsible for unauthorized access resulting from compromised devices, user negligence, or other circumstances beyond our control.

In the event of a personal data breach, we will notify affected users and relevant supervisory authorities where required by applicable law.

Data Deletion: When personal data is no longer required for the purposes described in this Policy, it is securely deleted using secure deletion procedures or irreversible anonymization techniques. Deletion may involve overwriting, degaussing, or physically destroying storage media where applicable.

Is Personal Data Transferred to Third Parties?

We may share or transfer certain categories of personal data with the third-party partners identified in this Policy for the purposes described herein. By using the Game, you acknowledge that such transfers may occur.

Eivex Interactive focuses on game development, while our partners assist with infrastructure, analytics, advertising, and technical services necessary to operate the Game.

Certain third-party services integrated into the Game may process limited categories of data, including:

User information;
Identifiers (such as device identifiers or advertising IDs);
Approximate location information;
Device information;
Usage analytics and gameplay events;
Cookies or similar technologies (such as SDK identifiers or advertising identifiers).

These services help us:

store player data and restore game progress;
analyze gameplay statistics and improve the Game;
provide multiplayer functionality and technical support;
display contextual or personalized advertising.

Platform Providers

Our Game is distributed through third-party platform providers such as Google Play and the Apple App Store. These platforms may independently collect and process certain information related to your device, purchases, and application usage in accordance with their own privacy policies.

Eivex Interactive does not control how these platform providers collect, store, or process personal data through their services, as they act as independent data controllers under their respective privacy policies. We encourage you to review the privacy policies of the respective platform providers before downloading or using the Game.

Google Play – Privacy Policy
Apple App Store – Privacy Policy

Service Providers and Partners

We work with trusted third-party service providers to help operate, analyze, distribute, and improve the Game. The table below lists our primary partners, the purpose of their services, and the categories of data they may process.

Service Provider	Role	Purpose	Possible Data Processed	Privacy Policy	Data Processing Agreement (DPA)
AdMob (Google)	Independent Controller	Advertising network	Advertising identifiers, device information, usage analytics	Link	Google is a controller. We rely on their controller-controller terms.
Appodeal	Processor / Controller*	Advertising mediation platform	Advertising identifiers, device information, ad performance data	Link	Yes (Standard Contractual Clauses in place)
Firebase (Google)	Independent Controller	Analytics, crash reporting, diagnostics, and performance monitoring	Device information, application usage data, crash logs	Link	Google is a controller. We rely on their controller-controller terms.
Unity	May act as an independent controller for certain data processed through its services*	Game engine runtime services (Unity engine; analytics only if enabled)	Limited technical device information (such as GPU model, system memory, and operating system details) required for engine operation and performance optimization	Link	Where Unity acts as a controller, we rely on their privacy policy. For any processing on our behalf, we have DPA in place.
InterServer	Processor	Backend services, database infrastructure, and secure communication	IP address, account or gameplay-related data stored on the backend, and server logs	Link	Yes (Standard Contractual Clauses in place)
Contabo	Processor	Game server infrastructure used for real-time multiplayer gameplay	IP address, gameplay session data, and server logs	Link	Yes (Standard Contractual Clauses in place)

* Appodeal may act as both processor and independent controller depending on the context of data processing. For example, Appodeal acts as a controller for its internal analytics and fraud prevention measures conducted under its own privacy policy.
** Unity may act as an independent controller for certain data, such as when its analytics or advertising services are enabled. Please refer to Unity's privacy policy for details.

Some partners may act as independent data controllers with respect to the data they collect through their own services. We encourage you to review their privacy policies to understand how they process your information.

Advertising partners may collect advertising identifiers, device information, and limited usage data in order to provide contextual or personalized advertising and measure advertising performance.

Advertising partners may also use aggregated or pseudonymized data to measure advertising effectiveness and prevent fraud.

We make reasonable efforts to configure third-party SDKs (such as AdMob, Appodeal, Firebase, Unity, and similar services) to collect data only after obtaining your consent where required by applicable law and only to the extent necessary for providing, maintaining, and improving our Services. However, please be aware that these SDKs are developed and operated by third parties, and we do not have full control over their data collection practices. We encourage you to review their privacy policies for complete information.

Our service providers operate under data processing agreements or equivalent contractual safeguards in accordance with applicable data protection laws, including Article 28 of the GDPR. For partners acting as independent controllers, we rely on their compliance frameworks and, where necessary, controller-to-controller agreements.

Data shared with third-party partners is limited to what is necessary to provide the Services described in this Privacy Policy.

International Data Transfers

Your information may be transferred to and processed in countries other than the country in which you reside. These countries may have data protection laws that are different from the laws of your country.

Our servers and partner services are located in:

European Union: Germany (Contabo)
United States: InterServer, Google Cloud, Firebase
Other regions: May include Singapore, Japan, or Brazil depending on partner infrastructure

Safeguards for International Transfers

When we transfer personal data from the European Economic Area (EEA) to countries that the European Commission does not consider to have adequate data protection laws, we rely on:

Standard Contractual Clauses (SCCs) approved by the European Commission;
Binding Corporate Rules (where applicable);
EU-US Data Privacy Framework (for transfers to certified US organizations);
Your explicit consent after being informed of the potential risks;
Other legally recognized transfer mechanisms as permitted by applicable law.

You may request a copy of the appropriate safeguards we use for international transfers by contacting us at support@eivex.org.

Data Retention Periods

We retain personal data only for as long as necessary to fulfill the purposes described in this Policy. Specific retention periods:

Data Category	Retention Period	Reason
User information (game progress, nickname)	Duration of gameplay activity + 12 months of inactivity	To allow players to return to the game and restore progress
Financial information (purchase history)	7 years (or as required by tax laws)	Legal obligation (tax and accounting requirements)
Contact data (support emails)	2 years after the last interaction	To handle follow-up questions and improve support
Device information and IDs	Up to 3 years depending on analytics provider retention policies	Analytics and game improvement (data stored by third-party SDKs may be subject to their own retention schedules)
Cookies or similar technologies (third-party services)	Up to 14 months depending on the requirements of the ePrivacy Directive and third-party provider policies	Compliance with ePrivacy Directive and GDPR
Support chat logs	6 months	Quality control and training

After these periods expire, your personal data will be securely deleted or anonymized for statistical purposes.

Your Rights

Depending on your location and applicable law, you may have the right to:

request access to your personal data;
request correction of inaccurate personal data;
request deletion of your personal data;
withdraw your consent to data processing;
object to certain types of processing;
request restriction of data processing;
data portability (receiving your data in a structured, commonly used format).

To exercise your rights, email support@eivex.org (subject: "Data Subject Request" or "GDPR"). Provide your in-game nickname, country, approximate last login date and request details. We may request additional information to verify your identity before processing your request. We will respond within one month (extendable by two months for complex requests; you will be informed of any extension and reasons within the first month).

No fee will be charged for standard requests, except in cases of manifestly unfounded or excessive requests as permitted by applicable law.

You also have the right to lodge a complaint with the National Center for Personal Data Protection of the Republic of Moldova (CNPDCP): https://datepersonale.md/, or with your local data protection authority in the EU/EEA.

Automated Decision-Making

We do not use automated decision-making, including profiling, which produces legal effects concerning data subjects or similarly significantly affects them (Article 22 GDPR).

Additional Information for California Residents (CCPA/CPRA)

For California residents only. This section applies if you are a resident of the State of California, USA.

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have specific rights regarding their personal information:

Right to Know

You have the right to request that we disclose:

the categories and specific pieces of personal information we have collected about you;
the categories of sources from which the information is collected;
the business or commercial purpose for collecting, using, or sharing the information;
the categories of third parties with whom we share the information.

Right to Delete

You have the right to request the deletion of personal information that we have collected from you, subject to certain exceptions (such as completing transactions, detecting security incidents, complying with legal obligations, or exercising our rights under the law).

Right to Opt-Out of Sale/Sharing

We do not "sell" your personal information as that term is defined under the CCPA/CPRA — that is, we do not disclose your personal information to third parties in exchange for monetary or other valuable consideration.

However, we may "share" certain categories of your personal information (such as identifiers, device information, internet or other electronic network activity, and geolocation data at country level) with third-party advertising partners for the purpose of cross-context behavioral advertising — this means showing you ads based on your activity across different apps and websites, rather than just the context of our Game. Under California law, this type of sharing is treated similarly to a "sale," which is why you have the right to opt out of it.

To exercise your right to opt out of this sharing, you may:

email us your request at support@eivex.org;
adjust your device settings to limit ad personalization (for example, enable "Limit Ad Tracking" on iOS or "Opt out of interest-based ads" on Android);
use the in-game Privacy Settings or Manage Ads menu to disable personalized advertising (if available in the current version of the Game);
You may also exercise your "Do Not Sell or Share My Personal Information" rights through the in-game privacy settings where available, or by contacting us directly.

We aim to honor Global Privacy Control (GPC) signals sent by your browser or device where technically feasible. If detected and technically implementable, we treat it as an opt-out from sharing for cross-context behavioral advertising. Please note that GPC is currently primarily a web-based signal and may not be automatically transmitted by or technically implementable in all mobile apps or devices.

In compliance with 2026 CCPA/CPRA regulations, we provide mechanisms for users to confirm opt-out requests where required (e.g., via in-app settings or email). We process all opt-out signals promptly and do not require additional verification beyond identity checks where applicable.

We will process your opt-out request in accordance with applicable law.

Right to Non-Discrimination

We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny goods or services, charge different prices, or provide a different level or quality of goods or services because you exercised your rights.

Categories of Personal Information Collected (Last 12 Months)

In the preceding 12 months, we have collected the following categories of personal information (as defined by CCPA/CPRA):

Identifiers: Device ID, advertising ID, IP address, user ID
Commercial information: Purchase history, in-game transactions
Internet or other electronic network activity: Game interactions, analytics data
Geolocation data: Approximate location (country level, derived from IP address)
Inferences: Player preferences, game style, engagement patterns

Do Not Track Signals

Our website does not currently respond to "Do Not Track" signals except where required by applicable law such as Global Privacy Control (GPC).

How to Exercise Your Rights

To exercise any of your California privacy rights, please contact us at support@eivex.org. We will verify your identity by requesting information that matches our records before fulfilling your request. You may also designate an authorized agent to make a request on your behalf (we may require proof of authorization).

Additional Privacy Rights for Residents of Certain U.S. States

For residents of certain U.S. states only. In addition to the rights described in the California section above, residents of states such as Virginia, Colorado, Connecticut, Utah, and other U.S. states with comprehensive privacy laws may have the following additional or different rights regarding their personal information:

request correction of inaccurate personal data;
opt out of targeted advertising;
opt out of profiling in furtherance of decisions that produce legal or similarly significant effects on you;
appeal our decision to decline to take action on your request (we will provide a written explanation and instructions for appeal if we deny your request).

To exercise these rights or submit an appeal, please contact us at support@eivex.org with the subject line "U.S. State Privacy Request" or "Appeal". Provide your in-game nickname, approximate location/state, and details of your request. We may request additional information to verify your identity and residency.

We will respond to verified requests within the timeframes required by applicable state law (typically 45 days, which may be extended where permitted by law).

Additional Information for Brazilian Residents (LGPD)

For residents of Brazil only. This section applies if you are located in Brazil and supplements our main Privacy Policy in accordance with the Brazilian General Data Protection Law (Lei Geral de Proteção de Dados - LGPD, Law No. 13,709/18).

1. Legal Bases for Processing (Art. 7, LGPD)

Under LGPD, we process your personal data based on the following legal grounds:

Your consent (Art. 7(I)) — for personalized advertising and analytics (you can withdraw consent at any time via in-game settings);
Contract performance (Art. 7(V)) — to provide our game services under our EULA;
Legal obligation (Art. 7(II)) — to comply with tax and accounting requirements for purchases;
Legitimate interests (Art. 7(IX)) — for fraud prevention, game security, and improvement of services. We conduct a balancing test to ensure your rights and freedoms are not overridden by our interests.

2. Your Rights Under LGPD (Art. 18)

As a Brazilian resident, you have the following rights:

confirmation of whether we process your personal data;
access to your personal data;
correction of incomplete, inaccurate, or outdated data;
anonymization, blocking, or deletion of unnecessary or excessive data;
portability of your data to another service provider (subject to commercial and industrial secrets);
deletion of data processed with your consent;
information about public and private entities with which we share data;
information about the possibility of denying consent and its consequences;
withdrawal of your consent at any time.

3. International Data Transfers

Your personal data may be transferred to countries outside Brazil (including Moldova, Germany, the Netherlands, and the United States). We ensure such transfers comply with LGPD through:

Standard Contractual Clauses adopted by the Brazilian Data Protection Authority (ANPD);
compliance with adequate protection levels where applicable;
specific and prominent consent when required.

4. Data Processing Officer

Although not formally required for individual developers, we have designated a contact person for LGPD-related inquiries. You may reach them at: support@eivex.org with the subject line "LGPD".

5. Additional Protection for Children and Adolescents under Law No. 15.211/2025 (The Digital Statute)

In addition to the LGPD, our data processing practices for users in Brazil are governed by Law No. 15.211 of September 17, 2025 ("The Digital Statute for Children and Adolescents"), where technically feasible and applicable.

Age Assurance: For users under 18, we utilize reliable age verification mechanisms (provided by app stores or operating system APIs, where technically feasible) that go beyond simple self-declaration. This is necessary to prevent access to age-inappropriate content (as per Art. 9-10 of the Law).
Account Linking: In accordance with Art. 24 of the Law, accounts for users under 16 must be linked to the account of a parent or legal guardian. We implement this feature through linking mechanisms provided by the app stores or in-game settings requiring parental account confirmation, where technically feasible.
Parental Supervision Tools: For parents and guardians, we provide clear and easy-to-use supervision tools, compliant with Art. 17 of the Law, where technically feasible. These tools allow you to:
- Limit the time spent using the Game.
- Control or restrict in-game purchases.
- Manage privacy settings and in-game communication features.
Profiling Prohibition for Advertising (Art. 22 of the Law): We do not use profiling, emotional analysis, or augmented reality techniques for targeting advertising to children and adolescents in Brazil.
Randomized Items: In compliance with Art. 20 of the Law, randomized paid rewards (loot boxes) are restricted or disabled for users identified as minors in Brazil.

6. How to Exercise Your Rights

To exercise your LGPD rights, email support@eivex.org with "LGPD Request" in the subject line. Please provide:

your in-game nickname;
your approximate last login date;
details of your request;
any other information that helps us identify your data.

We will respond within 15 days as recommended by Brazilian data protection authorities. In complex cases, this period may be extended, and we will inform you of any such extension.

7. Complaints

If you believe your rights have been violated, you may lodge a complaint with the Brazilian Data Protection Authority (ANPD - Autoridade Nacional de Proteção de Dados) or consumer protection agencies such as Procon.

Portuguese translation available upon request: If you prefer to receive this information in Portuguese, please contact us and we will provide a Portuguese version of this section.

Personal data transfers between the European Economic Area (EEA) and other jurisdictions may rely on adequacy decisions or other lawful international transfer mechanisms recognized by the European Commission and the Brazilian ANPD, where applicable. Where required, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) or other legally approved transfer mechanisms.

For more information or to submit a complaint, you may contact the Brazilian Data Protection Authority (ANPD): https://www.gov.br/anpd/pt-br.

Data Protection Impact Assessment (DPIA)

In compliance with Article 35 of the GDPR, we have conducted a Data Protection Impact Assessment (DPIA) for our processing activities that are likely to result in a high risk to the rights and freedoms of individuals. This includes, but is not limited to, the use of advertising identifiers and analytics SDKs, as well as the processing of data related to minors.

Our DPIA process evaluates:

The nature, scope, context, and purposes of the processing;
Necessity and proportionality of the processing in relation to the purposes;
Risks to the rights and freedoms of data subjects;
Measures envisaged to address the risks, including safeguards, security measures, and mechanisms to ensure the protection of personal data.

We have documented the outcomes of our DPIAs and, where required by applicable law, consulted with the relevant supervisory authority prior to processing. The assessments are reviewed and updated regularly to reflect any changes in our processing operations.

A summary of the DPIA, where it does not compromise security or business secrets, is available upon request from the relevant supervisory authority.

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in legal requirements, technologies, or our Services. When we make material changes, we will update the "Last Revised" date at the top of this page.

Continued use of the Game after such updates constitutes acceptance of the updated Privacy Policy. If required by applicable law, we may ask you to explicitly accept the updated Policy before continuing to use the Game.

Contact Us

If you have questions about this Privacy Policy or how your personal data is processed, you can contact us at:

Email: support@eivex.org

We will make reasonable efforts to respond to your request within the time limits required by applicable law. Response times may vary depending on the complexity of the request.

For privacy-related inquiries, please include the subject line "Privacy Request".

Consumers residing in the European Union may also submit disputes through the European Commission's Online Dispute Resolution (ODR) platform: https://ec.europa.eu/consumers/odr/.

Document Version History

Current Version: March 17, 2026 (v2.3)

Previous versions:

March 9, 2026 (v2.2)
March 7, 2026 (v2.1)
March 1, 2026 (v2.0)
January 15, 2025 (v1.0)

We encourage you to periodically review this page for the latest information on our privacy practices. Continued use of the Game after updates constitutes acceptance of the revised Policy.