Effective date: [INSERT DATE BEFORE PUBLISHING]
Contact: support@prizma.app
Prizma ("we", "us", "the app") is a color-memory training game developed by Maksim Tkachuk. This Privacy Policy explains what information we collect, how we use it, with whom we share it, and what rights you have regarding your data.
By downloading or using Prizma, you agree to the practices described here. If you do not agree, please uninstall the app.
When you first launch the app, a random UUID (universally unique identifier) is generated on your device and stored locally. This ID is not linked to your name, email, Apple ID, or any account. It is used solely to associate your game scores with a single anonymous profile on the global leaderboard.
Each time you complete a game session, we record:
These are submitted to Supabase (our backend) under your anonymous UUID. No name, email, phone number, or payment data is involved.
You may choose a display name shown on the leaderboard (e.g., "Pixel Hawk"). This is entirely optional and user-supplied. It is stored on Supabase linked to your anonymous UUID. You can change it at any time in Settings.
To measure advertising performance, we log the following events to Supabase when you interact with ads (impression, click, close, error):
identifierForVendor / IDFV) — a device-level ID stable per app install, reset on reinstall. This is not the IDFA (Advertising Identifier).This data is stored anonymously. It is not linked to your name, email, or Apple ID.
If you grant permission via the App Tracking Transparency (ATT) prompt, ad networks (primarily Yandex Mobile Ads) may access your IDFA to serve personalized ads and measure ad performance. The ATT prompt appears after your first completed game round — you are never prompted at cold start.
If you deny or have not yet been prompted, ad networks operate in a limited, non-personalized mode. The app is fully functional regardless of your choice.
We integrate KSCrash for crash reporting. Crash reports may include device model, iOS version, app version, and stack trace. No personal identifiers are attached.
| Data | Purpose |
|---|---|
| Anonymous UUID + scores | Operate the global leaderboard; calculate your personal bests |
| Display name | Show your entry on the leaderboard |
| Ad event data (device model, locale, IDFV) | Measure ad fill rates, detect errors, optimize ad cadence |
| IDFA (with consent) | Enable personalized ads served by Yandex/Unity; attribution |
| Crash reports | Identify and fix crashes; improve stability |
We do not use your data to build marketing profiles, sell data to brokers, or share data for purposes unrelated to operating the app.
We share data with the following third parties, each under their own privacy policy:
Role: Backend database and API for leaderboard and ad analytics.
Data shared: Anonymous UUID, scores, display name, ad event records (device model, locale, IDFV, app version).
Storage location: EU (Supabase default region).
Privacy policy: https://supabase.com/privacy
Role: Primary ad network (interstitial, banner, rewarded, app open ads).
Data shared: IDFA (if ATT consented), device model, OS version, locale, IP address (via SDK).
Privacy policy: https://yandex.com/legal/confidential/
Role: Secondary/fallback ad network (interstitial, rewarded, banner ads).
Data shared: IDFA (if ATT consented), device identifiers, gameplay context via SDK.
Privacy policy: https://unity.com/legal/game-player-and-app-user-privacy-policy
Role: Optional Game Center integration; ATT consent management; in-app purchase (premium unlock).
Data shared: Governed entirely by Apple's privacy policy.
Privacy policy: https://www.apple.com/privacy/
The app includes AppLovin MAX as a mediation layer that may route to Google AdMob. If ATT consent is granted, these networks may receive IDFA.
AdMob privacy policy: https://policies.google.com/privacy
AppLovin privacy policy: https://www.applovin.com/privacy/
| Data | Retention Period |
|---|---|
| Anonymous UUID (local) | Until app is uninstalled |
| Leaderboard scores | Retained indefinitely for historical leaderboard integrity; daily entries are replaced each day; weekly entries are replaced each week per profile |
| Profile (display name, stats) | Retained until deletion is requested |
| Ad event logs | 90 days, then automatically purged |
| Crash reports | 30 days |
Prizma is rated 4+ on the App Store. The app does not collect any personally identifiable information from anyone, including children under 13. We do not require account registration, email, or any personal data. Anonymous UUIDs are randomly generated on-device and carry no real-world identity.
The app displays advertising. If the device user is known to be under 13, ATT consent cannot legally be granted, and ad networks will operate in a non-personalized mode. Parents can disable ad tracking entirely via Settings → Privacy & Security → Tracking on the device.
We comply with the Children's Online Privacy Protection Act (COPPA) and Apple's guidelines for 4+ rated apps.
Under the General Data Protection Regulation, you have the right to:
Our legal basis for processing leaderboard data is legitimate interest (operating a fair global leaderboard). Our legal basis for ad tracking is consent (ATT prompt).
California residents have the right to:
You can revoke ATT consent at any time: iOS Settings → Privacy & Security → Tracking → turn off Prizma. This immediately stops IDFA sharing with ad networks. The app continues working normally.
All communication between the app and Supabase uses HTTPS/TLS 1.2+. Your anonymous UUID is stored in iOS UserDefaults (not the Keychain; it carries no sensitive value). We use Supabase Row-Level Security (RLS) policies so that one anonymous profile cannot read or modify another's data.
Supabase stores data in the EU. Yandex Mobile Ads and Unity Ads may process data in their respective jurisdictions (Russia/EU for Yandex; USA/EU for Unity). By using the app, you consent to these transfers. Where required by law, appropriate transfer mechanisms (e.g., Standard Contractual Clauses) apply per each provider's policy.
We may update this policy when we add new features or third-party services. The effective date at the top will change. Continued use of the app after a policy update constitutes acceptance. For material changes, we will post a notice inside the app.
Questions, data requests, or deletion requests:
Email: support@prizma.app
We aim to respond within 5 business days.