Minesweeper Rumble Privacy Policy
Effective Date: March 11, 2026
1. Purpose of Processing Personal Information
The Company processes personal information for the following purposes:
- Account creation/linking and service provision (guest/Google/Apple login, PID issuance, game data storage)
- Customer support (inquiry response and dispute handling)
- Payment/subscription handling (purchase verification and refund support)
- Fraud prevention and security (abnormal access/cheat detection and sanctions)
- Service improvement and statistics (Firebase Analytics)
- Error/failure analysis (Firebase Crashlytics)
- Ad delivery and reward payout (AdMob, AppLovin(MAX))
2. Items of Personal Information Processed
2.1 Required Collection (items necessary for service provision)
- Account identification: PID (internal identifier), nickname (including auto-assigned), account status (registered/withdrawn, etc.)
- Device/connection information: device model, OS version, app version, language/country settings, access IP, access logs
- Service usage information: play history, match history, currency (Vitalite/NeoCore) change history, inventory, quest/campaign progress
- Security information: abnormal usage detection logs (excessive input patterns, abnormal speed, etc.)
2.2 Optional Collection (when using certain features)
- Social login: Google/Apple login token and identifier (minimum scope necessary for service provision)
- Customer inquiries: email, inquiry content, attachments (such as screenshots)
2.3 Automatic Collection via Ad/Analytics SDKs (where applicable)
- Ad-related: advertising identifier (ADID/IDFA, etc.), ad impression/click/reward processing information
- Analytics/diagnostics: app event logs (Analytics), crash/error logs (Crashlytics)
- Device diagnostics: diagnostics within the scope necessary for app performance and error analysis
3. Processing and Retention Period
As a rule, the Company destroys personal information without delay once the processing purpose is achieved. However, the following retention periods may apply:
- Account/game data: deleted after a 30-day grace period following account deletion request
- Customer inquiry records: retained for one month (inquiry handling and dispute response)
- Access/security logs: retained for one month (fraud prevention and security)
- Payment/refund records: retained as required by applicable laws (platform/accounting purposes)
4. Destruction Procedures and Methods
- Procedure: destroyed after internal approval when retention period expires or purpose is achieved
- Method: electronic files are deleted in a non-recoverable manner, and printed materials are shredded/incinerated
5. Provision to Third Parties
As a rule, the Company does not provide users' personal information to third parties.
However, ad/analytics SDK providers may process data according to their own policies, which may operate as third-party provision or third-party collection (see entrustment and overseas transfer below).
6. Entrustment of Personal Information Processing
The Company may entrust personal information processing tasks for smooth service operation.
| Entrusted Party | Entrusted Work | Processed Items (Examples) | Retention/Use Period |
|---|---|---|---|
| Amazon Web Services (AWS) | Server/DB hosting | Account/game data, logs | Until purpose is achieved or contract ends |
| Railway | Server/deployment/operation | Account/game data, logs | Until purpose is achieved or contract ends |
| Google (Firebase) | Usage analytics/error analysis | Event logs, device/app information, crash logs | Until purpose is achieved or per settings |
| Google AdMob | Ad delivery/rewarded ads | Advertising identifiers, ad interactions | Until purpose is achieved or per settings |
| AppLovin (MAX) | Ad delivery/rewarded ads | Advertising identifiers, ad interactions | Until purpose is achieved or per settings |
7. Overseas Transfer of Personal Information
The Company may transfer personal information overseas for infrastructure operation and ad/analytics services.
| Recipient | Country | Transferred Items | Purpose | Timing/Method |
|---|---|---|---|---|
| AWS (some regions) | United States | Account/game data, logs | Infrastructure operation | Network transfer during service use |
| Railway | Singapore/United States | Account/game data, logs | Infrastructure operation | Network transfer during service use |
| Google (Firebase/AdMob) | Global | Analytics/error/ad-related data | Analytics/error/ad operations | Transferred during service use |
| AppLovin (MAX) | United States, etc. | Advertising identifiers, ad interactions | Ad delivery | Transferred during service use |
8. Rights of Users (Data Subjects) and How to Exercise Them
Users may request access, correction, deletion, suspension of processing, and withdrawal of consent (for optional items) under applicable personal-information laws.
Requests may be submitted to the customer support email (groom00200@gmail.com), and the Company will process them under applicable laws.
9. Security Measures
The Company implements the following measures to protect personal information:
- Minimization of access rights and access-log management
- Encryption in transit (HTTPS/TLS)
- Secure management of sensitive information (tokens/keys, etc.)
- Log monitoring and incident response
- Periodic inspections and vulnerability response
10. Privacy Officer and Contact
- Privacy Officer: Ju Young Kim (Representative)
- Contact (Customer Support): groom00200@gmail.com
- Business Hours: 09:00 - 18:00
11. Changes to This Privacy Policy
This Policy is effective from March 11, 2026. If changed, notice will be provided in-app.