Privacy Policy – What Would You Do?

Last updated: May 19, 2026

1. Introduction

Welcome to What Would You Do?, a moral dilemma and decision-making game developed by NorthSourceSystems ("we," "us," or "our").

Your privacy is extremely important to us. This Privacy Policy explains how our application collects, uses, processes, and protects your information when you use the app. It also explains your rights regarding your personal data under applicable data protection laws, including the European General Data Protection Regulation (GDPR), the UK Data Protection Act, California privacy laws (CCPA/CPRA), and Google Play Developer Policies.

By downloading and using the application, you agree to the practices described in this Privacy Policy. If you do not agree with this policy, please do not use the application.

2. Data Controller

For users in the European Economic Area (EEA) and the United Kingdom (UK), NorthSourceSystems acts as the Data Controller of your personal information as described in this policy.

3. Information We Collect

Our application is designed to minimize data collection. We do not require you to create an account or provide personal identifiers (such as your name or email) to play.

A. Anonymous Gameplay Data

We collect anonymous and aggregated gameplay information to understand how users interact with our game. This includes:

• Choices and answers given in moral dilemmas.

• General interaction statistics.

• Anonymous usage analytics.

Note: This information does not identify you personally, is not linked to your real identity, and cannot reasonably be used to identify individual users.

B. Technical, Analytics, and Advertising Data (Automatically Collected)

To ensure the app functions properly, displays advertisements, analyzes performance, and monitors crashes, we integrate third-party SDKs (such as Google AdMob, Google Play Services, Firebase, and Unity). These services may automatically collect limited technical information, which under certain laws (like GDPR) may be considered personal data. This includes:

• Device type, model, and manufacturer.

• Operating system version.

• IP address (usually anonymized or masked).

• Language and regional settings.

• Advertising identifiers (such as the Google Advertising ID).

• App performance data, logs, and crash reports.

4. Information We Do Not Collect

We strictly do not intentionally collect, store, or process:

• Full names, email addresses, or phone numbers.

• Physical addresses or precise GPS location.

• Government identifiers or financial/billing information.

• Your device's contacts, photos, microphone, camera, or media files.

• User account or registration data (the app does not feature a login system).

5. How We Use Your Information and Legal Basis (GDPR)

Under the GDPR and UK privacy laws, we must have a valid legal basis to process your data. We process the collected data for the following purposes:

• App Performance and Stability: To monitor crashes, fix bugs, and ensure the game runs smoothly. (Legal basis: Legitimate Interest)

• Analytics: To understand how users interact with our game so we can improve content, balance gameplay, and enhance user experience. (Legal basis: Consent and/or Legitimate Interest)

• Advertising Delivery and Measurement: To serve ads through Google AdMob, measure their performance, and prevent ad fraud. (Legal basis: Legitimate Interest for non-personalized ads / Consent for personalized ads)

6. Advertising and User Consent (EEA & UK Users)

We use Google AdMob to display advertisements, which allows us to keep this game free to play.

For users located in the European Economic Area (EEA) and the UK: When you first launch the app, you will be presented with a Consent Management Provider (CMP) form managed via Google's User Messaging Platform (UMP). This form asks for your explicit permission to show personalized ads.

• If you consent: AdMob and its partners will use your Advertising ID to show ads tailored to your interests.

• If you do not consent: You will still see ads, but they will be non-personalized (contextual, based on the app's content) and will use limited identifiers strictly for ad frequency capping, aggregated reporting, and fraud prevention.

Managing Your Ad Preferences:

You can reset or change your consent status at any time within your device settings:

• Android: Go to Settings > Privacy > Ads and select "Reset advertising ID" or "Delete advertising ID".

7. Third-Party Services

The application uses third-party services that process data according to their own privacy policies. We encourage you to review their data practices:

• Google Play Services: Google Privacy Policy

• Google AdMob: Google Advertising Privacy & Terms and How Google uses information from sites or apps

• Firebase Analytics & Crashlytics: Firebase Privacy and Security

• Unity Services & Unity Ads: Unity Privacy Policy

8. International Data Transfers

The third-party services we use (such as Google and Unity) operate globally. Therefore, your data may be transferred to and processed in countries outside of the EEA and the UK (such as the United States). These transfers are protected by appropriate legal safeguards, including the European Commission’s Standard Contractual Clauses (SCCs), UK International Data Transfer Agreements (IDTA), and the EU-US / UK-US Data Privacy Frameworks where applicable.

9. Your Data Protection Rights (GDPR / UK GDPR)

If you are located in the EEA or the UK, you have the following rights regarding your personal data:

• Right to Access / Portability: Request a copy of the personal data processed.

• Right to Erasure (Right to be Forgotten): Request deletion of your data.

• Right to Restrict or Object: Limit or object to our processing of your data based on legitimate interests.

• Right to Withdraw Consent: Withdraw your consent for personalized ads at any time.

• Right to Lodge a Complaint: File a complaint with your local Data Protection Authority (DPA).

How to exercise your rights and Request Data Deletion:

Because our app is designed to collect minimal data and does not require a user account, we do not store personal identifiers (like your name or email) in a traditional database. Most technical data is tied to your device's Advertising ID. To fully exercise your right to deletion or to stop data collection, you can:

1. Reset or Delete your device's Advertising ID in your device settings (Settings > Privacy > Ads).

2. Uninstall the application from your device.

3. Contact Us via Email: You may submit a formal data deletion request by emailing us at north.source.systems@gmail.com. If you choose to contact us, please provide your device's Advertising ID so we can effectively locate and request the deletion of any associated data from our third-party analytics and advertising partners.

10. US State Privacy Rights (CCPA/CPRA - California)

Under the California Consumer Privacy Act (CCPA/CPRA) and other US state privacy laws, residents have specific rights regarding their personal information.

• Right to Know and Access: You can request details about the categories of personal data we collect and disclose.

• Right to Delete: You can request the deletion of your data.

• Right to Opt-Out of "Sale" or "Sharing": We do not sell your personal data for monetary compensation. However, sharing technical identifiers (like the Google Advertising ID) with third-party ad networks (like AdMob) to serve personalized ads may be legally defined as "selling" or "sharing" under California law.

You can opt-out of personalized ad targeting at any time by disabling personalized ads in your Android device settings (e.g., opting out of Ads Personalization) or via the privacy prompts within the application.

11. Children’s Privacy

Our application is not directed toward children under the age of 16 (in the EEA) or under 13 (in the US, under the Children's Online Privacy Protection Act - COPPA). We do not knowingly collect personal data from children.

If you are a parent or guardian and believe that your child has provided personal data or technical identifiers to our third-party partners without appropriate consent, please contact us immediately at the email below so we can take swift action to ensure that data is purged from our third-party integration servers.

12. Data Security

We implement reasonable technical and organizational measures designed to protect your information against unauthorized access, loss, misuse, or alteration. However, please be aware that no method of electronic transmission over the internet or method of digital storage is 100% secure, and we cannot guarantee absolute security.

13. Data Retention

We retain aggregated, non-identifiable gameplay data indefinitely to monitor and improve our product. Advertising, technical, and analytical identifiers collected by integrated third-party SDKs are retained according to their respective privacy policies and are periodically deleted or anonymized by those providers.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our gameplay features, technological integration, or legal requirements. Any updates will be marked by a revision of the "Last updated" date at the top of this document. We recommend checking this page periodically. Your continued use of the application after updates are posted constitutes acceptance of the revised policy.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, your data rights, or our data handling practices, please contact us at:

NorthSourceSystems

Email: north.source.systems@gmail.com