PRIVACY POLICY — TERRANOX
Effective date: 2024-01-15

This Privacy Policy explains how Hextra (“Hextra”, “we”, “us”, or “our”) collects, uses, shares, and protects information when you use the Terranox mobile application (the “App”) and related services (collectively, the “Service”).

By using the Service, you acknowledge that you have read and understood this Privacy Policy.

1) Who We Are (Controller)

For purposes of the EU/UK General Data Protection Regulation (“GDPR”) and similar laws, Hextra is the data controller of personal data processed in connection with the Service, except where a third party acts as an independent controller (for example, Google when serving ads).

Contact: noname47856@gmail.com

2) Information We Collect

We collect information in the following ways:

A. Information you provide

• Purchase information (IAP): When you make in-app purchases, the transaction is processed by the app store (e.g., Google Play). We do not collect your full payment card details. We may receive limited purchase and entitlement information (e.g., whether a purchase was successful, product ID, and receipt/transaction identifiers) to grant content and prevent fraud.

B. Information collected automatically

Depending on your device settings and the permissions you grant, we and our third-party partners may collect:

• Device and app information: device model, operating system version, language, app version, country/region (approximate), time zone, and identifiers.

• Usage data / analytics: events related to gameplay, screens viewed, session duration, and interactions.

• Crash and performance data: crash logs, diagnostics, and performance data to identify and fix errors.

• Approximate location: derived from IP address for fraud prevention, security, and basic analytics (not precise GPS unless you explicitly allow it).

• Advertising data: ad impressions, clicks, ad frequency, performance measurements, and (depending on your consent/choices) advertising identifiers and signals used for ad personalization and measurement.

C. Cookies / local storage / similar technologies

Mobile apps do not use browser cookies in the same way websites do, but the Service and third-party SDKs may use local storage and similar technologies (e.g., device identifiers, app instance IDs, SDK storage) to:

• remember settings,

• measure performance and usage,

• detect fraud/abuse,

• serve and measure ads.

Where required by law (e.g., EEA/UK/Switzerland), we will request your consent before using such technologies for advertising personalization and certain analytics.

3) Third-Party Services (SDKs) We Use

The App uses third-party services that may collect and process information as described above. These services may act as our processors or as independent controllers, depending on the context.

Google Firebase (e.g., Firebase Analytics, Firebase Crashlytics)
Purpose: analytics, crash reporting, diagnostics, performance monitoring.
Privacy policy: https://policies.google.com/privacy

Google AdMob (Google Mobile Ads SDK)
Purpose: displaying ads, measuring ad performance, fraud prevention, and (with consent where required) personalized advertising.
Privacy policy: https://policies.google.com/privacy

Google Play Services / Google Play Billing
Purpose: app distribution, security, billing/IAP processing, transaction verification.
Privacy policy: https://policies.google.com/privacy

Unity Technologies (if the App uses Unity/Unity services or Unity Ads/analytics)
Purpose: game engine operation; may include analytics/diagnostics depending on configuration.
Privacy policy: https://unity.com/legal/privacy-policy

Important: The exact data collected by these providers can vary based on your device, region, consent choices, and SDK configuration.

4) How We Use Information

We use information to:

• Provide, operate, and maintain the Service (including IAP entitlements);

• Improve gameplay, features, and user experience;

• Monitor and fix bugs and crashes (diagnostics and crash reporting);

• Provide customer support and respond to requests;

• Show ads and measure their performance;

• Prevent fraud, abuse, and security incidents;

• Comply with legal obligations and enforce our terms.

5) Legal Bases for Processing (GDPR / UK GDPR)

If you are in the European Economic Area (EEA), the UK, or Switzerland, we rely on the following legal bases:

• Consent (Art. 6(1)(a))
  For personalized advertising, and for the use of certain storage/identifiers where required by law, we request your consent. You can withdraw consent at any time (see Section 9).

• Contract (Art. 6(1)(b))
  To provide the Service you request, including enabling gameplay features and delivering IAP content.

• Legitimate interests (Art. 6(1)(f))
  For security, fraud prevention, service improvement, non-personalized measurement, and basic diagnostics—balanced against your rights. Where consent is legally required, we will not rely on legitimate interests.

• Legal obligation (Art. 6(1)(c))
  To comply with applicable laws, requests by authorities, and accounting/tax obligations (where relevant).

6) Advertising, Personalization, and EU User Consent Policy

We show ads in the App and use Google AdMob. In regions where required (EEA/UK/Switzerland), we implement a consent flow to comply with Google’s EU user consent requirements and applicable privacy laws.

What this means for you

• We may ask for your consent to:

  • use local storage / device identifiers where legally required, and

  • collect, share, and use personal data for personalized ads.

• If you do not consent to personalized ads (or if you withdraw consent), we will aim to show non-personalized ads where available, and still process limited data for:

  • ad delivery,

  • frequency capping,

  • measurement,

  • fraud and security.

Consent records

Where required, we (or our consent platform/provider) maintain records of consent.

7) How We Share Information

We do not sell your personal data. We may share information:

• With service providers/partners (e.g., Firebase, AdMob, Unity) to operate analytics, crash reporting, and advertising as described in this Policy;

• For legal reasons if we believe disclosure is required by law, regulation, legal process, or governmental request;

• To protect rights and safety of users, Hextra, or others, including fraud prevention and security;

• In a business transfer (e.g., merger, acquisition, or sale of assets). If this happens, we will provide notice where required by law.

8) International Data Transfers

Your information may be processed in countries other than where you live (including the United States), where data protection laws may differ.

When required under GDPR/UK GDPR, we rely on recognized transfer mechanisms such as Standard Contractual Clauses or other lawful safeguards used by our service providers.

9) Your Choices and Rights

A. Managing consent and ad personalization

You can change your privacy choices at any time:

• In the App: use any available “Privacy” / “Ads” / “Consent” settings (if provided), or the consent prompt when shown.

• On your device: reset/limit advertising identifier or adjust ad preferences in your device settings (availability varies by OS).

• Google ad settings: you may also manage certain ad personalization settings through Google.

Withdrawing consent will not affect processing already carried out before withdrawal.

B. Your privacy rights (EEA/UK/Switzerland and other regions where applicable)

You may have the right to:

• Access your personal data;

• Correct inaccurate data;

• Delete your data (in certain cases);

• Restrict or object to processing (in certain cases);

• Data portability (in certain cases);

• Withdraw consent at any time where processing is based on consent.

To exercise rights, contact: noname47856@gmail.com
We may need to verify your request (e.g., to prevent fraud). Some data may be required to provide the Service or comply with legal obligations.

If you are in the EEA/UK, you also have the right to lodge a complaint with your local data protection authority.

10) Data Retention

We keep information only as long as necessary for the purposes described in this Policy, including:

• providing the Service,

• troubleshooting and improving,

• complying with legal obligations,

• resolving disputes,

• enforcing agreements.

Crash/diagnostic logs and analytics are typically retained for a limited period according to provider settings and operational needs. Purchase/entitlement records may be retained longer as required for accounting, fraud prevention, and legal compliance.

11) Security

We use commercially reasonable safeguards designed to protect information. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

12) Children’s Privacy

The Service is not intended for children under 13 (or a higher age where required by local law). We do not knowingly collect personal data from children under 13. If you are a parent/guardian and believe your child provided personal data, contact us at noname47856@gmail.com and we will take appropriate steps to delete it where required.

13) Links to Other Sites

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. Please review their privacy policies.

14) Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will post the updated version in the App or on the page where this Policy is displayed and update the “Effective date” above. Your continued use of the Service after changes means you accept the updated Policy.

15) Contact Us

If you have questions or requests about this Privacy Policy or our data practices, contact:
noname47856@gmail.com