BrainClash
§ 01The rulebook

Privacy policy.

In effect — 2026-05-03

BrainClash is a head-to-head trivia game. To run it we keep a small amount of data about you — enough to log you in, match you with the right opponent, remember your score, and process a purchase if you choose to make one. This page explains what we collect, why, and what you can do about it.

§ 01Who's responsible

BrainClash ("we", "us") operates the BrainClash mobile app and the website at brainclash.app. If you have a question about this policy or your data, write to [email protected].

§ 02What we collect

Account information

  • Email address and a display name you choose
  • A password (stored only as a salted hash) — or a Google Sign-In identifier if you sign in with Google
  • Email-verification status

Gameplay

  • Match history: questions answered, scores, opponents, win/loss
  • Stats and skill rating used for matchmaking
  • Category preferences and any questions you've flagged

Purchases

  • Receipt and entitlement information for in-app purchases, processed by RevenueCat and the platform store (Google Play, App Store)
  • We do not see, store, or process your payment card

Technical / log data

  • IP address, device model and OS version, app version
  • Crash and error reports, with a session identifier so we can debug
  • Server logs of API requests, kept for a limited window for security and abuse prevention

§ 03Why we use it

  • To run the game. Sign you in, match you, score you, save your progress.
  • To keep it fair. Detect cheating, abuse, and harassment; enforce our Terms.
  • To support you. Reply to your messages and confirm purchases.
  • To improve the product. Aggregate, anonymized stats — what categories play well, where the app crashes, where players drop off.

We do not sell your data, and we don't share it with advertisers.

§ 04Who we share it with

Only the providers we need to run the service. Each is bound by a data-processing agreement and may only use your data on our instructions.

  • Google / Apple — sign-in (if you choose) and the platform stores
  • RevenueCat — in-app purchase verification
  • Cloud hosting — the servers that run the API and database
  • Email delivery — to send verification and password-reset messages

We may also disclose data when required by law, to protect our rights, or to protect users from harm — but only the minimum needed.

§ 05How long we keep it

  • Active accounts: as long as you keep playing.
  • After you delete: account and personal data are soft-deleted immediately and permanently purged after 30 days, except where the law requires us to keep specific records longer (typically tax/receipts for purchases, up to 7 years).
  • Server logs: rotated within 90 days.
  • Crash reports: kept up to 180 days.

§ 06Your choices

  • Access & correction — most of your data is visible inside the app under Profile → Settings. You can update your display name and email there.
  • Deletion — see Delete your account.
  • Export — write to [email protected] and we'll send you a copy of your data within 30 days.
  • Opt out of non-essential email — every non-transactional email has an unsubscribe link.
  • If you're in the EU/UK, you also have rights under GDPR/UK-GDPR (objection, restriction, portability, complaint to a supervisory authority).

§ 07Children

BrainClash is not directed at children under 13 (or the equivalent minimum age in your country). We don't knowingly collect data from them. If you believe a child has signed up, write to us and we'll remove the account.

§ 08International data

Our servers may be located outside your country. Where required, we rely on standard contractual clauses or equivalent safeguards for international transfers.

§ 09Changes

When we change this policy in a meaningful way, we'll update the date at the top and notify you in-app or by email. Continued use after a change means you accept the new version.

§ 10Contact

Privacy questions, requests, complaints — [email protected].