Privacy Policy for Griddle
This Privacy Policy describes how Cryptology LLC ("Cryptology", "we", "us", or "our") handles information in connection with the Griddle mobile application (the "App"). The App is distributed globally through the Apple App Store and the Google Play Store. This Policy applies to your use of the App on Apple iOS, Google Android, and any other supported platform, in any country where the App is available. Jurisdiction-specific rights are described in Sections 7 and 11 through 13.
By downloading, installing, or using the App, you acknowledge that you have read and understand this Policy. If you do not agree with any part of this Policy, do not use the App.
1. Summary
The App is designed to function offline. Your puzzles, progress, statistics, settings, and gameplay are stored only on your device. We do not operate game servers and do not receive your gameplay data. The App contains advertising and optional in-app subscriptions, which are delivered by third-party services that may collect limited information as described in this Policy.
We have written this Policy to be readable. The detailed sections below take precedence in the event of any inconsistency between this summary and the rest of the document.
2. Who We Are
The data controller responsible for processing personal information described in this Policy is:
Cryptology LLC
30 N Gould St Ste R
Sheridan, WY 82801
Contact:
contact@cryptologyapps.com
For users in the European Economic Area, United Kingdom, or Switzerland: if you have inquiries regarding the processing of your personal data under applicable laws, please contact us at the email above.
For users in California: please see Section 11 ("California Residents") for additional disclosures.
3. Information We Do Not Collect
We do not require you to create an account, sign in, or provide any personal information to use the App. We do not collect, transmit, or receive:
- Your name, email address, phone number, or postal address
- Your puzzle answers, gameplay progress, hints used, completion times, statistics, streaks, or any other game data
- Your contacts, photos, files, location data, microphone, or camera data
- Any health, financial, or sensitive personal information
Your gameplay data is stored locally on your device using your operating system's standard on-device storage mechanisms (such as SQLite and your platform's preference storage). When you delete the App, this data is deleted from your device.
We do not operate analytics, crash reporting, or telemetry services that collect data from your use of the App.
4. Information Collected by Third-Party Services
The App integrates the following third-party services that operate independently and may collect information in accordance with their own privacy policies. We do not control, and are not responsible for, the privacy practices of these third parties.
4.1 Google AdMob (Advertising)
The App uses Google AdMob, operated by Google LLC, to display advertisements (including interstitial ads after puzzle completion). AdMob may collect:
- Your device's advertising identifier (Apple's Identifier for Advertisers, or "IDFA," on iOS, or Google's Advertising ID on Android), subject to your platform's tracking permission (see Section 5)
- Your device's IP address, which may be used to infer approximate location (typically at the city or country level)
- Device characteristics (device model, operating system version, language, time zone, mobile carrier, screen size)
- Information about your interactions with advertisements (impressions, clicks, viewability)
- A non-personally-identifiable advertising session identifier
Google may use this information to serve advertising, measure ad performance, prevent fraud, and comply with legal obligations. Google's privacy practices are described at https://policies.google.com/privacy. You can learn about Google's advertising preferences at https://adssettings.google.com.
4.2 RevenueCat (In-App Subscriptions)
If you purchase an optional Griddle Pro subscription, the App uses RevenueCat, operated by RevenueCat, Inc., to manage and validate the subscription. RevenueCat may collect:
- An anonymous, randomly generated identifier associated with your installation of the App
- Purchase receipt data provided by the App Store or Google Play Store, including product identifiers, transaction identifiers, and subscription status
- Limited device characteristics (operating system version, App version, country/region)
RevenueCat does not receive your name, payment card information, your Apple ID, or your Google account. All payment processing is handled by Apple (on iOS) or Google (on Android). RevenueCat's privacy practices are described at https://www.revenuecat.com/privacy.
4.3 Apple Services
When you download or pay for the App or in-app purchases, Apple processes your transaction. Apple's collection and use of information is governed by Apple's privacy policy at https://www.apple.com/legal/privacy/. We receive aggregated, non-personally-identifiable App Analytics data from Apple only if you have opted in to share App Analytics with developers in your iOS Settings (Privacy & Security → Analytics & Improvements → Share with App Developers).
4.4 Google Services (Android)
When you download the App from the Google Play Store or make in-app purchases, Google processes your transaction. Google's collection and use of information is governed by Google's privacy policy at https://policies.google.com/privacy. Aggregated, non-personally-identifiable analytics data may be available to us through the Google Play Console only if you have opted in via your Google Play settings.
5. Advertising Permissions
5.1 iOS App Tracking Transparency
On iOS, the App will request your permission to track activity across other companies' apps and websites the first time you use the App. This prompt is required by Apple before any third-party SDK in the App may access your IDFA.
If you decline the prompt, AdMob will only deliver non-personalized advertisements based on contextual signals (such as the App you are using), and your IDFA will not be shared with advertisers. You may change this permission at any time in your iOS Settings under Privacy & Security → Tracking.
5.2 Android Ad Personalization
On Android, AdMob may use your device's Advertising ID by default. You can opt out of personalized advertising by going to Settings → Google → Ads (or your device's equivalent path) and enabling "Opt out of Ads Personalization," or by resetting your Advertising ID. With this set, AdMob will deliver only non-personalized advertisements.
6. How Information Is Used
The limited information collected by the third-party services described in Section 4 is used solely to:
- Display advertisements within the App (with your consent for personalized advertising under iOS App Tracking Transparency or Android ad personalization, where applicable)
- Process, validate, and restore in-app subscriptions you have purchased
- Detect, prevent, and address technical issues, fraud, or abuse
- Comply with legal obligations and respond to lawful requests
We do not sell your personal information. We do not share your information with third parties for their independent marketing purposes.
7. Legal Bases for Processing (EEA, UK, Switzerland)
If you are located in the European Economic Area, United Kingdom, or Switzerland, our legal bases for the limited processing described in this Policy are:
- Consent, for tracking via your advertising identifier (IDFA on iOS, GAID on Android), subject to your platform's tracking permission
- Performance of a contract, for processing in-app subscription transactions you initiate
- Legitimate interests, for serving non-personalized advertising, preventing fraud and abuse, and ensuring the security of the App
- Compliance with legal obligations, where applicable
You have the right to withdraw consent at any time, including by changing your platform's tracking permission as described in Section 5.
Automated decision-making. We do not engage in automated decision-making, including profiling, that produces legal or similarly significant effects on you. The third-party advertising service described in Section 4.1 may engage in profiling for ad targeting; you may opt out of this profiling via your platform's tracking permissions as described in Section 5.
8. Sharing of Information
We share information only as described in this Policy:
- With the third-party service providers listed in Section 4 (Google AdMob, RevenueCat) for the limited purposes described
- With Apple (for iOS) and Google (for Android), in connection with App Store and Google Play Store transactions and operations
- With law enforcement, regulators, or other third parties when required by law, valid legal process, or to protect the rights, property, or safety of users or others
- In connection with a corporate transaction such as a merger, acquisition, or sale of assets, in which case any successor entity will be bound by this Policy or a privacy policy with materially equivalent protections
We do not sell or rent personal information.
9. International Data Transfers
The third-party services described in Section 4 are operated by U.S.-based companies, and information they collect may be transferred to and processed in the United States or other jurisdictions outside your country of residence. These jurisdictions may have data protection laws that differ from those in your country. The third-party providers maintain their own safeguards for international data transfers (including standard contractual clauses, where applicable). By using the App, you acknowledge that information collected by these third parties may be transferred internationally as described in their respective privacy policies.
For transfers from the European Economic Area, United Kingdom, or Switzerland, our third-party providers may rely on the EU-US Data Privacy Framework, the UK Extension to the EU-US Data Privacy Framework, the Swiss-US Data Privacy Framework, or Standard Contractual Clauses approved by the European Commission. The specific mechanism is determined by each provider; please consult their privacy policies for current details.
10. Data Retention
Because we do not collect or store personal information directly, we have no retention obligations on our side. Information collected by third-party services is retained according to those services' policies. Information stored locally on your device is retained until you delete the App or clear its data through your device settings.
Information collected by Google AdMob, RevenueCat, Apple, and (on Android) Google is retained per each provider's retention policy, available in their privacy policies linked in Section 4. We do not control these retention periods.
11. California Residents (CCPA / CPRA)
If you are a California resident, you have the following rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act:
- Right to know what personal information has been collected about you, the sources, the purposes, and the categories of third parties with whom it has been shared
- Right to delete personal information we have collected from you, subject to legal exceptions
- Right to correct inaccurate personal information
- Right to opt out of the sale or sharing of personal information for cross-context behavioral advertising
- Right to limit the use of sensitive personal information
- Right to non-discrimination for exercising your rights
- Right to limit automated decision-making that produces legal or similarly significant effects, where applicable under California law
Categories of personal information collected in the past twelve months (by category, as defined in the CCPA): Identifiers (advertising identifiers and IP addresses, collected by AdMob); Geolocation data (approximate location inferred from IP address, collected by AdMob); Internet or other electronic network activity information (ad interaction data, collected by AdMob); Commercial information (subscription status, collected by RevenueCat); and Inferences drawn from these categories for ad personalization (collected by AdMob, subject to your tracking permission). Information is collected from you and from your device.
We do not sell personal information. We may share advertising identifiers with AdMob for personalized advertising purposes, which under California law may be considered "sharing" for cross-context behavioral advertising. You can opt out of this sharing at any time by adjusting your platform's advertising permissions as described in Section 5. We do not knowingly sell or share personal information of consumers under sixteen years of age.
To exercise your California rights, please contact us at contact@cryptologyapps.com with the subject line "California Privacy Request." We will verify your identity by requesting confirmation of the email address associated with the request and the device on which you used the App. We will respond within forty-five days, or notify you if we need an additional forty-five days.
You may designate an authorized agent to make a request on your behalf by providing the agent's name, contact information, and signed written permission.
12. Other U.S. State Privacy Rights
If you are a resident of Virginia, Colorado, Connecticut, Utah, or another U.S. state with comprehensive privacy legislation, you may have rights similar to those described in Section 11, including the right to access, delete, correct, port, or opt out of certain processing of your personal information. Please contact us at contact@cryptologyapps.com to exercise these rights. We will respond in accordance with the timelines required by your state's law.
13. Other Jurisdictions
The App is available globally. If you are located in a jurisdiction with comprehensive privacy legislation, you may have rights to access, correct, delete, restrict, object to, or port your personal information. These jurisdictions include, but are not limited to, the United Kingdom (UK GDPR and Data Protection Act 2018), the European Economic Area (GDPR), Switzerland (FADP), Brazil (LGPD), Canada (PIPEDA and provincial laws), Australia (Privacy Act 1988 and Australian Privacy Principles), New Zealand (Privacy Act 2020), Japan (APPI), South Korea (PIPA), Singapore (PDPA), India (Digital Personal Data Protection Act, 2023), and South Africa (POPIA). Specific rights, response timelines, and remedies vary by jurisdiction.
Please contact us at contact@cryptologyapps.com to exercise these rights. You also have the right to lodge a complaint with your local data protection or supervisory authority.
14. Children's Privacy
The App is rated 4+ and is suitable for general audiences. The App does not knowingly collect personal information from children, and the App does not request or require any information from any user. However, the App contains general-audience advertising delivered by Google AdMob.
We do not direct the App to children under the age of thirteen (or the equivalent minimum age in the relevant jurisdiction), and the App is not designed to attract children. If you are a parent or guardian and want to provide a fully advertising-free experience, the optional Griddle Pro subscription removes all advertisements.
If you believe a child under the age of thirteen has used the App and you are concerned about advertising, please contact us at contact@cryptologyapps.com and we will work with you and our advertising partner to address your concerns.
COPPA compliance. The App does not feature user accounts, in-app messaging, or other functionality designed to collect personal information from children. We comply with the Children's Online Privacy Protection Act (COPPA). If we learn that we have collected personal information from a child under the age of thirteen without verifiable parental consent, we will delete that information promptly.
15. Security
We rely on industry-standard practices and the security measures of the third-party services described in this Policy. Because we do not collect or store your personal information directly, the surface area for misuse on our side is minimal. No method of electronic storage or transmission, however, is one hundred percent secure. We cannot guarantee absolute security and assume no liability for breaches of third-party services beyond our reasonable control.
Breach notification. If we become aware of a security breach affecting your personal information, we will notify you and, where required, the appropriate regulatory authorities without undue delay and in accordance with applicable law. Because the App does not collect or store personal information directly, any breach affecting users would most likely originate from one of the third-party services described in Section 4; we will rely on those providers' breach-notification practices for the data they hold.
16. Do Not Track
Some browsers and operating systems offer "Do Not Track" or similar signals. Because there is no industry consensus on how to interpret these signals in mobile applications, the App does not currently respond to them. We honor the choices you make through Apple's App Tracking Transparency framework on iOS and Google's ad personalization controls on Android.
17. Links to Third-Party Resources
This Policy may include links to third-party privacy policies and websites. We are not responsible for the content, privacy practices, or availability of those external resources.
18. Changes to This Policy
We may update this Policy from time to time to reflect changes in the App, applicable law, or our practices. The "Last Updated" date at the top of this Policy reflects the most recent revision. If we make material changes that meaningfully expand the categories of information collected or the purposes for which it is used, we will provide notice through the App or through other reasonable means before the changes take effect.
Your continued use of the App after the effective date of any updated Policy constitutes acceptance of the changes.
19. Governing Law and Dispute Resolution
This Policy is governed by the laws of the State of Wyoming, without regard to conflict of laws principles. Disputes arising under or relating to this Policy are subject to the same dispute resolution procedures set out in Section 15 of the Griddle Terms of Service, including informal resolution, binding individual arbitration for U.S. residents, and the carve-outs for consumers outside the United States. Nothing in this section limits your rights to bring a claim in your local courts where such rights are required by applicable law.
20. Contact
If you have any questions, concerns, or requests regarding this Policy or your personal information, please contact us at:
Cryptology LLC
Email:
contact@cryptologyapps.com
Postal: 30 N Gould St Ste R, Sheridan, WY 82801
We will respond within a reasonable time and in accordance with applicable law.
This Policy is part of our overall legal documentation. By using the App, you also agree to the Griddle Terms of Service, which govern your use of the App and contain additional provisions including warranty disclaimers and limitations of liability.