Privacy Policy 

Play Curious

playcurious.games

 

SECTION 0: PURPOSE

This Privacy Policy legally governs the use of the services of the site playcurious.games (hereinafter referred to as "the site") and the games created by Play Curious (hereinafter referred to as "the games").

  

SECTION 1: PREAMBLE 

The purpose of this privacy policy is to inform users of the Play Curious site and services: 

  • On how their personal data is collected. Personal data are considered to be any information that can identify a user. As such, it can be: their first and last names, their postal or email address, their phone number, their company's name, their location or their IP address (non-exhaustive list); 
  • On the rights they have regarding this data; 
  • On the person responsible for the processing of the personal data collected and processed; 
  • On the recipients of this personal data; 
  • On the website's policy regarding cookies. 

This policy complements the Legal Notice and the General Conditions of Use that can be consulted by users at the following address: 


General Terms and Conditions of Use and Legal Notice

 

SECTION 2: Principles for the collection and processing of personal data 

In accordance with SECTION 5 of European Regulation 2016/679, personal datas are: 

  • processed lawfully, fairly and in a transparent manner in relation to the data subject; 
  • Collected for specified, explicit and legitimate purposes (see SECTION 3.1 hereof) and not further processed in a way incompatible with those purposes; 
  • Adequate, relevant and limited to what is necessary for the purposes for which they are processed; 
  • accurate and, if necessary, kept up to date; All reasonable steps must be taken to ensure that personal data which are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay; 
  • Kept in a form which permits identification of the data subjects for no longer than is necessary for the purposes for which they are processed 
  • Processed in such a way as to ensure appropriate security of the data collected, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures. 

The processing is only lawful if and insofar as at least one of the following applies: 

  • The data subject  has given consent to the processing of their personal data for one or more specific purposes.
  • processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract; 
  • processing is necessary for compliance with a legal obligation to which the controller is subject; 
  • The processing is necessary to safeguard the vital interests of the data subject or another natural person; 
  • Processing is necessary for the fulfilment of a mission of public interest or falling within the exercise of the public authority of which the controller is included. 
  • The processing is necessary for the purposes of the legitimate interests pursued by the data controller, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child. 

 

SECTION 3: PERSONAL DATA COLLECTED AND PROCESSED WHEN BROWSING OUR WEBSITE 

 

SECTION 3.1: Data collected 

The personal data collected in the context of my activity are as follows: 

  • Type of media used to access the site;
    • Browser, Device, Operating System;
  • The time spent on the pages and on the site in general;
  • The number of visits to the site by the user;
  • The number of returns to the site after the first use;
  • How the user navigates through the site;
  • What buttons have been used on the site;
  • Which pages of the site were the most visited;
  • Which locations on the page are most frequently observed or hovered over; with the cursor;
  • The approximate geolocation of the user;
    • Regional not accurate;
  • Your email address, first name, last name, date of registration, and IP address when you subscribe to our newsletter (for geolocation purposes) or when you contact us for any further information. ;

The collection and processing of this data meets the following purpose(s): 

  • To optimize the performance of the website; 
  • Speed of opening, flow rate utilization, responsiveness to different screen sizes and platforms used;
  • To make the content more suitable for future users;
  • Modify and customize pages to make them more appealing to users;
  • Find bugs and interruptions in our site that we did not find on our own;
  • Know how the user uses our site and on which pages it stays the longest;
  • Send you our newsletter or reply to your messages via the contact form/send you links to test our games; 

 

SECTION 3.2: Data Collection Method 

How data is collected: 

Play Curious performs a statistical analysis of visitors to its website using the Google Analytics tool. No sensitive personal information is collected during this analysis. The information collected is as follows: browsing preferences, geolocation of the connected device, device used, demographic information (age, gender, if provided by the device), and IP address (anonymized).

Your personal information will not be sold or passed on to third parties for commercial purposes.

They are kept by the controller under reasonable conditions of security, for an unlimited period. More precisely, we keep your data as long as Play Curious uses the Brevo (formerly SendinBlue) platform to send the newsletter or HotJar to analyze website visits. If we remove the tool, your information will be permanently deleted from the aforementioned platforms. You can also use your right to be forgotten or your right to object at any time, as described in the following paragraph.

 

SECTION 3.3: Partners 

Brevo (formerly SendinBlue)

Play Curious offers users the possibility to subscribe to its newsletter, via a secure form. This subscription is not necessary for the simple visit of the site. Users are clearly informed of the terms of this subscription, and can unsubscribe at any time through a link at the bottom of each email sent. The data collected are: first name, last name, email address, date of registration, and IP address (for geolocation purposes). This information is stored securely on the Brevo platform, which is responsible for storing this personal information.

Brevo has taken all necessary precautions to preserve the security of personal data and, in particular, to prevent it from being consulted by unauthorized third parties, distorted or damaged.

These precautions are the following:

  • Multi-level firewall.
  • Proven solutions for virus protection and detection of intrusion attempts.
  • Transmission of encrypted data using SSL/https/VPN technology.
  • Tier 3 and PCI DSS certified data centers.
  • In addition, access to data processing on behalf of Brevo by the receiving third party services requires authentication of the persons accessing the data, by means of an individual access code and password, sufficiently robust and regularly renewed.

Data transmitted through unsecured communication channels shall be subject to technical measures designed to make such data incomprehensible to any unauthorized person (encryption).

For more information, see their own privacy policy.


Hotjar

We use Hotjar to better understand our users' needs and to optimize this service and experience. 

Hotjar is a technology service that helps us better understand our users' experience (for example, how long they spend on which pages, which links they choose to click, what users do and don't like, etc.) and this allows us to build and maintain our service with user feedback. 

Hotjar uses cookies and other technologies to collect Data on the behavior of our users and their devices. These include a device's IP address (processed during your session and stored in a depersonalized form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), and the preferred language used to display our website. Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually prohibited from selling the Data collected on our behalf.

For more details, please see the 'About Hotjar' section of Hotjar's support site.


Google Analytics

Play Curious performs a statistical analysis of visitors to its website using the Google Analytics tool. No sensitive personal information is collected during this analysis. 

Information collected includes: browsing preferences, geolocation of the connected device, device used, demographic information (age, gender, if provided by the device)

Confidentiality of data collected on European territory with Google Analytics

When Google Analytics 4 collects data, the platform does not record or store any IP addresses.

  • Before logging data collected from EU users via domains and servers in the EU, Analytics deletes all IP addresses they contain.

Google Analytics 4 does not record or store any individual IP addresses.

In contrast, Analytics provides approximate geolocation data by inferring the following metadata from IP addresses: 

For EU traffic, IP address data is used only to determine geolocation data and is deleted immediately. They are not stored, accessed or used for any other purpose.


WPML

WMPL (WordPress Multilingual Plugin) is a WordPress plugin used to create multilingual websites. It allows website owners to translate their content into different languages and provide a better user experience for visitors from different countries and regions. To make the website work properly, WMPL may gather functional cookies. These cookies are essential for the proper functioning of the website and allow visitors to browse and use the website's features and services. Without these cookies, the website may not function as intended, and visitors may not be able to access certain features or services. WMPL does not use these functional cookies to collect personal information or track user behavior, and they are typically deleted when the visitor closes their browser.

For more details, please see the 'About WPML' section of WPML's support site


SECTION 3.4: Cookies

We use two types of cookies:

Functional cookies: These cookies allow us to analyze the performance of the website in order to improve it. We can track which pages have been viewed and which buttons have been clicked. They are essential for the wellbeing of the website, as they enable it to remember your language for example or if anything has gone wrong during your navigation. 

Social network cookies: These cookies allow users to share our pages on social networks using the matching buttons.

In addition, the Brevo website uses cookies to improve navigation on its own site, measure public participation and share website pages.

Cookies management 

Visitors to our website have the option to accept or reject cookies. In addition, the user can always configure his web browser to completely disable cookies (except functional). In any case, if the user refuses his cookies, the content of the website will always be accessible to him.

To learn more about the cookies we use, click here


SECTION 3.5: Hosting of the website

The site playcurious.games is hosted by: 

Wordpress – Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, United States of America


SECTION 3.6: Hosting of data 

The data may be transmitted to our partners, listed below: 

“Hotjar Ltd., Dragonara Business Centre, 5th Floor, Dragonara Road,Paceville St Julian's STJ 3141,,,Malta,Europe +1 (855) 464-6788, [email protected]

“Brevo, 7 rue de Madrid, 75008 Paris, France., [email protected]

“Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA

 

SECTION 4: PERSONAL DATA COLLECTED AND PROCESSED IN CONNECTION WITH THE USE OF PLAY CURIOUS GAMES

SECTION 4.1: Data collected 

The personal data collected with the help of a third party partner, DevToDev, in the course of our activity are as follows: 

  • Player device data (such as device manufacturer, device model, language, OS type, OS version, rooted/jailbreaked OS flag, screen resolution, screen PPI, user agent string, time zone, tracking status, application version, devtodev SDK version, push token, IDFA, IDFV, advertising ID, serial ID, devtodev SDK generated ID, base64 from DeviceUniqueId).
  • Data relating to the use of the game by the player (such as the start of the session, the period of activity, the source of installation, the date of installation, the date of last use, the anonymized IP address, the country).
  • Anonymous data on the interactions with the game and on the progress of players ergo Game events;
    • May include but is not limited to data related to: 
      • time spent on menus
      • time spent in game levels or game sequences
      • the number of attempts made on each level or on the game sequences
      • the number of virtual events offered by the game played (Daily, Weekly, Monthly Challenge, Festive Events, Holiday Events, Partnership Events, Collaboration Events) 
      • positioning on the ladder 
      • at the completion rate of the levels 
      • the use of the virtual store (if existing)
      • to the amount of virtual currency used in the virtual store
      • the use of virtual objects in the game (if existing)
      • performance of the game on the user's device
      • error reports otherwise known as error logs during an error in the game or a crash 
  • Player-related data (such as device ID, cross-platform ID, user level, cheat indicator, channel, custom user property).
  • Third-party ad traffic trackers (such as Adjust, Tune and AppsFlyer) and allowing devtodev to access player data related to the ad (such as user device information, installation origin, ad campaign data).
  • Data from third-party app stores (such as Google Play and iTunes) allowing devtodev to access player data related to the payment (such as transaction ID, time and amount).

The collection and processing of this data meets the following purpose(s): 

  • The data relating to the user's device is collected for the purpose of optimizing our applications, we use this data to see how our games perform on each device. This is necessary for “Quality Assurance” and “Quality Control” reasons, as some devices may have bugs that others do not;
  • Data relating to the use of the game by the player allows us to analyze the Key Performance Indicators of our applications relating to the use of the latter; 
  • Device data also allows us to analyze the type of audience we might have for each type of game we develop. 
  • Anonymous data on interactions with our games allows us to know to what extent our applications are used and whether we have properly designed our products to meet the expectations and desires of users; 
  • Player data allows us to ensure the security of our game and the integrity of our game and that players comply with our Terms of Service;
  • Traffic trackers allow us to know the performance of our advertising campaigns; 
  • App store data allows us to link your purchases to your gaming instance; 

How different teams use mobile analytics: 

  • Marketing: Tracking campaign ROI, user segmentation, marketing automation.
  • UX/UI: Behavior monitoring, feature testing, user experience measurement
  • Product: Usage monitoring, feature A/B testing, debugging, alerts
  • Technical teams: Monitoring of performance measures such as application failures

 

SECTION 4.2: Data Collection Method 

How data is collected: 

Mobile analytics can track unique users to record their demographics and behaviors. Tracking technology varies between websites, which use either JavaScript or cookies, and applications, which require a software development kit (SDK). Whenever a visitor to a website or application performs an action, the application sends data that is stored in the mobile analytics platform. Mobile analytics generally tracks the same types of data that we have listed in Section 4.1: Data Collected. 

Companies like ours use this data to understand what users want in order to provide them with a more satisfying experience. For example, they are able to know

  • What attracts visitors to the site or mobile app
  • How long do visitors usually stay on the site?
  • What features visitors interact with
  • Where visitors encounter problems
  • What factors correlate with results such as purchases
  • What are the factors that lead to higher usage and long-term retention?

With mobile analytics data, product and marketing teams can create positive feedback loops. When they update their site or app, launch campaigns, and launch new features, they can test the impact of those changes on their audience. Depending on the public reaction, teams can make further changes, allowing for even more data and further testing. This is a virtuous circle that allows the product to be perfected. Mobile apps, sites, and apps that follow this process are far more effective at meeting the needs of their users.

 

SECTION 4.3: Partners 

DevToDev is our unique partner for data collection on our mobile applications. Devtodev is a data analytics solution for application and game developers.

Information security is one of devtodev's top priorities: devtodev is an ISO 27001 certified company and has adopted the ISO 27001 standard for security governance. As ISO 27001 is an international standard for information security management, our compliance with this standard gives all our customers the assurance that we manage information security in accordance with international standards.

Dev2dev UAB implements information security management to prevent incidents that could damage the organization's reputation and is committed to:

  • Ensure the protection of information and information technology of the organization.
  • Ensure the security of information in accordance with operational requirements and relevant laws and regulations.
  • Manage information security within the organization.
  • Ensure and maintain the protection of the organization's assets.
  • Avoid unauthorized physical access, loss and disruption to the organization's operations and information.
  • Ensure that the management of information security incidents is consistent and effective.
  • Avoid loss, deterioration, theft or defect of goods and business interruptions.
  • Ensure accurate and safe operation of information processing tools.
  • To maintain the integrity and availability of information and information processing facilities.
  • Prevent unauthorized access to information stored in information systems.
  • Ensure that security is an integral part of information systems.

 

SECTION 4.4: Hosting of data collected on our games

The data may be transmitted to our partners, listed below: 

“DevToDev, Vilnius Tech Park, Antakalnio 17-4, Vilnius, Lithuania, 10312, [email protected]

 

SECTION 5: DATA CONTROLLER AND DATA PROTECTION OFFICER

SECTION 5.1: Data Controller 

Personal data is collected by Play Curious SAS, whose SIRET registration number is 84999094000017. 

The controller of personal data may be contacted as follows: 

By mail to the address: 4 rue des Cerisiers, 66000, Perpignan 

By email: [email protected] 

 

SECTION 5.2: Data Protection Officer

The data protection officer of the company or manager is: 

Name: Himmelstein.

First name: Jesse

Address: 4 rue des Cerisiers

Postcode: 66000. My city : Perpignan

Email: [email protected]

 

If you believe, after having contacted me, that your "Data-processing and Freedoms" rights are not respected, you can inform the French Data Protection Authority (CNIL). 

 

User's Rights Regarding Data Collection and Processing 

Any user concerned by the processing of their personal data may avail themselves of the following rights, in accordance with the European Regulation 2016/679 and the Data Protection Act (Law 78-17 of 6 January 1978):   

  • Right of access, rectification and erasure of data (laid down in SECTIONs 15, 16 and 17 of the GDPR respectively);

  • The right to data portability (SECTION 20 of the GDPR)

  • Right to restriction (SECTION 18 of the GDPR) and opposition to data processing (SECTION 21 of the GDPR);

  • Right not to be the subject of a decision based exclusively on automated processing

  • Right to determine the future of data after death

  • Right to refer matters to the competent supervisory authority (SECTION 77 of the GDPR). 

To exercise your rights, please send your letter to PLAY CURIOUS SAS, 4 rue des Cerisiers, 66000, Perpignan or by email to [email protected]

In order for the data controller to comply with his request, the user may be required to provide him with certain information such as: his first and last names, his email address as well as his account, personal space or subscriber number. 

Visit cnil.fr for more information on your rights. 

 

SECTION 6: TERMS OF MODIFICATION OF THE PRIVACY POLICY

The publisher of playcurious.games reserves the right to modify this Policy at any time in order to ensure that users of the site are in compliance with applicable law.  

Any changes will not affect previous purchases made on the site, which will remain subject to the Policy in effect at the time of purchase and as accepted by the user at the time of purchase.  

The user is invited to take note of this Policy each time he/she uses our services, without the need to formally inform him/her of it.  

This policy, published on 01/05/2023, was updated on 09/05/2023.