>
Privacy Policy
Last Updated: September 18, 2025
Welcome to SpyInAI. We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our AI-powered scenario-based gaming platform.
1. Information We Collect
Personal Information
- Account Information: Email address, username, password (encrypted)
- Profile Data: Display name, preferences, gameplay settings
- Payment Information: Billing details (processed securely by third-party providers)
- Communication Data: Support requests, feedback, and correspondence
Gameplay Data
- Scenario Interactions: Your responses, choices, and decisions within scenarios
- AI Conversations: Messages exchanged with AI characters
- Progress Tracking: Completion status, scores, and achievement data
- Usage Patterns: Features used, time spent, and engagement metrics
Technical Information
- Device Data: Browser type, operating system, IP address
- Log Information: Access times, pages visited, error reports
- Cookies: Session management, preferences, and analytics data
- Performance Data: Loading times, error rates, and system performance
2. How We Use Your Information
Service Provision
- Account Management: Creating and maintaining your user account
- Game Experience: Delivering personalized scenarios and AI interactions
- Progress Tracking: Monitoring your advancement through scenarios
- Payment Processing: Handling transactions for premium features
Service Improvement
- AI Training: Improving our language models and scenario generation
- Feature Development: Building new capabilities based on user behavior
- Bug Fixes: Identifying and resolving technical issues
- Performance Optimization: Enhancing speed and reliability
Communication
- Service Updates: Notifying you of important changes or features
- Support: Responding to your questions and technical issues
- Marketing: Sending promotional content (with your consent)
- Legal Notices: Communicating important legal or policy changes
3. Legal Basis for Processing
We process your data under the following legal bases:
- Contract Performance: Necessary to provide our gaming service
- Legitimate Interest: For service improvement and security
- Consent: For marketing communications and optional features
- Legal Obligation: To comply with applicable laws and regulations
4. Data Sharing and Disclosure
Service Providers
We may share data with trusted third parties who assist in:
- Payment Processing: Secure handling of financial transactions
- Cloud Hosting: Reliable data storage and service delivery
- Analytics: Understanding user behavior and service performance
- Customer Support: Providing technical assistance and help
Legal Requirements
We may disclose information when required to:
- Comply with Laws: Responding to legal process and court orders
- Protect Rights: Defending our intellectual property and terms of service
- Ensure Safety: Preventing fraud, abuse, or harmful activities
- Business Transfers: In case of merger, acquisition, or sale
No Sale of Personal Data
We do not sell, rent, or trade your personal information to third parties for their commercial purposes.
5. Data Security
Technical Safeguards
- Encryption: Data is encrypted in transit and at rest
- Access Controls: Strict limitations on who can access your data
- Regular Audits: Ongoing security assessments and improvements
- Incident Response: Procedures for handling potential data breaches
Organizational Measures
- Staff Training: Regular privacy and security education for employees
- Data Minimization: Collecting only necessary information
- Retention Limits: Deleting data when no longer needed
- Privacy by Design: Building privacy protection into our systems
6. Your Privacy Rights
Access and Control
- View Your Data: Request a copy of the personal information we hold
- Update Information: Correct inaccurate or outdated details
- Delete Account: Request permanent deletion of your account and data
- Export Data: Download your gameplay history and progress
Communication Preferences
- Marketing Opt-out: Unsubscribe from promotional emails
- Notification Settings: Control what alerts you receive
- Cookie Preferences: Manage tracking and analytics cookies
Geographic Rights
Depending on your location, you may have additional rights under:
- GDPR (European Union): Right to portability, restriction, and objection
- CCPA (California): Right to know, delete, and opt-out of sale
- Other Laws: Additional protections based on local regulations
7. Data Retention
Retention Periods
- Account Data: Retained while your account is active
- Gameplay Data: Stored for service improvement and user progress
- Payment Information: Kept for tax and legal requirements
- Log Data: Automatically deleted after reasonable periods
Deletion Process
When you delete your account:
- Personal identifiers are removed immediately
- Some anonymized data may be retained for analytics
- Backups are purged according to our data retention schedule
- You can request complete deletion of all associated data
8. Cookies and Tracking
Types of Cookies
- Essential: Required for basic website functionality
- Analytics: Help us understand how users interact with our service
- Preferences: Remember your settings and customizations
- Marketing: Track effectiveness of promotional campaigns
Managing Cookies
You can control cookies through:
- Browser Settings: Block or delete cookies as preferred
- Opt-out Tools: Use industry-standard opt-out mechanisms
- Our Settings: Manage preferences in your account dashboard
9. International Data Transfers
Cross-Border Processing
- Data may be processed in countries outside your residence
- We ensure adequate protection through appropriate safeguards
- Transfer mechanisms comply with applicable data protection laws
- Your rights remain protected regardless of processing location
Safeguards in Place
- Standard Contractual Clauses: EU-approved transfer mechanisms
- Adequacy Decisions: Transfers to countries with adequate protection
- Binding Corporate Rules: Internal policies for data protection
- Certification Programs: Industry-standard privacy frameworks
10. Children's Privacy
Age Restrictions
- Our service is intended for users aged 13 and older
- We do not knowingly collect data from children under 13
- Parents can request deletion of their child's information
- Additional protections apply for users under 16 in certain jurisdictions
Parental Controls
If you believe a child has provided information without consent:
- Contact us immediately for account deletion
- We will investigate and take appropriate action
- No liability is assumed for unauthorized use by minors
11. Updates to This Policy
Change Notifications
- We may update this policy to reflect service changes
- Material changes will be communicated via email or service notification
- Continued use after changes constitutes acceptance
- Previous versions are available upon request
Review Process
We regularly review our privacy practices to ensure:
- Compliance with evolving privacy laws
- Alignment with best practices
- Protection of user rights and expectations
- Transparency in our data handling
12. Contact Information
Privacy Inquiries
For questions about this Privacy Policy or your data rights:
- Email: privacy@spyinai.com
- Address: [Company Address]
- Response Time: We aim to respond within 30 days
- Escalation: Contact our Data Protection Officer for complex matters
Data Protection Officer
Our designated Data Protection Officer can be reached at:
- Email: dpo@spyinai.com
- Responsibilities: Privacy compliance, user rights, data governance
13. Supervisory Authority
If you're not satisfied with our response to your privacy concerns, you may lodge a complaint with your local data protection authority.
This Privacy Policy is designed to be transparent and user-friendly. If you have questions about any section, please don't hesitate to contact us.