Privacy Policy
Effective date: 17 June 2026 · Last updated: 17 June 2026
1. Who we are (Data Controller)
This app, "To the Mexx!" (the "App"), is provided by an individual developer based in the Netherlands ("we", "us", "Controller").
- Contact for privacy matters: [email protected]
- General support: [email protected]
For the purposes of the EU/UK General Data Protection Regulation (GDPR) and the Dutch implementation (AVG), we act as the data controller for the personal data described below.
2. Who this App is for (age restriction)
The App is intended for adults aged 18 and over. It has a bar/dice ("Mexxen") theme that includes references to drinking-game culture and is not directed at children. We do not knowingly collect personal data from anyone under 18. If you believe a minor has provided us personal data, contact us and we will delete it. See also our Terms of Service.
3. What data we collect and why
You can play locally without signing in. The table below reflects what the App actually does today.
| Data | When collected | Purpose | Legal basis (GDPR Art. 6) |
|---|---|---|---|
| Anonymous account ID (Firebase Authentication UID) | On first launch, automatically | Give your device a stable identity so your stats/profiles persist | Legitimate interest / performance of the service |
| Google account data (email, display name, profile photo) | Only if you choose "Sign in with Google" | Link your data across devices and recover your account | Consent |
| Player profiles (names/nicknames, avatars, preferences) | When you create profiles | Run the game and show your players | Performance of the service |
| Gameplay data (scores, achievements, game history, statistics) | As you play | Track stats, achievements, leaderboards | Performance of the service |
| Friend connections (friend codes, friends' display names and IDs) | When you add a friend by code | Enable the friends feature | Consent / performance of the service |
| Multiplayer room data (room codes, player names, in-game actions) | When you join/host an online game | Run multiplayer sessions | Performance of the service |
| Push notification token (Firebase Cloud Messaging) | Only if you enable notifications | Send game-related notifications | Consent |
| Usage & analytics events (screens, features, device model, OS, language, coarse region, app version) | While using the App, if analytics is active | Understand usage and improve the App | Consent or legitimate interest |
| Crash & diagnostics data (crash logs, device state) | On a crash/error | Diagnose and fix stability problems | Legitimate interest |
| Local settings (theme, language, toggles, cached data) | On your device | Remember your preferences | Stored on-device |
We do not ask for your real name, postal address, phone number, or payment card details. Any nickname you enter is your choice — please don't enter another person's personal data.
4. We do not sell your data
We do not sell your personal data, and we do not share it for cross-context behavioral advertising.
5. Advertising
The App currently ships with advertising disabled. If we enable advertising in a future release, it would be delivered through a third-party ad network (e.g. Google AdMob). When that happens we will update this policy and the app-store data disclosures before ads go live, request consent where required (for EU/EEA/UK users, via a Google-certified consent mechanism), and, because the App is 18+, not serve ads personalized to minors. Until then, no advertising identifiers are collected.
6. Third parties (processors) we use
We use Google Firebase (Google Ireland Limited / Google LLC) to provide core functionality, including: Firebase Authentication, Cloud Firestore, Cloud Functions, Firebase Analytics, Firebase Crashlytics, Firebase Cloud Messaging, Firebase Remote Config, and Google Sign-In. These providers process data on our behalf as processors. See the Firebase Privacy & Security documentation and the Google Privacy Policy.
7. Analytics and your choice
Analytics and crash reporting help us improve the App. Where required by law, we ask for your consent and you can change your choice at any time in the App's Settings. Disabling analytics does not stop you from playing. Analytics data is associated with a pseudonymous app instance ID rather than your real-world identity.
8. International transfers
Google may process data on servers outside the Netherlands/EEA, including in the United States. Where data leaves the EEA, it is protected by appropriate safeguards such as the European Commission's Standard Contractual Clauses and/or the EU–US Data Privacy Framework.
9. How long we keep data
- Cloud account data is kept while your account exists. When you delete your account in the App, we delete your profiles, achievements, friends, and user document from Firestore and delete your authentication account.
- Local data stays on your device until you clear it or uninstall the App.
- Analytics/crash data is retained according to Firebase's default retention settings, after which it is aggregated or deleted.
10. Your rights (GDPR / AVG)
You have the right to access, rectify, erase, restrict, and port your data, and to object to processing based on legitimate interests. Where processing is based on consent, you may withdraw consent at any time.
The App provides self-service tools (no email required) in Settings:
- Export my data — download a JSON copy of your local and cloud data.
- Delete my account — erase your cloud data, local data, and account.
You may also contact us at [email protected]. You have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.
11. Security
We rely on Firebase's managed infrastructure, Firebase Authentication, and Firestore Security Rules to protect access to your data. No method of transmission or storage is 100% secure, but we take reasonable measures to safeguard your information.
12. Children
The App is for adults (18+) and is not directed at children. We do not knowingly collect data from children. (See §2.)
13. Changes to this policy
We may update this policy. Material changes will be reflected by updating the "Last updated" date and, where appropriate, an in-app notice. Continued use after changes take effect constitutes acceptance.
14. Contact
Questions or requests: [email protected]