This Privacy Policy was last updated on October 10, 2023
General information
1.1. References in this Privacy Policy to “LevelApp”, “Service”, “Application”, “App” relate to the applications, available at www.levelapp.io (the “Website”), operated by LevelApp Limited, a limited liability company registered in Republic of Cyprus under number HE 403008, having its address 8010, Tepeleniou, 13, TEPELENIO COURT, 2nd floor, Paphos, Cyprus.
1.2. LevelApp is the data controller regarding the Personal Data processed within the framework of this Privacy Policy.
1.3. An individual can only become a Client of LevelApp and use its features if he/she is aged 4. In a situation when processing of information (including personal data) of an individual under the age of 16 (or the applicable age as per local regulations) is based on the consent, such consent may be required to be given by at least one of parents or legal representatives of such an individual.
1.4. LevelApp is committed to protecting and respecting the privacy of its Clients and ensures their security when using the Service. This Privacy Policy is intended to help the Client to understand what data and for which purposes Service collects, how collected data is processed and protected.
1.5. LevelApp reserves the right to amend this Privacy Policy; therefore it is recommended that the Client of the Service checks Privacy Policy on a regular basis. The service will send a notice or an email regarding such changes to the Client.
1.6. All the changes to this Privacy Policy are effective as of the “Last updated” date. The Client who continues to use the Service after the Last updated date is deemed to accept the changes made to it. 1.7. By registering with the Service, the Client consents to the processing of his/her Personal Data by the Service in accordance with the provisions set below.
1.8. By registering with the Service, the Client gives consent to LevelApp to anonymize his/her Personal Data for the purposes of further use in anonymized form in order to improve the performance of the Service.
1.9. This Privacy Policy should be read alongside the Terms of Service and the Cookie Policy. Contact us 2.1. LevelApp has designated a Data Protection Officer (DPO) who could be reached by emailing to info@levelapp.io or by post at the address provided above. 2.2. Any questions or comments about this Privacy Policy may be addressed to info@levelapp.io Collected data 3.1. When using the Services, the Client agrees to the processing of the following Personal Data:
3.1.1. Personal Data that the Client provides to the Service: When creating an account, the Client provides the Service with basic details necessary for the Service to work, such as the Client’s IP address, name, email, mobile number. When participating in Client verification procedures: Client’s Personal Data, as requested by the Service for the Client identification purposes such as the Client’s full name, date of birth, address, email, mobile number, national identification number, government-issued ID, photograph, signature. When proceeding with transactions: information required under AML/KYC applicable standards in order to ensure the security of transactions, such as credit or debit card information.
LevelApp does not knowingly collect any sensitive personal data or special categories of personal data.
LevelApp reserves the right to monitor or record interactions between the Client and the Support Service for training purposes and to ensure high quality of service.
LevelApp reserves the right to record information when Client participating in surveys or focus groups such as insights and evaluation of LevelApp’s services and responses to the questions from the Service.
3.1.2. Data collected through the use of the Service:
When the Client is using the App, the Service may collect data regarding the device(s) the Client uses to access the Service (such as his/her IP address, device identifier (including unique advertising device identifiers, for example Google Advertiser ID and IDFA), technical and statistical data (including data about the Internet connection, cellular service provider and application usage data) and location data (upon a separate consent from the Client).
Please be advised, that according to your local legislation (including Lei Geral de Protecao de Dados, Brazil’s General Data Protection law) such information may qualify as Personal Data.
3.2. By providing Personal Data to LevelApp, the Client warrants that such data is true, accurate and up to date. Use of Personal Data 4.1. LevelApp collects, process and uses Personal Data of the Clients of the Service based on the following grounds: when such processing is performed in order to fulfil the contract between LevelApp and the Client; processing necessary for compliance with legal obligations; based on legitimate interest of the Service; upon explicit prior consent from the Client.
4.2. LevelApp collects and processes Personal Data of the Service’s Clients in order to maintain the functionality of the Service and fulfill the contract with between the Service and the Client. On this basis the Client’s Personal Data specified in clause 3.1. and 3.2. is processed for the following purposes: to set up, operate and manage the Client’s account and, if necessary, to contact the respective Client through the means provided by the Client upon registration, in connection with the operation and management of the Client’s account; to analyze the Client’s profile, activity on the Service, preferences and current location in order to improve the Services; to proceed and respond to the requests and enquiries received from the Client; for administrative purposes, such as password reminders, service messages (including but not limited to the LevelApp’s maintenance messages, updates to the Service’s Privacy Policy and Terms of Service).
4.3. LevelApp collects and processes Personal Data when processing necessary for compliance with legal obligations. On this basis the Client’s Personal Data specified in clause 3.1.1(b), 3.1.2. is processed for the following purposes: to monitor and prevent fraud, misuse (e.g. for illegal purposes); to provide information to relevant authorities when explicitly stipulated in applicable law.
4.4. LevelApp collects and processes Personal Data under legitimate interests of the Service. On this basis the Client’s Personal Data specified in clause 3.1.1., 3.1.2. is processed for the following purposes: a. to provide Services or information on Client’s request as well as to process and complete any transactions; b. to respond to Client’s submissions, questions, comments, requests and complaints as well as to provide customer service; c. to monitor and analyze the Service’s use and trends or to personalize and improve the Services or user experience on Website, such as providing ads, content or features that match Client’s profiles or interests as well as to increase the Service’s functionality and user friendliness; d. to provide gifts and rewards that Client may have to win in the game etc.; e. to send Client confirmations, updates, security alerts as well as support and administrative messages; f. to facilitate Client’s use of and LevelApp administration and operation of Website. g. to conduct market research, business management and continuing development of the Service; h. to enforce our agreements with third parties. 4.5. LevelApp collects and processes Personal Data of the Service’s Clients under an explicit consent from the Client. On this basis the Client’s Personal Data specified in clause 3.1. and 3.2. is processed for the following purposes: to facilitate networking opportunities of the Client with the Service by way of allowing him/her to add additional information to the Client’s account; to serve the Client with targeted advertisements; for remarketing purposes, allowing the Service to identify the Client who has previously visited the App and optimize advertising information according to the Client’s preferences. This feature is used by the Service through third-party services such as Google Advertising; to prepare statistics regarding the use of the Services by the Client; to identify possible technical malfunctions in the work of the Service, to assist internal research and development and to make improvements to the App. Duration of the Сlient’s data retention 5.1. LevelApp retains the Client’s Personal Data for the period of time necessary to carry out relevant activities, specified in section 4 of this Privacy Policy and as permitted by applicable law. Personal Data, that the Client has communicated to the Service upon registration and subsequently through the use of the Service, will be retained by the Service as long as the Client remains the Client of the Service.
5.2. If you withdraw your consent for the processing of your personal data, and we have no other legal basis for retaining it, we will promptly delete your data. Termination of use of the Service by deleting LevelApp’ game or app is equivalent to withdrawal of consent for the processing of personal data.
5.3. To protect the safety and security of the Clients of the Service, LevelApp implements a safety retention window of 30 days following the Client’s account deletion.
5.4. LevelApp reserves the right to store the Client’s Personal Data for a longer period of time than provided in paragraph 5.1., when it is performed in order to fulfill the legal obligations of the Service (including law enforcement requests, dispute resolution), ensure compliance with applicable law (taxation and accounting) or when the relevant Personal Data is stored on the basis of the Service’s legitimate interests (including security reasons, prevention of illegal activities).
5.5. When personal data is no longer necessary for the purposes for which it was collected or processed, we will take appropriate steps to delete or anonymize the data. These steps may include:
6.1. LevelApp may share the Client’s Personal Data with third parties in the following cases:
Other Clients of LevelApp: The Client shares information with other Clients of App by way of voluntarily disclosing information on the Service (including but not limited to information in his/her Client’s profile). It is in the Client’s discretion to choose the information to be disclosed with the Service and App rescinds from responsibility for the other Clients of the Service regarding the way they might use such information, disclosed by the Client.
Third-party advertising services. App uses the following services:
Unity Google Adwords Google Play Google Admob Sociaro Snapchat Yeahmobi Mobvista Ironsource Applift Twitter Tiktok Facebook Facebook Audience Network Appodeal iTunes Apple Search Ads Appbi
Third-party analytics services. App uses the following services:
Appsflyer Adjust Kochava FreeAppAnalytics Soomla Appmetrica Appfigures Datamagic GameAnalytics Amplitude Facebook Analytics
Cloud services providers: Amazon
Client support services.
App support service providers:
Better O Pragmatix Rainbow Bad Boy Apps
Apple Store In-App Payments Google Play In-App Payments
Third party software providers, including ‘software as a service’ solution providers;
providers that help LevelApp generate and collate reviews in relation to LevelApp offers and Services;
Professional advisers such as solicitors, accountants, tax advisors, auditors, and insurance brokers.
Providing Client’s data by law: LevelApp may disclose Client’s Personal Data when such disclosure is required by law and is reasonably necessary: in order to establish, exercise, defend or enforce legal rights of the Service; to comply with a legal process such as a court order, subpoena or search warrant, government / law enforcement investigation or other legal requirements; to assist in the prevention or detection of crime (subject in each case to applicable law); to protect the safety or vital interests of an individual.
6.2. LevelApp ensures appropriate contractual control over third parties assisting the Service in processing the Client’s Personal Data, securing that rights of Clients of the Service are upheld, their Personal Data is secure, appropriate security and privacy arrangements are in place.
6.3. In the event of change in the corporate structure of the Service, resulting in transfer of the Client’s Personal Data to a third party, all the Clients of the Service would be notified of such changes via email and through a notice posted on the Service’s website. Respective notice would explain the identity of the new data controller and the Client’s options regarding disposal of their Personal Data. Client’s rights 7.1. Every Client of the Service is a data subject and thus has ultimate rights over his/her Personal Data. 7.2. The rights of data subject over his/her Personal Data are as follows: Your right Description Information and Access The right to know whether your Personal Data is being processed, right to get information regarding processing of personal data, right to request a copy of Personal Data being processed. The right to information about public and private entities with which the controller has shared data. Rectification (correction) The right to correct your Personal Data in a situation when such data available to the Controller or disclosed to third parties is inaccurate or incomplete. Erasure The right to request deletion of your Personal Data from the database of the Controller so that the Service is not able to continue processing and storing of such data, with exceptions, provided by applicable law.
The right to delete personal data processed with the consent of the data subject when the data is processed in accordance with Brazil’s General Data Protection law.
The right to anonymize, block, or delete unnecessary or excessive data or data that is not being processed in compliance with Brazil’s General Data Protection law. Restrict processing The right to introduce the restriction regime on the processing of your Personal Data, so that in each case the data may be processed only upon your separate consent. Data portability The right to request for the Personal Data to be given in a machine-readable format so that it could be transferred to another service provider or transfer directly to a third party designated by you. Object The right to object to processing of your Personal Data in a case when the corresponding processing is not performed on the basis of the your consent. Withdraw consent Right to withdraw consent to processing of your Personal Data and/or third party processors of Personal Data.
7.3. The abovementioned rights are not absolute. In order to exercise some of the rights, the Client should meet certain conditions and requirements, specified by the law. 7.4. For more information regarding his/her rights over Personal Data, the Client of the Service should contact info@levelapp.io. In order to exercise his/her rights, the Client should submit a request to info@levelapp.io. 7.5. The Client of the Service should also be acknowledged of his/her right to complain to a data protection regulator in his/her jurisdiction. Protection measures 8.1. When using the App, Client’s personal data is transferred to the Amazon Cloud Services server (more information could be found on this link: https://aws.amazon.com/)
8.2. LevelApp works hard to protect its Clients from unauthorized access to or alteration, disclosure or destruction of their Personal Data. Yet, as any other technology companies, although LevelApp takes steps to secure Clients’ information, it could not be promised or guaranteed, that unauthorised access, hacking, data loss, or other breaches will never occur. LevelApp reserves the right to suspend the Client’s account without notice if there is a reasonable suspicion of breach of security or unauthorised access to such an account. If you believe that your account or information is no longer secure, please notify LevelApp immediately by sending a message to info@levelapp.io.
8.3. The Client should take reasonable steps in order to keep his/her Personal Data (including the account’s password) safe. It is recommended that the Client does not share account’s password with anyone. Cookies 9.1. In order to guarantee an optimal level of usability and performance and to ensure relevance of promoted Service, LevelApp uses cookies and similar technologies in order to track the interaction of Clients with the Website and App. This section explains the different types of cookies that may be set when the Client uses the Website and App, helping to understand and manage them as he/she wishes.
9.2. A cookie is a small file that is stored locally at the Client’s technical device as soon as the App is being used and/or the Website being visited. Cookies function by saving particular sets of data, such as, for example, the Client’s language selection, version of browser, the type of operating system used, device characteristics and the IP address of the connected device used. Should the Client visit the Website and/or open the App again later, a cookie will transmit this data back to the Website and App. The cookies don't store personal information like the Client’s name or address
9.3. Types of Cookies LevelApp uses different types of cookies: Session cookies only last only while the Client is visiting the Website and/or using the App and help the Website and the App to learn more about Client’s behavior during a single session and to help the Client to use the Website and the App more efficiently. Persistent cookies have a longer lifespan and aren't automatically deleted when the Client leaves the Website or closes the App. These cookies are primarily used to help the Client to sign-in again quickly, for security and analytical purposes. The Website and the App do not use any information whilst the Client is logged off. LevelApp uses first-party cookies that is when the cookies are placed on the Client’s device directly by the service. For example, first-party cookies are used to adapt the App to the language preferences and analyze user experience of the Client. Third-party cookies are placed on the Client’s device by LevelApp’s partners and service providers. Necessary cookies. These cookies are strictly necessary to provide the Client App’s services. Authentication cookies. These persistent cookies help the Service to identify the Clients so that the Client could log in automatically. Analytics cookies. These cookies help LevelApp to understand how the App is being used, and help to customize and improve the service. Advertising cookies. These cookies are used to make advertising messages more relevant to the Client. They perform functions like preventing the same ad from continuously reappearing, ensuring that ads are properly displayed for advertisers, selecting advertisements that are based on the Client’s interests and measuring the number of ads displayed and their performance, such as how many people clicked on a given ad. Social networking cookies. These cookies are used to enable the Client to connect the Client’s account to third party social networks.
9.4. The Client can at any time reset device identifiers by activating the appropriate setting on his/her mobile device. The procedure for managing device identifiers is slightly different for each device.
9.5. The data processed by cookies for the aforementioned purposes, when this data is recognized as a personal, is processed for the purposes of performance of the contract between LevelApp and the Client, LevelApp’s legitimate interests and compliance with legal obligations
9.6. More information about cookies and it usage can be found in the Cookie Policy. Cross-border data transfer 10.1. Disclosure of LevelApp’s Clients’ Personal Data, as provided in section 6 of these Privacy Policy sometimes involves cross-border data transfers, for instance to the United States of America and other jurisdictions. LevelApp uses standard contract clauses approved by the European Commission and/or other regulatory bodies (for example, as provided by Brazil’s General Data Protection law) or other suitable safeguard to permit data transfers from the EEA to other countries. Standard contractual clauses are commitments between companies transferring personal data, binding them to protect the privacy and security of Client’s Personal Data. Children's Data Protection 11.1. The Children’s Online Privacy Protection Act (“COPPA”) requires that online service providers obtain parental consent before they knowingly collect personally identifiable information online from children who are under 13 years of age. Moreover, the General Data Protection Regulation (GDPR) requires that data controllers obtain consent from the holders of parental responsibility over children who are under 16 years of age before such controllers knowingly collect and process Personal Data from such children.
11.2. LevelApp does not knowingly collect or solicit personally identifiable information from a child under 13 (if such child is located in the United States) or under 16 (if such child is located in the European Union or United Kingdom) (in each case, a “Child under the Age of Consent”) without obtaining verifiable consent from that child’s parent or guardian (“Parental Consent”), except for the limited amount of personally identifiable information LevelApp needs to collect in order to obtain Parental Consent (“Required Information”). Until LevelApp has received Parental Consent, LevelApp will only use Required Information for the purpose of obtaining Parental Consent.
11.3. Child under the Age of Consent should not attempt to send any Personal Data about himself/herself to LevelApp before LevelApp obtain Parental Consent, except for the Required Information in the context of the Parental Consent process. If someone believes that a Child under the Age of Consent has provided LevelApp with Personal Data (beyond the Required Information) without our obtaining Parental Consent, he/she should contact us at info@levelapp.io. LevelApp does not condition participation in our Services on disclosure of more Personal Data from a Child under the Age of Consent than is reasonably necessary for that participation, and LevelApp does not retain Personal Data from a Child under the Age of Consent longer than is reasonably necessary in order to fulfill the purpose for which it was disclosed.
11.4. Parent or guardian of a Client of our Services who is a Child under the Age of Consent may contact LevelApp at any time to ask: a. to stop collecting Personal Data from such Client, b. assistance in deleting any Personal Data already collected from such Client (although note that LevelApp may retain information in an anonymous, de-identified, or aggregated form where that information would not identify such Client personally), c. to stop disclosing Personal Data collected from such Client to third parties, but continue to allow for collection and use of Personal Data collected from such Client in connection with the Services.
11.5. Parent or guardian can view all information within or associated with Client’s account, including, without limitation, all categories of Personal Data as outlined above, by contacting LevelApp at info@levelapp.io.
11.6. For clarity, LevelApp does not knowingly collect, maintain, use or share any Personal Data of any Clients that are a Child under the Age of Consent beyond that needed for authorized purposes, or as authorized by the Client or his/her parent or legal guardian. In no instance does LevelApp sell any Personal Data of Clients that are a Child under the Age of Consent. LevelApp also does not knowingly use or disclose Personal Data of any Clients under the Age of Consent for behavioral targeting of advertisements.
Privacy Notice for California residents
Effective date: July 15th, 2020 This Privacy Notice for California Residents (this “Privacy Notice”) supplements the information contained in LevelApp Limited (“Company”, “us” or “our”, or “we”) Privacy Policy (“Site Privacy Policy”) and applies solely to all visitors, users and others who reside in the State of California (“consumers”, “you” or “your”). We adopt this Privacy Notice to comply with the California Consumer Privacy Act of 2018 (“CCPA”) and any terms defined in the CCPA have the same meaning when used in this Privacy Notice. All capitalized terms not herein defined will have the meaning set forth in Company’s Privacy Policy. In case on any inconsistencies with Company’s Privacy Policy, this Privacy Notice shall prevail.
1.3. We obtain the categories of personal information listed above from the following categories of sources: Directly from our clients or their agents. For example, from information our clients provide to us related to the Services for which they engage us. Directly from you when you provide it to us. For example, if you share your name and contact information to ask a question about our site or app. Indirectly from you. For example, from observing your actions on our Site. From third parties, for example, our service providers.
To fulfill or meet the reason you provided the information. For example, if you share your name and contact information to ask a question about our site, app or product we will use that personal information to respond to your inquiry. To provide, support, personalize and develop our apps and products. To process your requests and respond to your inquiries, including to investigate and address your concerns and monitor and improve our responses. To notify you about changes to our site, app or any products or services we offer or provide through it. To notify you about changes to our policies and/or user agreements. To maintain a record of our dealings with you. To understand and analyze the usage trends and preferences of our users, to improve the site, the app and other products and to develop new features, and functionality. To contact you for administrative and information purposes - this may include providing customer service or sending communications, including changes to our Terms of Service. To engage features of third party social networks. For testing, research, analytics and product development. To help maintain the safety, security, and integrity of our site and app, and our databases, other technology assets and business. To diagnose or fix technological problems in relation to our site, app and products. To carry out our obligations and enforce our rights arising from any contracts entered into between you and us. To respond to law enforcement requests and as required by applicable law, court order or governmental regulations. To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us is among the assets transferred. As described to you when collecting your personal information or as otherwise set forth in the CCPA.
3.3. We disclose your personal information for a business purpose to the following categories of third parties: Our affiliates. Service providers. Third parties to whom you or your agents authorize us to disclose your personal information in connection with products or services we provide to you. Law enforcement bodies and courts.
3.4. We share your personal information for the following general purposes: Service Providers: We may disclose personal information to third-party service providers that assist us with our operations. For example, analytics, log management, payment processing and data storage and processing services. Protecting our Rights: We may disclose personal information to third parties if we believe that doing so is legally required or is in our interest to protect our property or other legal rights (including, but not limited to, enforcement of our agreements), or the rights or property of others. Corporate Transaction: Personal information may be disclosed as part of a corporate transaction, such as a merger, acquisition, debt financing, sale of company assets, or similar transaction, as well as in the event of an insolvency, bankruptcy, or receivership in which personal information could be transferred to third parties as one of our business assets.
In the preceding twelve (12) months, we have not sold any personal information.
Once you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize personal information sales.
NON-DISCRIMINATION We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not: Deny you goods or services. Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties. Provide you a different level or quality of goods or services. Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
CHANGES TO OUR PRIVACY NOTICE We reserve the right to amend this Privacy Notice at our discretion and at any time. When we make changes to this Privacy Notice, we will post the updated Privacy Notice on our Site and update the Privacy Notice’s effective date. Your continued use of our Site following the posting of changes constitutes your acceptance of such changes.
CONTACT INFORMATION If you have any questions or comments about this Privacy Notice, the ways in which the Company collects and uses your information described here and in our Site Privacy Policy, your choices and rights regarding such use, or wish to exercise your rights under California law, please do not hesitate to contact our representative responsible for personal information as follows: info@levelapp.io.