Privacy Policy — Sudoku Game

Sudoku Game is a puzzle game app developed by WizusLabs. This Privacy Policy describes how the Sudoku Game application (“the App”) handles your information. We are committed to transparency about what data exists on your device, what third-party services may collect, and what choices you have.

1. Data Stored Locally on Your Device (Never Transmitted)

Sudoku Game is designed with an offline-first architecture. The following data is created and stored entirely on your device using SharedPreferences (the platform’s built-in key-value storage: NSUserDefaults on iOS, SharedPreferences on Android, browser local storage on Web). This data is never transmitted to our servers or any third party.

Active game state (sudoku_saved_game) — save and resume your current puzzle (board, move history, elapsed time, hints used).
Game statistics (sudoku_game_stats) — per-difficulty stats (games played, best time, total time, hints used).
Daily challenge progress (sudoku_daily_challenge) — streak tracking (current streak, longest streak, today’s completion, grace window).
Monthly trophy records (sudoku_monthly_record) — calendar of completed puzzles per month (date, difficulty, solve time); rolling 12-month window.
Technique trainer progress (sudoku_trainer_progress) — which technique exercises you have completed.
Colorblind mode preference (sudoku_colorblind_mode) — your selected accessibility color mode (none, deuteranopia, tritanopia, monochrome).
Font scale preference (sudoku_font_scale) — your selected font size multiplier.
Pro unlock status (sudoku_is_pro) — whether you have unlocked Pro (removes ads).
Hint token balance (sudoku_hint_tokens) — number of hint tokens available.
Personalized-ads preference (personalized_ads_enabled) — whether you opted into personalized advertising (off by default).
User geography (user_geography) — cached region bucket (GDPR, CCPA, other, unknown) for consent behavior.
CCPA “Do Not Sell” flag (ccpa_do_not_sell) — whether you opted out of sale/sharing under CCPA.
ATT status flag (att_status) — cached iOS App Tracking Transparency authorization status.
Session count (total_sessions_completed) — lifetime completed session count (used for new-user ad protection).
IAB TCF consent string (EEA/UK/CH) (IABTCF_*) — standard IAB Transparency & Consent Framework v2.2 values written by Google’s User Messaging Platform (UMP) to your device’s local storage when you respond to the consent form (see Section 2). These record your advertising-consent choices so advertising partners can read and honor them. They are written and managed by the UMP component, not by the App’s own code, and are stored locally on your device — they are not transmitted to our servers.

We do not operate servers, databases, or cloud services that receive any of this data. Your game data exists only on your device. The IABTCF_* consent-string values are written locally by Google’s User Messaging Platform component for the advertising partners’ use and likewise stay on your device.

2. Data Collected by Third-Party SDKs

The App integrates the following third-party services that may collect data independently:

LevelPlay by Unity (formerly IronSource Sonic) — advertising mediation, free-tier users only

LevelPlay is an advertising mediation platform owned by Unity Technologies (operated by IronSource, a Unity company). The App uses LevelPlay to serve advertisements only to users who have not purchased Sudoku Game Pro.

Ad formats served:

Interstitial ads between puzzle sessions — frequency-capped (1 per 3 puzzle completions, max 2 per session, with new-user and streak-milestone protection).
Opt-in rewarded video ads — users may voluntarily watch a rewarded video to earn hint tokens. Rewarded ads are never auto-played.

The App does not display banner ads. Banner ads were removed entirely from the product on 2026-05-18. No persistent ad surfaces are present anywhere in the App.

In the course of serving ads, the LevelPlay SDK and its mediated demand partners may collect:

Device identifiers (Advertising ID — IDFA on iOS, GAID on Android)
IP address (used for geo-targeting and frequency capping)
Device model and manufacturer
Operating system name and version
App session events (session duration, app version, SDK version)
Ad interaction events (impressions, clicks, video completion / quartile progress, reward grant events)
Country and timezone derived from IP address

Mediated demand partners. LevelPlay routes ad requests through a waterfall of demand partners. The partners that may participate in serving a given impression include, at minimum:

AdMob (Google)
Meta Audience Network
Unity Ads (Unity Technologies)
Bigo Ads
Yandex
Mintegral
Other LevelPlay waterfall partners as the demand network evolves

Each partner operates under its own privacy policy. The current authoritative list and per-partner privacy disclosures are maintained by Unity at LevelPlay’s privacy documentation.

Reference links:

LevelPlay / IronSource privacy policy: https://www.ironsrc.com/privacy-policy/
Unity privacy policy: https://unity.com/legal/privacy-policy

If you upgrade to Sudoku Pro, no ads are displayed and no ad-related data collection by LevelPlay or its mediated partners occurs.

Ad Consent — region-aware controls (EEA/UK/Switzerland consent form, all-regions personalization choice)

How the App asks for and records your advertising choices depends on your region. The App detects your region and presents the appropriate control. In all cases, the underlying advertising data flow is the one described above; what changes by region is the consent mechanism and the default.

European Economic Area, United Kingdom, and Switzerland — Google-certified consent form (IAB TCF v2.2). If you are located in the EEA, UK, or Switzerland, the App shows a Google-certified consent management form at first launch, before any personalized advertising is served. This form is provided by Google’s User Messaging Platform (UMP), which is integrated with the IAB Transparency & Consent Framework (TCF) version 2.2. The form lets you Consent, Do not consent, or Manage options (choose per-purpose and per-vendor preferences). Your choice is recorded as a standard IAB TCF v2.2 consent string (stored on your device as IABTCF_* values) that all advertising partners in the request path read and honor. Until you respond, no personalized advertising is served. This consent form appears only for EEA/UK/Switzerland users; users in other regions are not shown it.
- The list of advertising partners / IAB TCF vendors covered by the consent form is presented inside the form’s Manage options screen and is maintained by Google. The IAB Global Vendor List (the registry of TCF vendors) is published at https://iabeurope.eu/vendor-list-tcf/, and Google’s list of advertising technology providers is published at https://support.google.com/admob/answer/9012903.
Default behaviour for non-personalized serving. Where you have not consented to personalized ads (including before you respond to the EEA/UK/Switzerland consent form, or if you decline), ads serve as non-personalized. In the EEA, the legal basis for non-personalized ad serving is legitimate interest under GDPR Article 6(1)(f) (the legitimate interest of operating an ad-supported free product). Non-personalized ads use only contextual signals (app category, coarse country, language) and do not rely on cross-app tracking or interest profiles.
All other regions — Personalized ads control. If you are outside the EEA/UK/Switzerland and outside California, the App provides a “Personalized ads” toggle at Profile → Privacy & ads. Personalized advertising is enabled by default in these regions; you may turn it off at any time, which switches the advertising consent signal to “not granted” and returns serving to non-personalized.
iOS App Tracking Transparency. On iOS, Apple’s App Tracking Transparency (ATT) prompt is shown at launch (after the EEA/UK/Switzerland consent form, where that form applies) via the app_tracking_transparency framework. ATT governs use of the iOS advertising identifier (IDFA) for cross-app tracking and is separate from, and in addition to, the GDPR/TCF consent form. If you deny tracking at the ATT prompt, the App respects that denial and serves only non-personalized ads regardless of any other setting. Because iOS does not allow an app to re-show the ATT prompt once you have answered it, you can change your tracking choice later in iOS Settings → Privacy & Security → Tracking; the App’s Privacy & ads screen links you directly to its iOS Settings page for this purpose.
CCPA “Do Not Sell My Personal Information.” California residents see a “Do not sell my personal information” toggle at Profile → Privacy & ads. When enabled, the App signals the CCPA opt-out to the advertising mediation layer; that signal is propagated to mediated demand partners that honor the CCPA framework.
Withdrawing or changing your consent. You can change your choice at any time from Profile → Privacy & ads:
- In the EEA/UK/Switzerland, the “Privacy & ad consent” control re-opens the Google-certified consent form so you can change your TCF consent (including withdrawing previously granted consent).
- In other regions, toggle “Personalized ads” off (or on).
- California residents toggle “Do not sell my personal information.”
- On iOS, change tracking permission in iOS Settings → Privacy & Security → Tracking (the App deep-links you there).
- Any change takes effect immediately on the next ad request. You can also remove all advertising entirely by upgrading to Sudoku Pro.

In-App Purchases (RevenueCat + Apple / Google billing)

Sudoku Game offers two paid unlock tiers for Sudoku Pro. Both are processed by Apple or Google billing and relayed to our entitlement service provider, RevenueCat, Inc.

Sudoku Pro Yearly — auto-renewable subscription at $2.99 USD per year.
Sudoku Pro Lifetime — one-time non-consumable purchase at $9.99 USD. Does not renew, never expires.

Both tiers unlock the same WizusLabs Pro entitlement (no ads, unlimited hints, all features).

Data handling:

Apple App Store / Google Play process the transaction and charge your store account. We do not see your payment method, bank details, or full billing address. Transaction records are retained by Apple or Google according to their respective privacy policies.
RevenueCat receives the anonymized store transaction (store receipt, product identifier, purchase date, device identifiers such as the iOS IDFV / Android Advertising ID, and a RevenueCat-assigned anonymous user ID) in order to verify the purchase and provide cross-device entitlement restore. RevenueCat stores the entitlement state (active / lapsed / refunded) so you can restore Pro on another device signed in to the same Apple ID or Google account. RevenueCat’s privacy policy: https://www.revenuecat.com/privacy/
The App itself caches a single boolean flag indicating your current Pro status (sudoku_is_pro, listed in Section 1) so you remain Pro offline. No purchase history, payment details, or transaction identifiers are stored on our servers.

Auto-renewal disclosure (Sudoku Pro Yearly only):

Your subscription will automatically renew at the end of each annual term at the then-current price, unless canceled at least 24 hours before the end of the current period.
Your Apple ID or Google account is charged for renewal within 24 hours prior to the end of the current period.
You can manage or cancel your subscription at any time in your device’s subscription settings (iOS: Settings > [your name] > Subscriptions; Android: Google Play Store > Menu > Payments & subscriptions > Subscriptions). Canceling stops future charges but does not refund the current period.
No refunds are issued for partial subscription periods, except where required by applicable law.

Sudoku Pro Lifetime is a one-time purchase and does not auto-renew. You will not be charged again after the initial purchase.

Firebase Crashlytics (automated crash and stability diagnostics)

The App uses Firebase Crashlytics, a crash-reporting service provided by Google LLC (the data processor), to automatically collect diagnostic information when the App crashes or encounters an unhandled error. This helps us find and fix bugs that would otherwise go unreported.
Data collected by Firebase Crashlytics is limited to automated crash diagnostics. It is not used to identify individual users, is not linked to your Apple ID, Google account, or any in-app identity, and is not shared with advertising networks.
When a crash or unhandled error occurs, the Firebase Crashlytics SDK may transmit:
- The stack trace, thread state, and register state captured at the moment of the crash
- Device model (e.g. “iPhone 15 Pro”, “Pixel 7”)
- Operating system name and version (e.g. “iOS 17.4”, “Android 14”)
- App version and build number (e.g. “1.0.0+32”)
- Firebase Installation ID — a per-install, Firebase-generated identifier that is not the device advertising identifier and cannot be used to track you across other apps or websites
- IP address at the time of the crash, which Google truncates before storage (used only to derive an approximate country/region for aggregation)
The App does not attach custom keys, custom logs, user identifiers, email addresses, purchase history, puzzle progress, move history, or any gameplay data to crash reports. We do not call Crashlytics.log() and we do not set Crashlytics.setUserIdentifier(). Only the automated diagnostic data listed above is transmitted.
Crash data collection is disabled entirely in debug builds. In release (App Store / Google Play) builds, collection is enabled so that stability regressions reaching users can be diagnosed.
Firebase Crashlytics retains crash data for 90 days per Firebase’s default retention policy, after which the data is deleted automatically.
The Firebase Installation ID is reset when the App is uninstalled, when app data is cleared, or when you reinstall the App.
Google acts as a data processor on our behalf for crash diagnostics under Google’s Data Processing and Security Terms. Crashlytics data is not shared with third parties for advertising, marketing, or profiling purposes.
Google’s privacy policy: https://policies.google.com/privacy
Firebase data-handling documentation: https://firebase.google.com/support/privacy

3. Data We Do NOT Collect

Sudoku Game does not collect, transmit, or process any of the following:

No account creation, email addresses, names, or personal identifiers
No analytics or telemetry data (no Firebase Analytics, no Mixpanel, no Amplitude, or similar behavioural-analytics services)
No user-entered game data: no puzzle boards, move history, solve times, hint usage patterns, or trophy records are transmitted off-device
No location data (we do not request location permission; the approximate region derived from the truncated IP address attached to a crash report is the only coarse-geography signal, and only in the event of a crash)
No contacts, photos, camera, microphone, or other sensitive device permissions
No data synced to any cloud service or remote server for gameplay, preferences, or progress
No browsing history, search history, or usage patterns transmitted off-device
No health data (HealthKit, Health Connect, or similar services)

Diagnostic Data (what we do collect, automatically)

The only data the App transmits off-device that is not ad- or purchase-related is automated crash diagnostics delivered by Firebase Crashlytics, as described in Section 2. This is limited to stack traces, device model, OS version, app version/build, Firebase Installation ID, and a truncated IP address, and is used exclusively to detect and fix bugs. It is never linked to a user identity and is never used for advertising.

4. Data Sharing

We do not sell, rent, share, or transfer your personal data to any third party.

LevelPlay (Unity Technologies / IronSource) and its mediated demand partners (listed in Section 2) operate under their own privacy policies. They may collect ad-related data as described in Section 2. We do not receive personally identifiable information from LevelPlay or its partners.
Firebase Crashlytics (Google LLC) acts as a data processor on our behalf for crash diagnostics, under Google’s Data Processing and Security Terms. Crash data is not shared with third parties for advertising, marketing, or profiling purposes.
RevenueCat, Inc. acts as a data processor on our behalf for purchase verification and cross-device entitlement restore, as described in Section 2.
Game results and progress data are stored only on your device and are never transmitted anywhere.

5. Data Retention

All locally stored data (game results, preferences, progress, ad-consent state) persists on your device until you uninstall the App or manually clear the App’s data through your device settings.
We do not maintain any server-side data stores. There is no server-side data to retain, expire, or delete.
Firebase Crashlytics retains crash reports for 90 days (Firebase default) before automatic deletion. The Firebase Installation ID attached to a crash report is reset on uninstall, on app-data clear, and on reinstall.
Third-party services (LevelPlay and its mediated demand partners, RevenueCat, Firebase Crashlytics) retain data according to their own privacy policies.

6. Data Security

All data stored by the App resides in your device’s local storage, protected by your device’s built-in security features (device encryption, lock screen, biometric authentication).
The App does not transmit your game data, preferences, or progress over any network.
Communications between the App and third-party services (LevelPlay for ad delivery, Firebase Crashlytics for crash diagnostics, RevenueCat for purchase verification) use industry-standard encrypted connections (HTTPS/TLS).

7. Children’s Privacy

Sudoku Game is a general-audience puzzle game. It is not directed at children under the age of 13.
We do not knowingly collect personal information from children under 13.
If we become aware that we have inadvertently collected data from a child under 13, we will take prompt steps to delete such data.
If you are a parent or guardian and believe your child has provided information through the App’s third-party services, please contact us at the address below so we can assist.

8. Your Rights and Choices

All users:

You can delete all App data at any time by uninstalling the App or clearing the App’s data in your device settings (iOS: Settings > General > iPhone Storage > Sudoku Game; Android: Settings > Apps > Sudoku Game > Storage > Clear Data).
You can control personalized advertising at Profile → Privacy & ads. In the EEA/UK/Switzerland this control re-opens the Google-certified consent form (IAB TCF v2.2); in other regions it is a “Personalized ads” toggle. You may additionally adjust your device’s ad settings (iOS: Settings > Privacy & Security > Tracking; Android: Settings > Privacy > Ads).
You can upgrade to Sudoku Pro (yearly subscription $2.99/year or lifetime $9.99) to remove all advertising from the App.
If you purchased Sudoku Pro Yearly, you can cancel the auto-renewal at any time in your device’s subscription settings (iOS: Settings > [your name] > Subscriptions; Android: Google Play Store > Menu > Payments & subscriptions > Subscriptions). Canceling stops future charges; Pro access remains active until the end of the current paid period.
You can request a refund or manage purchase history through Apple (reportaproblem.apple.com) or Google (play.google.com/store/account/orderhistory) according to their refund policies.

Users in the European Union / European Economic Area (GDPR):

You have rights under the General Data Protection Regulation including the right to access, rectification, erasure, restriction of processing, data portability, and objection.
Because Sudoku Game stores all user data locally on your device and we do not maintain any server-side data, these rights are exercised entirely through your device. You have full control over your data at all times.
When you first launch the App in the EEA, UK, or Switzerland, you are shown a Google-certified consent form integrated with the IAB Transparency & Consent Framework (TCF) v2.2, provided by Google’s User Messaging Platform (UMP). You may Consent, Do not consent, or Manage options for individual purposes and advertising vendors. Your choice is recorded as a standard IAB TCF consent string that all advertising partners read and honor.
Where you have not granted consent (including before you respond to the form, or if you decline), ads served in the EEA are non-personalized under the legitimate-interest legal basis of GDPR Article 6(1)(f). For personalized ads served by the advertising partners (only where you have consented through the form), the legal basis is your consent under GDPR Article 6(1)(a).
You may withdraw consent at any time by re-opening the consent form from Profile → Privacy & ads and changing your choice. Withdrawal takes effect immediately on the next ad request. The advertising partners / IAB TCF vendors covered are listed inside the consent form’s “Manage options” screen; the IAB Global Vendor List is at https://iabeurope.eu/vendor-list-tcf/ and Google’s advertising-technology-providers list is at https://support.google.com/admob/answer/9012903.

Users in California (CCPA):

California residents have the right to know what personal information is collected, to request deletion, and to opt out of the sale of personal information.
We do not sell personal information that we collect directly. All locally stored data is under your direct control on your device.
However, LevelPlay’s (and its mediated demand partners’) use of device identifiers and ad interaction data to serve personalized advertisements may constitute a “sale” of personal information under the CCPA’s broad definition. California residents can opt out by toggling “Do not sell my personal information” at Profile → Privacy & ads, by adjusting their device settings (iOS: Settings > Privacy & Security > Tracking; Android: Settings > Privacy > Ads), or by purchasing Sudoku Pro to remove ads entirely.

9. Third-Party Links and Services

The App may contain links to third-party websites or services. These third-party services have their own privacy policies, and we encourage you to review them. We are not responsible for the privacy practices of third-party services.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in the App, our practices, or applicable law. When we make changes:

The updated policy will be posted at this URL.
The “Last updated” date at the top of this document will be revised to reflect the date of the most recent changes.
For material changes, we will update the App’s store listing to note the revision.

We encourage you to review this Privacy Policy periodically.

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or the App’s data practices, please contact us at:

Email: [email protected]

12. App Information

App Name: Sudoku Game
Developer: WizusLabs
Platforms: iOS (App Store), Android (Google Play)
Category: Games (Puzzle)

Sudoku Game — Privacy Policy