SNAP SNAKE — Privacy Policy
1. Summary
SNAP SNAKE is a free, ad-supported casual puzzle/arcade game for a general audience. You do not need an account, and we do not need your name or email address to let you play. We work with analytics, crash-reporting, and advertising providers that process device identifiers and app-usage data to operate, secure, and monetize the game. You control personalized advertising through an on-device consent prompt and, on iOS, App Tracking Transparency (ATT).
2. Who we are
Kudbi Enterprise is the controller of personal data processed through SNAP SNAKE. Contact: [email protected] (privacy alias: [email protected]). EU/UK representative details (if and where required) are in Section 8.
3. Information we and our partners process
SNAP SNAKE is guest-only. We do not ask for your name, email, or phone to play, and the App has no camera, photo upload, microphone capture, contacts access, precise GPS, or user-generated content features. We and our service providers process:
| Category | Examples | Source |
|---|---|---|
| Advertising identifiers | GAID (Android) / IDFA (iOS) — only where your consent/ATT choice permits | Device |
| Analytics identifiers | Firebase installation / app-instance ID; SDK install UUIDs | Generated on device |
| Device & technical data | model, OS version, language, region, screen, coarse network, app version | Device |
| App-usage / gameplay events | runs, score/best/combo, level/Daily activity, settings, ad & purchase events | In-app |
| Advertising interactions | impressions, clicks, rewarded completions, ad-revenue signals | Ad SDKs |
| Diagnostics | crash logs, stack traces, performance/ANR, breadcrumbs | Crash SDK |
| Purchases | "Remove Ads" entitlement, store transaction IDs (no card/bank data) | Store |
| Approximate location | coarse region derived from IP address (not GPS) | Network / Ad SDKs |
| Support correspondence | if you email us: your email address, message content, and any information you choose to include | You |
IP addresses. SNAP SNAKE does not intentionally store raw IP addresses in its own systems. Our providers may process IP addresses to deliver their services, derive approximate (city/region-level) location, prevent fraud, maintain security, serve and measure advertising, run analytics, and comply with legal obligations.
4. Why we process data, and our legal bases (GDPR / UK GDPR)
| Purpose | Processing activity | Data categories | Legal basis |
|---|---|---|---|
| Provide the game; save local progress | Run the App; store scores/streaks/achievements/settings on your device | Gameplay/usage events, device/technical, local storage | Contract / steps at your request — Art. 6(1)(b); legitimate interests — Art. 6(1)(f) |
| Crash & stability diagnostics | Collect crash stacks, ANRs, performance, breadcrumbs (Crashlytics) | Diagnostics, device state, install UUID | Legitimate interests — Art. 6(1)(f); consent — Art. 6(1)(a) where required |
| Product analytics | Measure aggregate usage/retention (Firebase Analytics) | App-instance ID, usage/gameplay events, device/technical, coarse region | EEA/UK: Consent — Art. 6(1)(a) for non-essential analytics (collection stays disabled until consent). Outside the EEA/UK, or for strictly essential measurement: legitimate interests — Art. 6(1)(f). |
| Security & fraud / invalid-traffic prevention | Detect/prevent cheating, invalid ad traffic, abuse | Device IDs, ad-interaction signals, IP-derived signals (by providers) | Legitimate interests — Art. 6(1)(f); legal obligation — Art. 6(1)(c) where applicable |
| Personalized advertising | Serve personalized ads via AdMob mediation; forward consent to networks | GAID/IDFA, ad interactions, device signals, coarse location | Consent — Art. 6(1)(a) (Google UMP; iOS ATT before IDFA-backed ads) |
| Non-personalized / contextual advertising | Serve non-personalized or contextual ads | Limited device/ad-request signals (no IDFA-based tracking) | EEA/UK: Consent — Art. 6(1)(a) where the ads use non-essential device storage or access (cookies, mobile identifiers, local storage, or similar). Where no such non-essential device access is used, and outside the EEA/UK: legitimate interests — Art. 6(1)(f). |
| Rewarded ads (optional revive) | Show an optional, player-initiated rewarded ad; grant the in-game revive | Ad interaction/completion signals; ad identifiers per consent | Ad serving follows the advertising bases above (EEA/UK: consent where non-essential device storage/access is used; personalization is always consent-based). Delivering the chosen in-game reward: legitimate interests — Art. 6(1)(f). |
| Purchases / "Remove Ads" entitlement | Process the purchase; remember entitlement | Purchase/entitlement state, store transaction IDs | Contract — Art. 6(1)(b); legal obligation — Art. 6(1)(c) for records/tax |
| Support requests | Respond if you contact support | Email address, message content, info you include | Legitimate interests — Art. 6(1)(f); contract/steps at your request — Art. 6(1)(b) |
EEA/UK device-access posture. Consistent with our consent-gated initialization (we keep Firebase Analytics collection disabled until consent, show the Google UMP prompt first, request iOS ATT before any IDFA-backed ads, enable analytics and crash reporting per region after consent, and initialize ads only after consent is resolved and forwarded to every ad partner), in the EEA/UK non-essential analytics and any advertising that uses non-essential device storage or access rely on your consent — including non-personalized or contextual advertising that uses cookies, mobile identifiers, local storage, or similar device access. If you do not consent, or you withdraw consent, we do not use personalized advertising and we keep non-essential analytics disabled where consent is required. Non-personalized, contextual, or limited ads may be requested only to the extent permitted by applicable law and by the final Google UMP / Google Mobile Ads / mediation configuration. Where consent is required for non-essential device storage or access and is not given, those ad or analytics features may be unavailable or limited. We continue to rely on legitimate interests only for purposes that do not require non-essential device storage/access — such as security and fraud/invalid-traffic prevention, basic app operation, support requests, and, where applicable, crash diagnostics. Outside the EEA/UK, some non-personalized or contextual advertising may rely on legitimate interests rather than consent.
5. Advertising, partners, consent & tracking controls
We monetize with the Google Mobile Ads SDK and AdMob mediation. Because our advertising partners may change over time, we maintain a current, dated list of advertising partners — including their roles and policy links — at https://snapsnake.app/advertising-partners ("Advertising Partners"). At launch our advertising partners are Google (AdMob / Google Mobile Ads / UMP) and Unity Ads (Unity Technologies). Any additional mediated network will be listed at https://snapsnake.app/advertising-partners before it is activated.
- On first launch (and where legally required) we show a Google UMP consent prompt that governs personalized advertising and, in the EEA/UK, non-essential analytics and advertising that uses non-essential device storage or access (including non-personalized or contextual ads that rely on such access).
- On iOS, after the consent prompt we present Apple's ATT request before any IDFA-based personalized advertising. Decline ⇒ no IDFA-backed tracking; ads may be non-personalized, contextual, limited, or unavailable depending on applicable law and the final SDK configuration.
- You can reset your advertising ID or limit ad tracking in device settings, and change your consent choice in the App (Section 11).
6. Sharing and service providers
We share data only with the providers needed to run the game, each acting as an independent controller or our processor as applicable: Google (Firebase Analytics & Crashlytics, AdMob/Google Mobile Ads/UMP, Google Play Billing), Unity Technologies (Unity Ads, Unity IAP), Apple (App Store/StoreKit billing and ATT on iOS), plus any advertising partner listed at https://snapsnake.app/advertising-partners. We do not sell your personal information for money. Policy links: Google — https://policies.google.com/privacy, https://firebase.google.com/support/privacy, https://support.google.com/admob/answer/6128543; Unity — https://unity.com/legal/game-player-and-app-developer-privacy-policy; Apple — https://www.apple.com/legal/privacy/.
7. Retention
We retain data only as long as needed for the purposes above. Analytics retention is configured in our analytics console and may be updated before launch; provider data is retained according to each provider's policy and our configuration. Local progress remains on your device until you clear it or uninstall.
8. International transfers & representatives
Our providers may process data in countries other than yours, including the United States. Where required, transfers rely on appropriate safeguards (e.g. EU Standard Contractual Clauses) maintained by those providers. Where we are required to appoint a representative under Article 27 GDPR / UK GDPR, we will identify that representative in this section.
9. Your rights and how to exercise them
Depending on where you live, you may have rights to access, correct, delete, port, or restrict/object to processing, and to withdraw consent. Because SNAP SNAKE is guest-only, most data is either stored locally on your device or held by our providers under pseudonymous identifiers. To exercise rights or request deletion, email [email protected]; we will forward requests to the relevant providers and explain what we can and cannot remove (e.g. already-aggregated/anonymized data). You can also clear local progress in Settings and reset/limit your advertising ID on-device.
- EEA/UK (GDPR/UK GDPR): we respond within approximately 30 days (extendable as permitted by law). You may complain to your supervisory authority.
- US state privacy laws: we respond within approximately 45 days (extendable as permitted by law).
10. US state privacy disclosures
Residents of California (CCPA/CPRA) and other US states with comprehensive privacy laws (e.g. Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana) may have rights to know/access, delete, correct, and opt out of "sales"/"shares"/targeted advertising. We do not sell personal information for money; however, sharing advertising identifiers for cross-context behavioral advertising may be treated as a "sale" or "share"/"targeted advertising" under these laws. Opt out by declining personalized ads in the consent prompt, denying iOS ATT, enabling "Limit Ad Tracking"/resetting your advertising ID, or contacting [email protected]. We honor opt-out preference signals such as Global Privacy Control where legally required and technically available. We do not knowingly sell or share the personal information of consumers under 16.
11. Privacy choices / manage consent
You can change your consent for advertising and analytics at any time through the App's privacy/consent settings (re-opening the consent prompt) and through your device's ad-tracking controls. A "Privacy Choices" / "Do Not Sell or Share My Personal Information" control (where applicable) will be available in the App's settings.
12. Children
SNAP SNAKE is a general-audience game and is not directed to children. It is not part of Google Play "Designed for Families" and not in the Apple Kids Category. We do not knowingly collect personal information from children under 13 (or the applicable age in your region). If you believe a child has provided us data, contact [email protected] and we will delete it.
13. Security
Data is transmitted over encrypted (HTTPS/TLS) connections, and our providers apply their own technical and organizational safeguards. No method of transmission or storage is 100% secure.
14. Changes
We may update this policy; material changes are reflected by a new "Last updated" date and, where appropriate, an in-app or store notice. The current list of advertising partners at https://snapsnake.app/advertising-partners may be updated more frequently than this policy.
15. Contact
Kudbi Enterprise — [email protected] (privacy requests: [email protected]).