Privacy Policy

Veltrana Studios LLC — Apps, Games & Software
Effective Date: August 8, 2025

1) Who We Are & Scope

Veltrana Studios LLC (“Veltrana,” “we,” “our,” “us”) develops and operates applications, games, software, websites, and related services (collectively, the “Services”), including but not limited to the BounceBack app. This Privacy Policy explains how we collect, use, disclose, and protect information when you use the Services.

2) Categories of Data We Collect

  • Account Data — name, email address, password hash, profile settings, avatars/usernames.

  • Payment & Subscription Metadata — purchase tokens, product IDs, region, trial start/end, renewal status (processed by respective app stores, e.g., Google Play Billing / Apple App Store).

  • Gameplay / App Activity — in-app actions, progress, achievements, preferences, session data.

  • Fitness/Wellness Logs (optional) — workouts, goals, metrics, nutrition entries, measurements, photos/notes you upload (for features that support this, like BounceBack).

  • Device & Technical Data — device model, OS version, app version, language, time zone, IP address, advertising/device identifiers.

  • Diagnostics — crash logs, performance/error reports (e.g., Crashlytics).

  • Push Tokens — device tokens for notifications if you opt in.

  • Support Communications — emails, tickets, and in-app messages you send us.

  • Media You Upload — screenshots, progress photos, or attachments you choose to store.

3) Sources of Data

We collect information directly from you, from your device and your use of the Services, from app stores for purchase validation, and from analytics/diagnostics providers.

4) Purposes of Processing

We use collected information to:

  • Authenticate users and provide the features you request.

  • Administer free trials, subscriptions, purchases, and license management.

  • Personalize content, recommendations, difficulty, or plans.

  • Analyze usage and improve performance, stability, and user experience.

  • Detect, investigate, and prevent fraud, abuse, or security incidents.

  • Provide customer support and communicate updates (marketing only with required consent).

  • Comply with legal, accounting, and regulatory obligations.

5) Legal Bases (EEA/UK)

  • Contract — to deliver the Services you request.

  • Legitimate Interests — product improvement, analytics, security, anti-fraud.

  • Consent — where required (e.g., certain notifications/marketing, optional data).

  • Legal Obligation — tax, accounting, and compliance requirements.

6) Sharing & Processors

We do not sell personal information. We share data with vendors acting as processors to operate the Services, including:

  • Firebase (Google) — Authentication, Firestore/Storage, Analytics, Crashlytics, Cloud Messaging.

  • App Stores — Google Play Billing / Apple App Store for purchase validation and subscription management.

  • Cloud hosting, logging/monitoring, crash/analytics, and support tools under contracts with appropriate safeguards.

We may also disclose information to comply with law, protect rights/safety, or as part of a merger, acquisition, or sale of assets.

7) Cookies, SDKs & Tracking

We use SDKs (e.g., Firebase Analytics/Crashlytics) for analytics and diagnostics. You can limit ad tracking and reset advertising IDs in your device settings. If our Services use browser cookies (e.g., on our website), we will present the required notices and choices.

8) Data Retention

We retain personal data only as long as necessary for the purposes above. Typical periods:

  • Account data — until you delete your account.

  • Purchase metadata — as required for fraud prevention and accounting.

  • Analytics/diagnostics logs — usually 12–24 months unless needed longer for security or legal reasons.

9) Security Measures

We use administrative, technical, and physical safeguards, including encryption in transit and at rest where supported, access controls, and monitoring. However, no method of transmission or storage is completely secure.

10) International Transfers

Information may be processed in the United States and other countries. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) for cross-border transfers.

11) Your Rights & Choices

Global rights: access, rectification, deletion, portability, restriction/objection, and withdrawal of consent (where applicable). Manage many settings in the Services or contact us.

California (CCPA/CPRA): right to know/access, delete, correct; opt-out of certain sharing (we do not sell personal information); limit use of sensitive personal information (we do not use sensitive data to infer characteristics); non-discrimination for exercising rights.

Submit requests at support@veltranastudios.com. We may verify your identity before fulfilling a request.

12) Children’s Privacy

The Services are not directed to children under 13. If we learn that we have collected personal information from a child under 13, we will delete it. If a parent/guardian believes a child provided data, please contact us.

13) Do Not Track & Advertising

Browsers may send “Do Not Track” signals; we currently do not respond to DNT signals. We do not show personalized ads in our apps unless disclosed; if introduced, we will update this Policy and present required choices.

14) Changes to This Policy

We may update this Policy. The “Effective Date” above reflects the latest version. For material changes, we will provide notice in-app, on our website, or by other reasonable means.

15) Contact & Data Controller

Data Controller: Veltrana Studios LLC
Email: support@veltranastudios.com