At Gritbyte Labs ("Company," "we," "our," or "us"), we are committed to protecting your privacy and ensuring compliance with applicable data protection laws. This Privacy Policy explains how we collect, use, disclose, and safeguard personal data when you interact with our company, services, and applications (collectively, "Services").

This Privacy Policy applies to:

• Company Operations: Includes interactions with clients, business communications, marketing, and support services.
• Developed Applications: Covers applications we develop for clients and those we directly publish on platforms such as Google Play, the App Store, Oculus Store, and Steam.

By using our Services, you acknowledge and agree to the practices described in this Privacy Policy.

1. Scope of the Privacy Policy

This Privacy Policy governs

• Company Operations: We collect and process personal data in connection with our business activities...
• Applications Developed for Clients: For applications developed on behalf of clients, we adhere to their specific privacy requirements...

2. Information We Collect

We collect personal and non-personal data to operate and improve our Services. The type of data collected depends on the interaction with us and the functionality of the applications.

2.1 Company Operations

We collect and process the following types of data: 

• Contact Information: Name, email address, phone number, and company details.
• Project Information: Requirements, feedback, and communications related to our services.
• Payment Information: Billing and payment details, securely processed by third-party payment providers.
• Usage Data: Information regarding interactions with our website, emails, or other digital services.

2.2 Applications Developed

Depending on the application’s functionality, we may collect:  

• Account Information: Name, email, username, and profile details.
• Device Information: Device model, OS, IP address, and unique identifiers.
• Usage Data: App interaction details, session activity, and preferences.
• Location Data: If necessary for app functionality, approximate or precise location data.
• Payment Information: In-app purchase or subscription details, processed by platform-specific payment systems (e.g., Google Play, App Store). 

3. How We Use Your Information 

We use collected data to: 

3.1 For Company Operations 

• Service Delivery: Provide customized solutions based on client needs. 
• Customer Support: Respond to inquiries and resolve technical or service-related issues. 
• Analytics & Improvement: Enhance our services based on usage insights. 
• Marketing & Communications: Send updates, newsletters, and promotional content (subject to user consent). 

3.2 For Developed Applications 

• App Functionality: Enable core features such as authentication, gameplay, and transactions. 
• Performance Optimization: Improve app efficiency, usability, and stability. 
• Personalization: Customize user experience based on preferences. 
• Compliance: Ensure adherence to platform guidelines and legal requirements, including parental consent where applicable. 

4. Sharing Your Information

We do not sell or rent personal data. However, we may share information under the following circumstances:  

4.1 For Company Operations 

• Service Providers: Trusted third-party vendors providing cloud storage, payment processing, marketing, or analytics services.  
• Legal Compliance: When required by law, government request, or legal proceedings. 

4.2 For Applications Developed 

• Platform Providers: To enable features such as Google Play Games, Steam Achievements, or App Store services. 
• Client-Specific Requirements: Data-sharing as per agreements with clients, subject to their privacy policies. 
• Third-Party Tools & APIs: Integration with external analytics, advertising, or software services within the app. 

For client apps, data-sharing practices are defined by agreements with our customers, who may have their own privacy policies. 

5. Data Security

We implement industry-standard security measures to protect personal data from unauthorized access, loss, misuse, or alteration. For applications developed for clients, data collection and sharing practices are governed by contractual agreements with the client, who may have their own data policies. 

5.1 Security Practices 

• Encryption: Sensitive data is encrypted during storage and transmission using industry-standard protocols such as SSL/TLS. 
• Access Control: Access to systems and data is restricted to authorized personnel only, with strict authentication and monitoring mechanisms. 
• Regular Audits: We conduct periodic security assessments and vulnerability testing to identify and mitigate risks. 
• Third-Party Compliance: Any third-party service providers engaged by us must adhere to recognized security standards, such as ISO 27001, SOC 2, or equivalent. 

5.2 Security Measures in Applications 

• Secure Integration: All applications developed incorporate secure API integrations and comply with platform security requirements (e.g., Google Play, App Store, Oculus Store, Steam). 
• Client-Specific Requirements: Data-sharing as per agreements with clients, subject to their privacy policies. 
• Data Minimization: We collect only the data necessary for the app’s intended functionality and avoid excessive data retention. 

5.3 Limitations 

While we employ robust security measures, no system can be completely immune to security breaches. In the event of a data breach, we will: 

• Take immediate steps to contain and mitigate the breach. 
• Notify affected users and relevant authorities as required by applicable data protection laws. 
• Implement corrective actions to prevent future occurrences. 

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance user experience and improve our services. 

6.1 Use of Cookies 

Cookies and tracking technologies may be used for the following purposes: 

• Session Management: To remember user sessions and preferences. 
• Analytics: To analyze website and app performance, user engagement, and trends. 
• Personalization: To deliver customized content, including personalized ads where applicable. 

6.2 Tracking Technologies in Applications  

For applications, we may utilize: 

• Device Identifiers: Unique device identifiers may be used for session tracking and app optimization. 
• Analytics Tools: We may integrate third-party analytics services such as Google Analytics, Firebase, or similar platforms to gather insights for app performance and user experience improvements. 

6.3 Managing Cookies and Tracking 

Users have the ability to: 

• Adjust browser or device settings to block or manage cookies. 
• Opt out of tracking through in-app settings or platform preferences, such as App Tracking Transparency (ATT) on iOS or Google Play’s opt-out mechanisms. 

7. Children’s Privacy

7.1 General Policy  

Our applications and services are not directed at children under the age of 13 (or the relevant minimum age in their jurisdiction) unless explicitly designed for them. 

If an application is intended for children, we ensure compliance with child protection laws and platform-specific requirements. 

• Session Management: To remember user sessions and preferences. 
• Analytics: To analyze website and app performance, user engagement, and trends. 
• Personalization: To deliver customized content, including personalized ads where applicable. 

7.2 Data Collection for Children   

For applications intended for children:

• Data collection is strictly limited to what is necessary for the app’s core functionality. 
• No personal information is collected without verifiable parental consent where required by law. 
• Behavioral advertising and tracking technologies are disabled in compliance with regulatory standards. 

7.3 Compliance for Client-Developed Applications 

When developing applications for clients targeting children, we ensure adherence to: 

• Google Play Families Policy: Ensuring apps meet the required standards for child-directed content and data handling. 
• Apple App Store Guidelines: Compliance with child protection policies regarding data collection and storage. 
• Oculus Store & Steam Requirements: Ensuring age-appropriate content and restrictions on data collection from minors. 

7.4 Reporting Concerns  

If you believe that we have inadvertently collected a child’s personal data without appropriate consent, please contact us at privacy@gritbyte.com. We will promptly investigate and take the necessary action to delete such information. 

8. Data Retention 

We retain personal data only for as long as necessary to fulfill its intended purpose, comply with legal obligations, or meet contractual requirements. 

8.1 Data Retention for Company Operations  

• Client Data: Retained for the duration of the business relationship and securely archived after project completion, unless otherwise requested by the client. 
• Financial Records: Retained as required by applicable tax, accounting, and regulatory laws. 
• Communication Data: Emails, support requests, and related correspondence may be stored for quality assurance, record-keeping, and dispute resolution purposes. 

8.2 Data Retention for Developed Applications 

• User Data: Retention periods vary based on the app’s functionality and platform-specific guidelines. Data is retained only as long as required for core features, such as saving user progress or preferences. 
• Analytics Data: Aggregated and anonymized analytics data may be retained for performance optimization, security monitoring, and research purposes. 
• User-Initiated Deletion: Users may request deletion of their personal data through in-app settings or by contacting the app’s support team. 

8.3 Data Deletion Policies  

• For applications developed for third-party clients, data deletion policies are governed by contractual agreements and compliance with applicable regulations (e.g., GDPR, CCPA). 
• Users can request data deletion via app settings or by submitting a request through the designated support channels. 

9. Store Publishing Compliance 

We ensure that all applications published on major digital platforms, including Google Play, App Store, Oculus Store, and Steam, comply with their respective data privacy and security requirements. 

9.1 Google Play Compliance

• Adherence to Google’s User Data Policy, including mandatory disclosure of data collection and usage through the Data Safety section. 
• Compliance with the Families Policy for apps targeting children, ensuring age-appropriate content and obtaining verifiable parental consent where required. 

9.2 App Store Compliance

• Full disclosure of data collection and usage practices via Privacy Nutrition Labels, including whether data is linked to individual users. 
• Compliance with Apple’s App Tracking Transparency (ATT) framework, requiring explicit user consent for tracking activities. 

9.3 Oculus Store Compliance

• Collection of VR-related data (e.g., tracking, spatial data) follows Meta/Oculus privacy guidelines. 
• Implementation of minimal data collection practices, ensuring users are clearly informed about how their data is processed. 

9.4 Steam Store Compliance 

• Compliance with Valve’s privacy and security standards for multiplayer games, in-game transactions, and community interactions. 
• Transparent disclosures regarding data collection related to achievements, leaderboards, and other gameplay features. 

9.5 Platform-Specific Opt-Outs 

• 9.5 Platform-Specific Opt-Outs 

10. User Rights 

Users have control over their data preferences and can adjust their settings via: 

• Google Account Preferences for limiting data sharing. 
• iOS Privacy Settings to manage tracking permissions. 
• Steam Privacy Controls for restricting data visibility. 

10.1 User Rights in Company Interactions 

•   Right to Access: Users may request a copy of the personal data we hold about them. 
• Right to Correction : Users can request corrections to inaccurate or incomplete information. 
• Right to Deletion : Users may request deletion of their personal data, subject to applicable legal and contractual obligations. 
• Right to Data Portability : Users can request their data in a structured, commonly used format. 

10.2 Rights for Developed Applications: 

For applications, users can exercise their rights through in-app settings or by contacting the designated support team. Rights include: 

• Opt-out of tracking or personalized advertising. 
• Request access, modification, or deletion of personal data. 
• Withdraw consent for data processing, where applicable. 

10.3 How to Exercise Your Rights 

To submit a request regarding personal data, users may contact us at privacy@gritbyte.com. Requests will be processed in accordance with applicable laws such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). 

11. Updates to the Privacy Policy

We may update this Privacy Policy periodically to reflect changes in regulatory requirements, operational practices, or new features in our services and applications. 

11.1 Notification of Changes 

• Updated versions of this Privacy Policy will be posted on our website and, where applicable, within the apps we develop. 
• For significant updates affecting user rights or data processing, we will notify users via email or in-app notifications. 

11.2 Effective Date of Changes 

• Each update to this Privacy Policy will include an Effective Date at the top of the document. Continued use of our services or applications after an update constitutes acceptance of the revised terms. 

12. Contact Information

If you have any questions, concerns, or requests related to this Privacy Policy or the handling of your data, please contact us at: 

• Email: privacy@gritbyte.com
• Phone: +91-8431962626
• Office Address : Bangalore, India 

For app-related inquiries, please use the support options provided within the respective application or platform. 

13. General Transparency Commitments 

13.1 Clear Communication 

We prioritize transparency in how we collect, use, and process data. Users can review privacy details through: 

• Google Play : “Data Safety” section. 
• App Store : Privacy Nutrition Labels. 
• Oculus Store : Data usage notifications. 
• Steam Store : Privacy disclosures in app descriptions. 

13.2 Adherence to Platform-Specific Guidelines 

Each digital platform has unique privacy and security requirements. We ensure full compliance for: 

• Internally published applications developed under our brand. 
• Client applications where we align with their privacy policies and contractual obligations. 

13.3 Commitment to User Trust and Data Security

We are dedicated to: 

• Safeguarding user privacy through robust data security measures. 
• Ensuring compliance with global privacy regulations, including GDPR, CCPA, and other jurisdiction-specific laws. 
• Continuously enhancing transparency by updating our privacy policies and security frameworks in line with industry best practices.