MinMen Studio ("we", "us", or "our") operates the DragonFish mobile application (the "App") on iOS and Android. This Privacy Policy explains what information is collected when you use the App, how it is used, and your choices regarding that information.
1. Information We Collect
DragonFish is designed to work offline for core gameplay. Game data — moves, positions, history, hearts balance, and settings — is stored locally on your device only (iOS UserDefaults / Android SharedPreferences). It is never transmitted to our servers.
On the Android version, the App uses the following Google services for app health, abuse prevention, and ad delivery. No personally identifiable information (name, email, exact location) is collected.
- Firebase Analytics — anonymous usage events such as app launches and out-of-hearts paywall hits. Events are tagged only with an automatically-generated app instance ID.
- Firebase Crashlytics — crash reports and stack traces sent when the App crashes, to help us diagnose and fix bugs.
- Cloud Firestore — stores a one-way SHA-256 hash of the device's Android App Set ID to detect when the same device reinstalls the App. This prevents abuse of the free starter hearts. The hash cannot be reversed to identify your device or you personally.
2. In-App Purchases
DragonFish offers optional in-app purchases (heart packages and engine unlock). On iOS, purchases are processed by Apple's App Store. On Android, purchases are processed by Google Play Billing. We do not receive or store any payment or financial information. See Apple's Privacy Policy and Google's Privacy Policy for details on how each platform handles purchase data.
3. Advertising
On the Android version, the App may display rewarded video ads via Google AdMob if you choose to watch them in exchange for in-game rewards (extra hearts). AdMob may collect and use the device's Advertising ID for ad serving and measurement. You can reset or limit ad personalization in your device Settings → Privacy → Ads. The iOS version does not currently display ads.
4. Children's Privacy
The App is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided personal information, please contact us at the address below and we will take steps to delete such information.
5. Data Retention
Local device data is deleted when you uninstall the App. Firebase Analytics events are retained for the period configured by Google (default 14 months) before being aggregated. Crash reports are retained for 90 days. Anti-abuse install records (the hashed App Set ID described in Section 1) are retained for as long as they remain useful for abuse-prevention purposes. You may request deletion of data tied to your device at any time — see Section 7.
6. Security
All data transmitted between the App and our cloud providers is encrypted in transit (HTTPS / TLS). Local data on your device is protected by your device's own security mechanisms (Face ID, fingerprint, passcode).
7. Your Rights & Data Deletion
You have the right to request access to, correction of, or deletion of data we hold that is associated with your device. To make such a request, email us at the address in Section 9 with a description of your request. We will respond within 30 days. Most data we collect is anonymous and not tied to a personally-identifying account, so we may need additional information (for example, your device's anonymous Firebase app instance ID) to locate and delete the relevant records.
8. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of the App after any changes constitutes acceptance of the updated policy.
9. Contact Us
If you have any questions or concerns about this Privacy Policy, or to make a data request, please contact us at:
MinMen Studio
Email: dragonfish.minmenstudio@gmail.com