Play Now!

Privacy Policy

Last updated: 28 April 2026

This Privacy Policy sets out the rules for collecting, processing and protecting Users' personal data when using the Privé game — both in the browser version (privegame.com) and in the Privé mobile app for iOS and Android — as well as the rules for storing and reading data on Users' Devices (Cookies).

This Privacy Policy is an integral part of the Terms of Service.

§1 Definitions

  • Service — the Privé platform consisting of:

    • Browser version available at https://privegame.com (freemium game: first game free, one-time Privé+ and Privé Max packages),
    • Privé mobile app for iOS and Android (anonymous game, couple-code pairing, optional premium subscription).

  • Administrator — "elnino Paweł Gniadkowski", Sygneczów 311, 32-020 Sygneczów, Poland, VAT ID: PL5732576742.

  • User — a natural person using the Service in either version.

  • Couple — two Users connected in the game via a couple code (mobile) or a private link (web).

  • Couple code / Share link — a short identifier used to pair the second User with the game without creating an account or providing contact details.

  • Guest session — an anonymous token stored in an httpOnly cookie (TTL 30 days) that allows using the browser version without an account.

  • Browser fingerprint — an anonymous SHA-256 hash computed from User's browser characteristics (canvas, fonts, screen resolution, timezone, audio context, WebGL). The hash is one-way — original characteristics cannot be recovered nor can a person be identified.

  • Device — electronic equipment with software through which the User accesses the Service (computer, smartphone, tablet).

  • Cookies — text data stored as files on the User's Device (applies only to the browser version; the mobile app does not use cookies).

  • GDPR — Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (General Data Protection Regulation).

  • Personal data — any information relating to an identified or identifiable natural person.

  • Special category data — data listed in Article 9 GDPR; in the context of Privé this concerns information about Users' sexual preferences expressed in their quiz answers and dare interactions.

  • Anonymisation — an irreversible process making it impossible to attribute a record to a specific person.

  • Pseudonymisation — processing data so that they can no longer be attributed to a specific person without additional information held separately.

§2 Data Protection Officer

Pursuant to Article 37 GDPR, the Administrator has not appointed a Data Protection Officer. For matters related to data processing, please contact the Administrator directly (§18).

§3 Types of Cookies

Cookies apply only to the browser version. The mobile app does not use cookies — it relies on native system mechanisms (e.g. Keychain, Keystore).

  • First-party cookies — placed by the Service (e.g. guest session token, language preference, cookie consent status).

  • Third-party cookies — placed by external services integrated with the Service (list in §7).

  • Session cookies — removed when the browser is closed.

  • Persistent cookies — remain on the Device until manually removed or expired (max 30 days for guest session, longer for preferences).

§4 Cookie security and control

  • Mechanism — Cookies use built-in browser mechanisms; they cannot fetch other data from the Device or execute code.

  • Security — session cookies (httpOnly, Secure, SameSite=Lax) are protected against reading by third-party JavaScript.

  • User control — Users may change cookie settings at any time in their browser (Chrome, Safari, Firefox, Edge, Opera) or in our consent banner.

  • Consequences of disabling — disabling cookies may prevent use of the browser version of the game (loss of guest session, no quiz answer persistence).

§5 Purposes of cookies

  • Maintaining the guest session in the game (necessary cookie — no consent required)
  • Remembering language preferences and cookie consent status (necessary cookie)
  • Product analytics — anonymous usage measurement (consent cookie)
  • Marketing and remarketing on third-party services (consent cookie)

§6 Purposes of personal data processing

Users' data are processed for one of the following purposes:

  • Providing the Privé game service:
    • Browser version — freemium model: first game free, one-time Privé+ and Privé Max packages,
    • Mobile app — anonymous couple game, optional premium subscription.
  • Sending an invitation to the partner — in the browser version Users may share a private link with their partner via SMS or email (fire-and-forget relay — we do not store the recipient address beyond the moment of sending).
  • Payments — Stripe Checkout (web, one-time Privé+ / Privé Max) and RevenueCat with Apple App Store / Google Play (mobile, premium subscription).
  • Push notifications (mobile) — information about partner activity (new dares, completed quizzes, intensity proposals).
  • Real-time communication — Mercure Server-Sent Events synchronising the couple's game state across devices.
  • Newsletter — sending promotional content after sign-up and email confirmation.
  • Product and marketing analytics — understanding User behaviour (anonymous), product optimisation, advertising campaigns.
  • Security and abuse prevention — see §13 (Anti-abuse).
  • Crash reporting — anonymous application error reports (Sentry).
  • Pursuing the Administrator's legitimate interests.

§7 Cookies and scripts of external services

The browser version integrates scripts and components from the following partners (some may place their own cookies):

  • Payments:
    • Stripe (USA) — Stripe Checkout for Privé+ and Privé Max packages.
  • Security / Anti-abuse:
    • Cloudflare Turnstile (USA / EU) — invisible challenge protecting against bots (CAPTCHA alternative).
    • FingerprintJS (open-source, client runtime) — generates a SHA-256 hash of unique browser characteristics (anti-abuse).
  • Product analytics:
    • PostHog (EU host) — product analytics, feature flags, A/B tests.
    • Mixpanel (USA) — event analytics.
  • Marketing:
  • Newsletter:
    • Mailjet (EU) — sending mailings and partner invitation relay (fire-and-forget).
  • Crash reporting:
    • Sentry (EU host) — anonymous error reports.

Services provided by third parties are outside the Administrator's control. These entities may change their terms, privacy policies and cookie usage at any time without the Administrator's consent.

§8 Types of data collected

8.1 Anonymous data collected automatically (both channels):

  • IP address (stored in Redis only for anti-abuse, TTL 30 days)
  • Browser type (User-Agent), operating system, version
  • Browser / device language
  • Screen resolution
  • Approximate location (based on IP — country/region)
  • Pages / app screens visited, time spent
  • Referrer URL

8.2 Data collected in the browser version (Web):

  • Partner names (optional — solely for report personalisation, not required to play)
  • Couple profile (fm / mf), chosen intensity level (discover / explore / unleash)
  • Quiz answers (sexual preferences — special category data, Article 9 GDPR)
  • SHA-256 browser fingerprint hash — anti-abuse
  • Session token (httpOnly cookie, TTL 30 days)
  • SHA-256 hash of email address (optional — only if the User opts in for an email reminder; we do not store the raw address)
  • We do not collect: raw email address, phone number, identifying data, payment data (these are processed exclusively by Stripe).

8.3 Data collected in the mobile app:

  • Couple code — anonymous pairing identifier
  • Couple profile, intensity, quiz answers (sexual preferences — special category data, Article 9 GDPR)
  • Sent and received dares, reactions, status
  • Privé Go! activity (wishlist, swipe, matches)
  • Anonymous device ID
  • Push token (APNs for iOS, FCM for Android) — only if the User has opted in to notifications
  • Premium subscription status (RevenueCat entitlement) — without payment data
  • We do not collect: email address, names, phone number, identifying data, payment data (processed exclusively by Apple App Store / Google Play / RevenueCat).

8.4 Data collected for the Newsletter:

  • Email address
  • Optionally first name / nickname
  • IP address (collected automatically for sign-up audit)

8.5 Payment-related data:

  • Web (Stripe) — the Administrator does not store card data or other payment data. From Stripe we receive only: Stripe customer ID, payment status, transaction metadata (amount, currency, package).
  • Mobile (RevenueCat / Apple / Google) — the Administrator receives only the subscription identifier and entitlement status. All financial data are processed by Apple App Store / Google Play.

§9 Third-party access to data

Users' data are not sold to third parties. Access to data — usually under a Data Processing Agreement (DPA) — is granted to the following entities necessary to operate the Service:

  • Hosting / Infrastructure — Amazon Web Services EMEA SARL (eu-central-1, Frankfurt) — databases, application, Mercure SSE, Redis.
  • Web paymentsStripe Payments Europe.
  • Mobile payments:
  • Push notifications:
    • Apple Push Notification Service (APNs),
    • Google Firebase Cloud Messaging (FCM).
  • Invitation SMSSMSPlanet (Poland).
  • Invitation emails and Newsletter — Mailjet (EU).
  • Anti-abuse:
    • Cloudflare Turnstile (USA / global network),
    • FingerprintJS (open-source, client runtime — hash sent to our API).
  • Analytics: PostHog (EU host), Mixpanel (USA).
  • Marketing: Meta (USA) — Pixel + Conversions API.
  • Crash reporting: Sentry (EU host).

§10 Transfer of data outside the European Union

Some partners listed in §9 are based outside the EU (mainly USA): Stripe, Apple, Google, Meta, Mixpanel, RevenueCat. Data transfers are based on:

  • Standard Contractual Clauses (SCC) approved by the European Commission,
  • Adequacy decisions for transfers to the USA (EU-US Data Privacy Framework — for certified entities).

The Administrator prefers EU-hosted partners wherever possible (PostHog, Sentry, Mailjet, AWS Frankfurt).

§11 Legal bases for processing

  • Article 6(1)(b) GDPR — performance of a contract (providing the game service, executing payments).
  • Article 6(1)(f) GDPR — Administrator's legitimate interests (anti-abuse, analytics, security, own marketing).
  • Article 6(1)(a) GDPR — User consent (Newsletter, marketing cookies, optional reminder email).
  • Article 9(2)(a) GDPR — User's explicit consent to processing of special category data (sexual preferences — necessary to provide the game service; see §12).
  • Polish Act of 10 May 2018 on Personal Data Protection.
  • Polish Telecommunications Act of 16 July 2004.

§12 Special category data (Article 9 GDPR)

Given the nature of the service, the Privé game processes information about Users' sexual preferences, expressed in their quiz answers and dare interactions. These are special category data within the meaning of Article 9 GDPR.

  • Legal basis — User's explicit consent (Article 9(2)(a) GDPR) given before starting the game. Without this consent, the service cannot be provided.
  • Security measures:
    • Encrypted SSL/TLS connection for every transmission,
    • Pseudonymisation — answers linked to an anonymous couple identifier, not to a person,
    • Data are never sold to third parties,
    • Partner answers are revealed only when there is mutual agreement — rejected preferences remain secret from the other User,
    • Retention as per §16 — guest couple 30 days, paid couple until deletion is requested.
  • User rights — the User may withdraw consent at any time (by contacting the Administrator or deleting their account in the app), which results in immediate cessation of processing and deletion of data.

§13 Anti-abuse and security

To protect the Service against abuse (bots, scrapers, artificial repeated use of the free game), the Administrator employs the following mechanisms in the browser version:

  • Cloudflare Turnstile — invisible challenge verifying that the visitor is human, not a bot.
  • Browser fingerprint (SHA-256) — anonymous hash of unique browser characteristics used to identify a returning Device without identifying the User.
  • IP rate limit — limit of free games per IP address (max 3 / 30 days), implemented via a Redis sliding window.
  • Content honeypot — when the limit is exceeded, the Service serves previously seen questions (without a block message).

Legal basis: Article 6(1)(f) GDPR — Administrator's legitimate interest in protecting the Service against abuse.

Anti-abuse data (IP, fingerprint) are stored solely in Redis memory with a TTL of 30 days and are never combined with data that could identify the User.

§14 Mobile app — separate rules

The Privé mobile app (iOS / Android) operates without an account and without identifying data — we do not require an email address, name or phone number. Pairing of two players takes place via a short couple code.

Legal note: we use the term "anonymous" in the colloquial sense — from the Administrator's perspective, we do not know the User's identity. In the meaning of the GDPR, however, the data are pseudonymous (not fully anonymised), as device ID, push token and couple code can be attributed to a specific Device. We therefore apply the full GDPR protection regime, including the rules on special category data (§12).

  • Anonymous mode — no account, no login; just the app and a couple code.
  • Push notifications — opt-in; you can disable them at any time in system settings (iOS / Android) or in the app.
  • In-app purchases — premium subscription handled by Apple App Store / Google Play; you can cancel at any time from App Store / Google Play settings (you keep access until the end of the paid period).
  • Crash reporting — the app sends anonymous error reports to Sentry (stack trace, OS version); no identifying data.
  • Right to delete the account — from within the app: Settings → Account → Delete account. This deletes all User data locally and on the server.
  • Real-time — game state is synchronised between the couple's devices via Mercure Server-Sent Events (Caddyfile) hosted in the Administrator's infrastructure.

§15 Payments

  • Browser version:
    • First game — completely free.
    • One-time packages Privé+ and Privé Max — Stripe Checkout. The Administrator never has access to card data.
    • Coupon ladder system X→Y — credit of the amount paid for upgrading from Privé+ to Privé Max (TTL 30 days from Privé+ purchase).
    • Refunds — pursuant to the Terms of Service; in case of a refund we revoke access to the package.
  • Mobile app:
    • First quiz — completely free.
    • Premium subscription — Apple In-App Purchases / Google Play Billing, mediated by RevenueCat. Cancellable at any time.
    • Refunds — subject to Apple App Store / Google Play policies (outside the Administrator's control).

§16 Data retention period

  • Browser version — guest couple: 30 days from last access → automatic deletion (cron job).
  • Browser version — paid couple (Privé+ / Privé Max): no time limit (legitimate interest — access to the purchased product); financial data (invoices) — 5 years pursuant to tax law.
  • Mobile app: until the User deletes the account from within the app (or upon email request).
  • Push tokens: 90 days of inactivity → soft delete.
  • IP / fingerprint in Redis (anti-abuse): TTL 30 days.
  • Server logs: 30 days.
  • Newsletter: until the User unsubscribes.
  • Sentry / PostHog: 30–90 days according to the operator's policy.

§17 User rights

Each User has the following rights under the GDPR:

  • Right of access (Article 15 GDPR) — information about the data being processed.

  • Right to rectification (Article 16) — correcting inaccurate data.

  • Right to erasure ("right to be forgotten") (Article 17):

    • Mobile app — within the app: Settings → Account → Delete account,
    • Browser version (guest) — automatic expiry after 30 days, or earlier on email request,
    • Browser version (paid) — by email request to the Administrator.

  • Right to restrict processing (Article 18) — temporary suspension of processing in cases listed in the GDPR.

  • Right to data portability (Article 20) — receiving data in a structured format (JSON / CSV).

  • Right to object (Article 21) — to processing based on legitimate interest (analytics, marketing).

  • Right to withdraw consent (Article 7(3)) — at any time; applies, among other things, to consent for processing special category data (Article 9), Newsletter, marketing cookies.

  • Right to lodge a complaint with a supervisory authority — Polish President of the Personal Data Protection Office (uodo.gov.pl) or the supervisory authority in your country of residence.

All requests should be sent to the Administrator's email address (§18). We respond within 30 days.

§18 Contacting the Administrator

  • Postal address — elnino Paweł Gniadkowski, Sygneczów 311, 32-020 Sygneczów, Poland

  • Emailprive@privegame.com

§19 External links and User-generated content

The Service may contain links to external sites with which the Administrator does not cooperate. These links and any pages or files referenced may pose a risk to your Device. The Administrator is not responsible for content located outside the Service.

§20 Changes to the Privacy Policy

  • The Administrator reserves the right to amend this Privacy Policy.

  • Material changes (concerning processing purposes, third parties or User rights) will be communicated to Users with active accounts / Newsletter subscribers via email at least 7 days in advance.

  • The current version of the Privacy Policy is always published on this page with the date of last update.

  • Continued use of the Service after the introduction of changes constitutes acceptance of those changes. If the User does not accept the changes, they should stop using the Service and — in the case of the mobile app — delete their account.

The most exciting game for couples

Ready to discover your shared fantasies?

Start the game now and find out what truly excites you both. No awkward conversations needed.

Your first game is completely free Full package from $9.90
Play Now!
Trusted by 4 400+ couples worldwide