1. Information We Collect

1.1 Information You Provide to Us

1.2 Information Collected Automatically

1.3 Information from Other Sources

1.4 Information We Do Not Collect


2. How We Use Your Information

We use the information described above to:

  1. Create and maintain your account and authenticate logins.

  2. Pair your mobile device with your BrainBlink Device and deliver firmware updates.

  3. Run game sessions, calculate scores, compute your BrainBlink Index, and rank you on leaderboards and in tournaments.

  4. Enable social features such as friend lists, multiplayer rooms, and matchmaking.

  5. Recommend game modes and difficulty based on your ability preferences and performance history.

  6. Send transactional notifications (match invites, tournament reminders, password resets) and operational announcements.

  7. Detect, investigate, and prevent fraud, cheating, account abuse, and security incidents.

  8. Comply with legal obligations, respond to lawful requests from authorities, and enforce our Terms.

  9. Improve the Services through aggregated analytics and crash diagnostics.

We do not use your information for automated decision-making that produces legal or similarly significant effects on you.


3. Legal Bases for Processing (EEA / UK Users)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, our legal bases for processing your personal data under the GDPR are:


4. How We Share Information

We share information only as described below. We do not sell personal information.

RecipientPurposeData SharedOther BrainBlink usersSocial features (friends list, multiplayer, tournaments, leaderboards)Username, avatar, country/region, scores, BrainBlink Index, win/loss recordCloud infrastructure and hosting providersHosting databases and game servicesAll data necessary to operate the Services, under contractual confidentialityPush notification providers (Apple APNs, Google FCM, regional push services)Delivering notificationsDevice push token, message payloadThird-party login providers (Google, Apple, Facebook, Instagram)AuthenticationProvider-issued user ID and tokens we receive from youAnalytics and crash-reporting servicesDiagnostics and product improvementPseudonymous identifiers, device model, crash stack tracesCustomer support toolsResponding to your inquiriesAccount email, message content, ticket metadataLegal and regulatory authoritiesWhen required by law, subpoena, or to protect rights and safetyInformation strictly required by the requestSuccessors in a merger or acquisitionBusiness continuity in a corporate transactionSame protections continue to apply

Where the law requires, we sign data processing agreements with all service providers and require them to apply appropriate safeguards.


5. International Data Transfers

The Services are operated globally. Your information may be transferred to and processed in countries other than your country of residence. When we transfer personal data out of the EEA, the UK, or Switzerland, we rely on Standard Contractual Clauses approved by the European Commission, an adequacy decision, or another lawful transfer mechanism.


6. Data Retention

We keep your personal data only as long as necessary for the purposes described in this Policy.

Data CategoryRetentionAccount profileUntil you delete your accountGame records (solo, multiplayer, matchmaking)Recent 30 days are visible in-app; aggregated statistics may be retained longer for leaderboards and rankingsDevice pairing logs12 months from last pairing eventSupport tickets and feedback24 months after the ticket is closedCrash and diagnostic logs90 daysLogs required by law (security, tax, fraud)Up to the period required by applicable law

When you delete your account, we delete or anonymize your personal data within 30 days, except where longer retention is required by law or to resolve disputes and enforce our agreements.


7. Your Rights

Depending on where you live, you have some or all of the following rights:

7.1 EEA / UK Rights (GDPR)

You can exercise the rights above by writing to hello@brainblink.io. We will respond within one month. You may also lodge a complaint with the supervisory authority in your country of residence.

7.2 California Rights (CCPA / CPRA)

If you are a California resident, you have the right to:

You may submit a verifiable consumer request to hello@brainblink.io. We will verify your identity using information already on file (such as your registered email and recent account activity).

7.3 How to Exercise Your Rights


8. Account and Data Deletion

You can delete your BrainBlink account and the personal data associated with it at any time, directly from within the App.

8.1 Delete Your Account from the App

  1. Open the BrainBlink App and sign in.

  2. Go to Profile → Settings → Account Settings → Deactivate Account.

  3. Confirm the action. We may ask you to re-enter your password as an additional verification step.

  4. The App will return you to the login screen once the request has been recorded.

Deletion is immediate and final. There is no grace period and the account cannot be recovered once deletion is confirmed.

8.2 What Happens to Your Data

8.3 What Deletion Does Not Do


9. Children's Privacy

The Services are intended for users aged 13 and over (16 and over in the EEA where local law requires a higher age of digital consent). We do not knowingly collect personal data from anyone below those ages. If we learn that we have collected personal data from a child below the applicable age without verified parental consent, we will delete it promptly. Parents or guardians who believe their child has provided us with personal data may contact hello@brainblink.io.


10. Security

We implement technical and organizational measures designed to protect your information, including encryption in transit (TLS), encryption at rest for sensitive fields, role-based access control, audit logging, and regular security reviews. No system is 100% secure; you are responsible for keeping your password confidential and for activities that occur under your account.

If you believe your account has been compromised, change your password immediately and contact hello@brainblink.io.


11. Cookies and Similar Technologies

The mobile App does not use browser cookies. We use local storage on your mobile device to remember your login session and preferences. Our analytics and crash-reporting providers may use device identifiers; you can reset advertising identifiers in your phone settings.


12. Third-Party Links and Services

The Services may contain links to third-party websites or services (for example, the privacy policies of Google, Apple, Facebook, or Instagram when you use third-party login). We are not responsible for the privacy practices of those third parties. Please review their privacy policies before providing them with personal information.


13. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you in the App or by email at least 7 days before the changes take effect, and update the "Last Updated" date above. Your continued use of the Services after the effective date constitutes acceptance of the revised Policy.


14. Contact Us

Email: hello@brainblink.io