“Prism – Guess the Word” is a mobile game app (SERVICE) built by Prism Ltd (https://getprism.net, prism@getprism.net or prism.getprism@gmail.com) as a Free app. This SERVICE is provided by https://getprism.net at no cost and is intended for use as is.

This page is used to inform visitors and users of SERVICE regarding our policies with the collection, use, and disclosure of Personal Information if anyone decided to use our SERVICE.

If you choose to use our SERVICE, then you agree to the collection and use of information in relation to this policy. The Personal Information that we collect is used for providing and improving the SERVICE. We will not use or share your information with anyone except as described in this Privacy Policy.

The terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, which is accessible at https://getprism.net unless otherwise defined in this Privacy Policy.

Information Collection and Use

For a better experience, while using our SERVICE, we may require you to provide us with certain personally identifiable information. The information that we request will be retained on your device and is not collected by us in any way.

The SERVICE provides access to the protected SERVICE’s resources stored on the SERVICE’s backend. The resources are: strings representing words and questions used in play, strings representing the names of enum types defined in the implementation and instantiated by deserialization, or numbers, including: achievements, mutators, app colour themes, number of coins and colour cards (internal app’s currency to buy in-app goods, such as app colour themes or hints), hints, and other gameplay items. These resources are protected in a way that each network request issued by the client application (mobile game app) to any of the SERVICE’s backend public endpoints requires authorization. The authorization is implemented without using any 3rd-party services except Ktor Authentication, and the client application (mobile game app) is only required to generate random strings to be interpreted as the “client id” for the further authentication network requests. This “client id” string is stored on the client side for the lifetime of the mobile game app installation on the device. The “client id” string is a totally random string (generated by the Kotlin Random utility) and does not contain any personal or device specific information that might be used to compromise the user or the device in any way – neither in plain nor in encrypted form. It is only used by the SERVICE’s backend to identify that the current mobile game app installation tries to access protected resources of the SERVICE and grant those resources to the client for play. As the authorization process proceeds, the SERVICE’s backend sends the random strings – “token” and “refresh token” – back to the client. These “token” and “refresh token” random strings are also totally random and do not contain any personal or device specific information that might be used to compromise the user or the device in any way – neither in plain nor in encrypted form. SERVICE stores “client id”, “token” and “refresh token” strings securely in its internal server-based remote database. Again, Prism Ltd guarantees that neither of these values (strings) contain any personal or device specific information, neither in plain nor in encrypted form. The SERVICE itself does not need to access any personal or device specific information to operate properly, and it does not do that. While accessing protected SERVICE’s resources, that “token” string is required along with the “client id” and they are verified on the SERVICE’s backend by checking the expiration time for the “token” string and whether it really corresponds to the “client id”. Another string “refresh token” is used to refresh an expired “token” string, using the refresh logic described in Ktor Authentication.

SERVICE’s backend app and the database are hosted on Heroku. Please read the Privacy Policy on the Heroku website to learn how it operates with the data stored on its site.

The SERVICE does use third party services that may collect information used to identify you.

Link to privacy policy of third party service providers used by the SERVICE

• Google Play Services
• AdMob
• Google Analytics for Firebase
• Firebase Crashlytics

Log Data

We want to inform you that whenever you use our SERVICE, in case of any error in the SERVICE we collect data and information (through third party products) on your phone called Log Data. This Log Data may include information such as your device Internet Protocol (IP) address, device name, operating system version, the configuration of the SERVICE while using our SERVICE, the time and date of your use of the SERVICE, and other statistics.

Cookies

Cookies are files with a small amount of data that are commonly used as anonymous unique identifiers. These are sent to your browser from the websites that you visit and are stored on your device’s internal memory.

This SERVICE does not use these cookies explicitly. However, the SERVICE may use third party code and libraries that use cookies to collect information and improve their services. You have the option to either accept or refuse these cookies and know when a cookie is being sent to your device. If you choose to refuse our cookies, you may not be able to use some portions of this SERVICE.

Service Providers

We may employ third-party companies and individuals due to the following reasons:

• To facilitate our SERVICE;
• To provide the SERVICE on our behalf;
• To perform SERVICE-related services; or
• To assist us in analyzing how our SERVICE is used.

We want to inform users of this SERVICE that these third parties might have access to your Personal Information. The reason is to perform the tasks assigned to them on our behalf. However, they are obligated not to disclose or use the information for any other purpose.

Security

We value your trust in providing us your Personal Information, thus we are striving to use commercially acceptable means of protecting it. But remember that no method of transmission over the internet, or method of electronic storage is 100% secure and reliable, and we cannot guarantee its absolute security.

Links to Other Sites

This SERVICE may contain links to other sites, such as in Ad widgets. If you click on a third-party link, you will be directed to that site. Note that these external sites are not operated by us. Therefore, we strongly advise you to review the Privacy Policy of these websites. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

Children Privacy

This SERVICE does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from children under 13. In the case we discover that a child under 13 has provided us with personal information, we will immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us by email prism@getprism.net or prism.getprism@gmail.com or via https://getprism.net so that we will be able to do necessary actions.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. Thus, you are advised to review this page periodically for any changes. We will notify you of any changes by posting the new Privacy Policy on this page. These changes are effective immediately after they are posted on this page.

Contact Us

If you have any questions or suggestions about our Privacy Policy, do not hesitate to contact us at prism@getprism.net or prism.getprism@gmail.com or https://getprism.net .