Privacy Policy

Last Updated: February 10, 2026

Introduction

Welcome to Capone’s Bones (“we,” “our,” or “us”). We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our mobile application.

Information We Collect

Personal Information

• Account Information: Email address, display name, profile photo (if provided)
• Authentication Data: Authentication provider information (Google, Apple) when you sign in
• Game Data: Scores, achievements, game progress, leaderboard rankings, purchase history

Automatically Collected Information

• Device Information: Device type, operating system, app version
• Usage Data: Game sessions, features used, interactions with the app
• Analytics Data: Events, errors, performance metrics (via PostHog)
• Advertising Data: Ad interactions, ad identifiers (via Google AdMob)
• Bluetooth/Local Network: When using local multiplayer, we use Bluetooth and local network to discover and connect to nearby devices. No data from these connections is transmitted to our servers.
• Location (Android only): On Android, Bluetooth device discovery may require location permission to be enabled. We do not collect or use GPS coordinates; this is a platform requirement for Bluetooth Low Energy scanning.

Third-Party Services

We use the following third-party services that may collect information:

• PostHog: Analytics, error tracking, and session replay
• Google AdMob: Advertising and ad analytics
• Supabase: Backend services, database, authentication
• Apple/Google: Authentication providers

How We Use Your Information

We use the collected information to:

• Provide and improve our game services
• Process in-app purchases and transactions
• Send push notifications (with your consent)
• Analyze app usage and performance
• Display personalized advertisements
• Respond to support requests
• Ensure app security and prevent fraud
• Comply with legal obligations

Data Storage and Security

• Your data is stored securely using Supabase’s infrastructure
• We implement industry-standard security measures
• Authentication credentials are handled by secure third-party providers (Google, Apple)
• Payment information is processed securely through Apple App Store and Google Play Store

Third-Party Services

PostHog

• Purpose: Analytics, error tracking, session replay (recorded user interface interactions such as taps and navigation to improve the app)
• Data Collected: Events, errors, user interactions, device information, session replays (UI interactions; text inputs are masked)
• Privacy Policy: https://posthog.com/privacy
• Opt-out: Contact us to request data deletion

Google AdMob

• Purpose: Display advertisements
• Data Collected: Ad identifiers, ad interactions, device information
• Privacy Policy: https://policies.google.com/privacy
• Opt-out: Adjust ad preferences in device settings

Supabase

• Purpose: Backend services, database, authentication
• Data Collected: User data, game data, authentication tokens
• Privacy Policy: https://supabase.com/privacy
• Data Location: United States (or as configured)

Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate data
• Deletion: Request deletion of your data
• Portability: Receive your data in a portable format
• Opt-out: Opt-out of certain data collection (where applicable)
• Complaint: File a complaint with your local data protection authority

To exercise these rights, contact us at: jakesorce@gmail.com. We will respond to verified requests within 30 days, or as required by applicable law.

Children’s Privacy

Our app is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

Data Retention

We retain your data for as long as necessary to provide our services and comply with legal obligations. You may request deletion of your account and associated data at any time.

International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your data.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by updating the “Last Updated” date and, where appropriate, through in-app notifications.

Contact Us

If you have questions about this privacy policy or our data practices, please contact us:

Email: jakesorce@gmail.com
Website: https://capones-bones.pages.dev

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale of personal information (we do not sell personal information)
• Right to non-discrimination for exercising your privacy rights

If you are a resident of Virginia, Connecticut, Colorado, or Utah, you may have additional rights under your state’s privacy law. Contact us for details.

European and UK Privacy Rights (GDPR/UK GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom (UK), you have additional rights under the General Data Protection Regulation (GDPR) and UK GDPR:

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure (“right to be forgotten”)
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent