Privacy Policy — Block Puzzle
Effective Date: May 7, 2026 Last Updated: May 7, 2026
1. Introduction
This Privacy Policy explains how Ledger Logic Apps ("we", "us", or "our") collects, uses, shares, and protects information when you use the mobile game Block Puzzle (package name: com.generatorhost.blockpuzzle, the "App"), available on Google Play.
We have written this policy in plain language. Where regulations require specific terms, we explain them in context.
By installing or using the App, you agree to the practices described below. If you disagree, please uninstall the App and stop using our services.
2. Who We Are (Data Controller)
Ledger Logic Apps Cairo, Egypt Egypt
Contact for privacy matters: [email protected] Website: https://ledgerlogicapps.github.io
For users in the European Economic Area (EEA), the United Kingdom, or Switzerland, Ledger Logic Apps is the data controller responsible for your personal data under the General Data Protection Regulation (GDPR) and the UK GDPR.
For users in Egypt, we comply with the Personal Data Protection Law No. 151 of 2020 (PDPL).
For users in California, this policy includes notices required by the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA).
3. Information We Collect
We collect the minimum information needed to operate the App, improve it, and show ads (if applicable). Below is the complete list, grouped by source.
3.1 Information You Provide
- Anonymous account. When you first open the App, we automatically create an anonymous account on Firebase Authentication. This produces a random user ID (UID) tied to your installation. No name or email is required.
- Optional Google Sign-In. If you choose to sign in with Google to sync your progress and appear on leaderboards, we receive: your Google account email, display name, profile photo URL, and a stable Google user ID. We do not receive your Google password.
- Display name and country. If you sign in, your chosen display name and country (derived from your device locale) are stored to display on the leaderboard.
3.2 Information Collected Automatically
When you use the App, we automatically collect:
- Device information: device model, manufacturer, OS version, screen size, system language, timezone.
- App information: app version, install time, session start/end times, screens visited.
- Gameplay events: game started, game over, score, mode (Classic/Adventure), level completed/failed, lines cleared, combos achieved, theme changed, settings toggled. These events do not contain personal content — only gameplay metrics.
- Game progress saved to your device: your current game state, high score, settings, and statistics are stored locally on your device using Android DataStore. This data does not leave your device unless you sign in to sync.
- Approximate location. We derive your country from your device's locale settings and from the IP address used to contact our servers. We do not collect precise GPS location.
- Advertising identifier (AAID). Google's Advertising ID, used by ads (see Section 5).
- Crash data. When the App crashes, we collect a stack trace, the device state at the time, the screen you were on, and the level being played. This helps us fix bugs.
3.3 Information from Third Parties
- Google Sign-In: if you choose this option, Google provides us with the data listed in Section 3.1.
- Google AdMob and ad partners: receive limited information from your device to serve ads (see Section 5).
3.4 What We Do NOT Collect
- We do not collect your real name unless you provide it via Google Sign-In.
- We do not collect your phone number, physical address, payment information, biometric data, contacts, photos, microphone audio, or camera images.
- We do not access your other apps or files outside the App's sandbox.
4. How We Use Information
We use the information above for these purposes only:
| Purpose | Data Used | Legal Basis (GDPR) |
|---|---|---|
| Run the game and save your progress | Anonymous UID, game state, settings | Performance of contract (Art. 6(1)(b)) |
| Show your scores on the global leaderboard | UID, display name, country, score | Performance of contract (Art. 6(1)(b)) |
| Allow cross-device sync via Google Sign-In | Google account info | Performance of contract (Art. 6(1)(b)) |
| Understand which features are used and improve the game | Analytics events, device info | Legitimate interest (Art. 6(1)(f)) — you can opt out (Section 9) |
| Detect and fix crashes | Crash logs, device state | Legitimate interest (Art. 6(1)(f)) |
| Show ads to fund the free version | Advertising ID, ad interactions | Consent for personalized ads in EEA/UK (Art. 6(1)(a)); legitimate interest for non-personalized ads |
| Comply with legal obligations | Any of the above as required | Legal obligation (Art. 6(1)(c)) |
We do not use your data for automated decisions that produce legal or similarly significant effects on you. We do not profile you to predict your behavior outside the App.
5. Third-Party Services
The App uses the following third-party services. Each operates under its own privacy policy, linked below.
5.1 Firebase (provided by Google LLC)
We use the following Firebase services:
| Service | Purpose | Data Sent |
|---|---|---|
| Firebase Authentication | Anonymous accounts and Google Sign-In | UID, optional Google account info |
| Cloud Firestore | Store your high score, leaderboard entries, game stats | UID, display name, country, scores, gameplay metrics |
| Firebase Analytics | Aggregated usage statistics | Anonymous UID, device info, gameplay events |
| Firebase Crashlytics | Crash reports for debugging | Stack traces, device state, last screen, custom keys |
| Firebase Cloud Messaging (FCM) | Future push notifications (e.g., daily challenge reminders) | Device push token |
| Firebase Remote Config | Update game parameters without app updates | None outbound; we receive config |
Google's privacy policy: https://policies.google.com/privacy Firebase data processing terms: https://firebase.google.com/terms/data-processing-terms
5.2 Google AdMob
We use Google AdMob to display banner, interstitial, and rewarded ads. AdMob may use:
- Your Google Advertising ID (AAID)
- Device information (model, OS, language, country)
- IP address (for geo-targeting and fraud prevention)
- Ad interaction data (impressions, clicks, time spent on ad)
In the EEA, UK, and Switzerland, we display a consent form on first launch using Google's User Messaging Platform (UMP). You can choose between:
- Personalized ads — AdMob and its partners may use your data to show ads relevant to your interests.
- Non-personalized ads — Ads will be based only on the current context (e.g., the App content), not your behavior.
You can change this choice anytime via Settings → Privacy → Ad consent.
AdMob's privacy policy: https://policies.google.com/technologies/ads List of certified ad partners (CMP partners): https://support.google.com/admob/answer/9012903
5.3 Google Play Services
The App requires Google Play Services to function. Google Play Services collects technical information governed by the Google Privacy Policy: https://policies.google.com/privacy
5.4 Google Sign-In
If you choose to sign in with Google, Google's authentication service is the data source. You can revoke our access at any time at: https://myaccount.google.com/permissions
6. How We Share Information
We do not sell your personal data. We do not rent mailing lists. We share data only as follows:
- With Google (Firebase, AdMob, Sign-In, Play Services) as described in Section 5, strictly to provide the services listed.
- With other players, on the leaderboard: your display name, country, and score are visible to anyone who views the leaderboard. Anonymous users appear as "Player_XXXX". You can opt out of leaderboard visibility — see Section 9.
- With law enforcement or regulators if required by valid legal process (court order, subpoena), or to protect our rights, safety, or property, or that of our users or the public.
- In a business transfer: if Ledger Logic Apps is acquired, merged, or sells assets, your data may transfer to the successor entity, subject to this policy.
We require all third-party service providers to handle your data in accordance with this policy and applicable law.
7. International Data Transfers
We are based in Egypt. The third-party services we use (Google, Firebase, AdMob) operate globally and may store and process data in the United States and other countries.
For users in the EEA, UK, or Switzerland: when data is transferred outside these regions, transfers rely on Standard Contractual Clauses (SCCs) approved by the European Commission, which Google has incorporated into its data processing terms. Where applicable, additional safeguards under the EU-US Data Privacy Framework also apply.
8. Data Retention
| Data Type | Retention Period |
|---|---|
| Anonymous UID and basic account record | Until you request deletion or 24 months of inactivity, whichever is first |
| Linked Google Sign-In profile | Until you unlink or request deletion |
| Leaderboard entries (all-time) | Until you request deletion |
| Leaderboard entries (weekly) | Rolling 8 days |
| Leaderboard entries (daily) | Rolling 48 hours |
| Analytics events | Up to 14 months (Firebase Analytics default) |
| Crash logs | Up to 90 days |
| Local game data on your device | Until you uninstall the App or clear app data in Android settings |
After the periods above, data is automatically deleted from our active systems. Backups containing residual copies are deleted within 30 additional days.
9. Your Rights and Choices
9.1 In-App Controls
The App provides direct controls under Settings → Privacy:
- Send analytics data — toggle on/off (default: on). Turning off prevents new analytics events from being sent.
- Ad consent — review or change your personalized-ads consent (EEA/UK/Switzerland users).
- Sound/Haptic — unrelated to privacy, but local-only.
9.2 Account Deletion
You can delete your account and all associated data at any time:
- In-app: Settings → Privacy → Delete my account. The App will sign you out and submit a deletion request.
- Web form: mailto:[email protected]?subject=Delete%20my%20account
- By email: send "Delete my account" to [email protected] from any address, including your UID if known.
We process deletion requests within 30 days. Some data may persist briefly in encrypted backups (deleted within an additional 30 days) or where retention is required by law.
What is deleted: your account record, all leaderboard entries, your stored high score, stats, and all linked profile information. What is not deleted: anonymized analytics aggregates that no longer identify you, and records we are required to retain for legal/tax purposes.
9.3 GDPR Rights (EEA, UK, Switzerland)
You have the right to:
- Access the personal data we hold about you.
- Rectify inaccurate data.
- Erase your data ("right to be forgotten") — see Section 9.2.
- Restrict processing in certain situations.
- Object to processing based on legitimate interest.
- Data portability — receive your data in a machine-readable format.
- Withdraw consent at any time, where processing is based on consent.
- Lodge a complaint with your local supervisory authority. List: https://edpb.europa.eu/about-edpb/about-edpb/members_en
To exercise any right, email [email protected]. We will respond within 30 days.
9.4 CCPA/CPRA Rights (California)
If you are a California resident, you have the right to:
- Know what personal information we collect, use, disclose.
- Delete your personal information (see Section 9.2).
- Correct inaccurate personal information.
- Opt out of sale or sharing of personal information. We do not sell personal information. We may "share" information with AdMob in the CPRA sense (cross-context behavioral advertising) — you can opt out via the in-app ad consent screen or by email to [email protected].
- Limit use of sensitive personal information — we do not collect sensitive personal information as defined by CPRA.
- Non-discrimination — we will not deny service or charge different prices because you exercised a right.
To exercise these rights, email [email protected]. We may verify your identity by asking for your UID.
9.5 PDPL Rights (Egypt)
Under the Egyptian Personal Data Protection Law No. 151 of 2020, you have the right to:
- Be informed of any processing of your personal data.
- Access, review, and obtain a copy of your personal data.
- Correct, modify, delete, add to, or update your personal data.
- Withdraw consent for processing.
- Object to processing or to a specific outcome of processing.
To exercise these rights, email [email protected].
9.6 Device-Level Controls
- Reset Advertising ID: Android Settings → Google → Ads → "Reset advertising ID" or "Delete advertising ID".
- Opt out of personalized ads: Android Settings → Google → Ads → "Opt out of Ads Personalization".
- Clear local game data: Android Settings → Apps → Block Puzzle → Storage → "Clear data".
- Uninstall the App: removes all on-device data.
10. Children's Privacy
The App is rated for all ages and is suitable for users 13 years and older. We do not knowingly collect personal information from children under 13.
If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us at [email protected]. We will delete the information promptly.
For users under 18 in jurisdictions where the age of digital consent is higher (e.g., 16 in some EEA countries), parental or guardian consent may be required for certain processing. In those jurisdictions, by allowing your child to use the App, you confirm that you provide such consent.
The App does not direct ads to children, does not collect data for behavioral advertising to children, and uses Google's "Designed for Families" compliant ad settings where applicable.
11. Security
We protect your data with measures appropriate to the risk:
- Encryption in transit: all communication between the App and Firebase uses HTTPS/TLS.
- Encryption at rest: Firebase services encrypt data on disk.
- Access controls: Firestore security rules restrict access so each user can only read/write their own data.
- Secret management: API keys and credentials are not embedded in the App's source code in a way that grants write access to other users' data.
- Crash logs: scrubbed of personal identifiers where feasible.
No method of transmission or storage is 100% secure. While we follow industry standards, we cannot guarantee absolute security.
If a data breach occurs that is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant authority within the timeframes required by applicable law (72 hours under GDPR).
12. Changes to This Policy
We may update this policy from time to time. When we do:
- We will update the "Last Updated" date at the top.
- For material changes, we will notify you in the App (e.g., via a dialog on next launch) at least 14 days before the changes take effect, where required by law.
- Continued use of the App after the effective date of changes means you accept the updated policy.
Past versions are available on request from [email protected].
13. Contact Us
For any privacy question, request, or complaint:
Email: [email protected] Postal mail: Ledger Logic Apps, Cairo, Egypt, Egypt Website: https://Generatorhost.com
We aim to respond within 5 business days, and to fully resolve substantive requests within 30 days.
This document is the official, authoritative version. We do not currently publish translations; if you do not understand any part of this policy, contact us at [email protected] before using the App.