Back to Home

Privacy Policy

Last updated: January 14, 2025

1. Introduction

BOTS AND BOLTS LLC ("Joof," "we," "our," or "us"), a Delaware limited liability company, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application ("the App").

By using the App, you consent to the data practices described in this Privacy Policy. If you do not agree with our policies and practices, please do not use the App.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Apple Sign-In data: Your name (if provided), email address, and Apple user identifier
  • Profile information: Username, display name, and avatar image (if you choose to provide them)
  • Account metadata: Account creation date, last login, account status

2.2 Game Creation Data

When you create games, we collect:

  • Prompts: The full text of your game descriptions and iteration requests
  • Game files: The complete source code (HTML, JavaScript, CSS) generated for your games
  • Asset selections: Which asset packs and fonts you selected for each game
  • Game metadata: Titles, descriptions, thumbnails, publication status, version history
  • Generation metadata: AI token usage, credit costs, timestamps, session duration

2.3 Financial Data

We collect and store:

  • Credit balance: Your current credit balance and transaction history
  • Transaction records: Credit purchases, consumption, and earnings with timestamps and amounts
  • Purchase metadata: App Store transaction identifiers (we do NOT store payment card information)

2.4 Usage and Analytics Data

We automatically collect:

  • Gameplay data: Which games you play, play duration, completion status
  • Interaction data: Games you like, share, or report
  • Session data: Connection times, reconnection events, generation session status
  • Device identifiers: Anonymous device IDs for tracking plays when not logged in
  • App performance: Crash reports, error logs, performance metrics

2.5 Moderation Data

We collect information related to content moderation:

  • Reports you submit: When you flag games as inappropriate
  • Reports against you: When others report your content
  • Review decisions: Approval, rejection, or other moderation actions
  • Age ratings: Applied to your published games

3. How We Use Your Information

We use your information for the following purposes:

3.1 Service Provision

  • To create and manage your account
  • To process your game creation requests using AI
  • To store, display, and distribute your games
  • To manage your credit balance and process transactions
  • To enable you to play games created by others

3.2 Community Features

  • To display your published games to other users
  • To show your profile information alongside your games
  • To enable likes, play counts, and social features
  • To facilitate the discovery of games

3.3 Safety and Security

  • To moderate content and enforce our content guidelines
  • To investigate reports and take appropriate action
  • To detect and prevent fraud, abuse, or illegal activity
  • To protect users and maintain platform integrity

3.4 Service Improvement

  • To analyze usage patterns and improve the App
  • To optimize AI generation quality (using anonymized data)
  • To fix bugs and improve performance
  • To develop new features

3.5 Communications

  • To send service-related notifications
  • To notify you about changes to your games or account
  • To respond to your support requests

3.6 Legal Compliance

  • To comply with applicable laws and regulations
  • To respond to legal requests and prevent harm
  • To enforce our Terms of Service

4. AI Processing and Third-Party Services

4.1 AI Game Generation

When you create games, your prompts are processed by third-party AI services:

  • Anthropic (Claude): Your game descriptions and iteration requests are sent to Anthropic's Claude AI to generate game code
  • What is sent: Your prompt text, selected asset/font context, and conversation history during the session
  • What is NOT sent: Your name, email, user ID, or other personally identifying information

4.2 Content Moderation

Game content may be processed for safety screening:

  • OpenAI Moderation API: Game titles, descriptions, and content may be checked for policy violations
  • Purpose: To detect and prevent harmful, explicit, or policy-violating content

4.3 AI Training Policy

Important: Your specific prompts, game content, and personal information are NOT used to train AI models. We may use:

  • Aggregate, anonymized statistics to improve our service
  • General patterns (not individual content) to optimize game generation
  • Error patterns to improve code quality

You may opt out of anonymized analytics by contacting us at info@botsandbolts.co.

4.4 Other Third-Party Services

  • Supabase: Database hosting and authentication services
  • Apple: Sign-in authentication and in-app purchase processing
  • RevenueCat: Subscription and purchase management
  • Modal: Backend infrastructure for AI processing

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

5.1 With Other Users

When you publish games, the following becomes visible to other users:

  • Your game content, title, and description
  • Your username and avatar (if set)
  • Play and like counts for your games

5.2 With Service Providers

We share data with third parties who help us operate the App:

  • AI providers (for game generation)
  • Cloud infrastructure providers (for hosting)
  • Analytics providers (for service improvement)
  • Payment processors (for credit purchases)

These providers are bound by contractual obligations to protect your data and use it only for the purposes we specify.

5.3 For Legal Reasons

We may disclose your information:

  • To comply with applicable laws, regulations, or legal processes
  • To respond to lawful requests from public authorities
  • To protect our rights, privacy, safety, or property
  • To protect users or the public from harm
  • To investigate potential violations of our Terms

5.4 Business Transfers

If Joof is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any change in ownership or use of your personal information.

6. Data Retention

We retain your information for different periods depending on the type:

Data TypeRetention Period
Account informationUntil account deletion
Saved gamesUntil you delete them
Incomplete generation sessions24 hours
AI conversation historyDuration of session only (not stored)
Credit transaction history7 years (legal/financial records)
Play/like historyUntil account deletion
Moderation reports2 years after resolution
Anonymous usage analyticsAggregated after 90 days

6.1 Automatic Deletion

  • Incomplete generation sessions are automatically deleted after 24 hours
  • Anonymous play data is aggregated and anonymized after 90 days
  • Deleted games are permanently removed within 30 days

6.2 Account Deletion

When you delete your account:

  • Profile and account settings are deleted immediately
  • Your games are either deleted or anonymized (your choice)
  • Transaction history is retained for legal compliance but anonymized
  • Play and like data is anonymized
  • Moderation records may be retained for safety purposes

7. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • Encryption: Data is encrypted in transit (HTTPS/WSS) and at rest
  • Access controls: Strict access controls limit who can access your data
  • Authentication: Secure authentication through Apple Sign-In
  • Row-level security: Database policies ensure users can only access their own data
  • Regular audits: We regularly review and update our security practices

However, no method of electronic transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. You are responsible for maintaining the security of your account credentials.

8. Your Rights and Choices

8.1 All Users

All users have the following rights:

  • Access: View your account information and data through the App
  • Update: Edit your profile information at any time
  • Delete: Delete your games or your entire account
  • Unpublish: Remove published games from public view
  • Opt-out: Request removal from promotional features

8.2 European Users (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under GDPR:

  • Right to access: Request a copy of your personal data
  • Right to rectification: Request correction of inaccurate data
  • Right to erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to restrict processing: Request limitation on how we use your data
  • Right to data portability: Receive your data in a portable format
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw consent at any time where processing is based on consent

To exercise these rights, contact us at info@botsandbolts.co. We will respond within 30 days.

Legal basis for processing: We process your data based on: (a) contract performance (to provide our services), (b) legitimate interests (to improve our services and ensure safety), and (c) consent (for optional features).

8.3 California Users (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to know: Know what personal information we collect, use, and disclose
  • Right to delete: Request deletion of your personal information
  • Right to correct: Request correction of inaccurate personal information
  • Right to opt-out: Opt out of the sale or sharing of personal information
  • Right to non-discrimination: Not be discriminated against for exercising these rights

We do not sell personal information. We do not share personal information for cross-context behavioral advertising.

To exercise these rights, contact us at info@botsandbolts.co or through the App.

8.4 Other Jurisdictions

Users in other jurisdictions may have additional rights under local law. Contact us to learn about your specific rights.

9. Children's Privacy

9.1 Age Requirements

The App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are under 13, you may not use the App or create an account.

9.2 Parental Rights

If you are a parent or guardian and believe your child under 13 has provided personal information to us:

  • Contact us immediately at info@botsandbolts.co
  • We will promptly delete all information associated with the child's account
  • You may request information about any data collected

9.3 Teen Users (13-17)

Users between 13 and 18 may use the App with parental consent. Parents and guardians:

  • Should supervise their teen's use of the App
  • May request restriction or deletion of their teen's account
  • Are responsible for ensuring their teen follows our Terms

Published games by users under 18 may undergo additional review.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States. These countries may have different data protection laws than your jurisdiction.

When we transfer data internationally, we implement appropriate safeguards:

  • Standard contractual clauses approved by relevant authorities
  • Data processing agreements with our service providers
  • Technical and organizational security measures

By using the App, you consent to the transfer of your information to the United States and other countries where we and our service providers operate.

11. Cookies and Tracking

The App is a mobile application and does not use browser cookies. However, we may use:

  • Device identifiers: Anonymous identifiers to track app usage and analytics
  • Local storage: To save your preferences and session data on your device
  • Authentication tokens: To keep you logged in securely

Our website (joof.app) may use cookies for analytics and functionality. See our website for specific cookie policies.

12. Third-Party Links

The App may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access.

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes:

  • We will update the "Last updated" date at the top of this page
  • For material changes, we will notify you through the App or via email
  • Your continued use of the App after changes constitutes acceptance of the updated policy

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

  • Email: info@botsandbolts.co
  • General inquiries: Through the App's feedback feature

We will respond to your inquiry within 30 days. For GDPR-related requests, we may ask you to verify your identity before processing your request.

15. Data Protection Officer

For privacy-related matters, you may contact our data protection team at:

  • Email: info@botsandbolts.co

If you are located in the EEA and believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection authority.