Privacy Policy

The App stores the following on your device using your device's built-in storage. For guest users (no account), this data never leaves your device, is never transmitted to any server, and can be deleted by uninstalling the App or clearing app data.

• Game progress: Scores, achievements, streaks, XP, level, and game history
• Multi-profile nicknames and avatars: Local-only display labels chosen for shared-device use; no account is created
• Preferences: Settings, sound, and game configuration
• Study data: Scripture mastery levels, study list items, and missed-question history
• Temporary game state: In-progress rounds and pending challenge results

You can use the App without an account. If you choose to create one (required for cloud sync, challenges, groups, and purchases), we store:

• Email address (for email sign-up) or OAuth identifier (for Google or Apple sign-in)
• Display name and avatar selection
• Account creation date

Creating an account requires a user 13 or older, or parental involvement.

Synced Data

When you are signed in, the following syncs to our cloud database (hosted by Supabase) so you can play across devices and recover your progress on a new phone:

• Game history, scores, and personal best records
• XP, levels, achievements, daily goals, and weekly challenge progress
• Streaks
• Scripture mastery and study list
• Subscription status (free vs. paid)

Friends, Challenges, and Groups (Authenticated Users Only)

When signed in, you can play with people you choose. Using these features means:

• Challenges: Sending a challenge transmits your display name, avatar, the game and difficulty, and the round result (your score and optionally your typed scripture answers) to the recipient. Challenges expire after 24 hours pending or 48 hours completed and are then deleted.
• Groups: Creating or joining a group makes your display name and avatar visible to other group members. Group invitations include your display name.
• Friend requests: Sending or accepting a friend request makes your display name and avatar visible to the other party.
• Block and report: You can block or report any other user from inside the App. Blocking severs the connection both ways. Reports are reviewed by us.
• No free-form messaging. There is no chat, direct message, or open text field for player-to-player communication. The only data exchanged between players is the structured information above (display name, avatar, score, round answers).

Purchases

Premium content (paid games and difficulty tiers) is purchased through Apple's App Store or Google Play. We use RevenueCat to manage subscription state.

• What we receive: A purchase receipt token tied to your account so we can grant access on your devices, and your subscription tier (free, monthly, annual, or lifetime).
• What we do not receive: Your credit card number, billing address, or payment method. Apple and Google handle all payment information directly.

Push Notifications (Authenticated Users Only)

If you grant notification permission, the App registers an Expo push token (a device-specific identifier issued by Apple's APNs or Google's FCM via Expo) so we can deliver challenge invitations, group invitations, and result notifications. You can revoke notifications at any time in your device settings or through the App's notification settings.

You can delete all cloud data at any time by deleting your account from inside the App.

For Guest Users

• PostHog operates in anonymous mode only.We see aggregate event counts (e.g., "Who Said It was played 200 times today"). No persistent user IDs across sessions, no device fingerprinting, no way to reconstruct an individual user's activity.
• Sentry crash reportingcaptures crash logs with device identifiers stripped. We can see "a crash occurred on iOS 17.4" but cannot tie it to a person or device.
• No other data collection.

For Authenticated Users

Gameplay analytics (which games are played, where players succeed or get stuck) and crash reports with device context. This data is used exclusively to improve the App. It is never sold, shared with advertisers, or used for behavioral targeting.

What We Never Collect (Guest or Authenticated)

Analytics services (Sentry, PostHog) receive only anonymous, non-personal data. The other services receive data only when relevant to a feature you use (Supabase only with an account, RevenueCat only on purchase, push services only with notifications enabled).

Book of Mormon Games is designed for families. A six-year-old can use Primary mode. A seminary student can use Hard mode.

• Children can play without creating an account. No signup wall, no email gate.
• Guest play collects no personal information. No names, no emails, no birthdays, no advertising IDs.
• Account creation is optional. It is required only for cloud sync, challenges, groups, and purchases. Creating an account implies the user is 13 or older or that a parent is involved. We do not independently verify age, but our design ensures children never need to provide personal information to access free content.
• Local nicknames and avatarschosen for the multi-profile feature are stored only on the device. No account is created when a child picks "Nephi" and a sword icon.

Deleting Local Data

• iOS: Delete the app, or go to Settings → General → iPhone Storage → Book of Mormon Games → Delete App
• Android: Delete the app, or go to Settings → Apps → Book of Mormon Games → Clear Data

Deleting Account and Cloud Data

If you have an account and want to delete all cloud data: open the App, go to Settings, tap "Delete Account," and confirm. This permanently deletes your account, removes all synced progress data from our servers, severs your friend and group connections, and clears local data on that device. The action cannot be undone.

For 30 days after account deletion, you may contact support to recover the account in case of accidental deletion. After 30 days, all data is permanently purged.

Notifications

You can disable notifications at any time in your device's notification settings or through the App's notification settings.

Analytics

Analytics are anonymous for guest users and cannot be tied back to you. For signed-in users, deleting your account removes all account-linked analytics records.

This app does not track you.We do not link your data with data from other companies' apps or websites for advertising or measurement purposes. We do not share your data with data brokers.

The App:

• Does not contain advertisements
• Does not sell data to third parties
• Does not share data for marketing purposes
• Only shares data with the third-party services listed above, and only as required to deliver the feature you are using

• Local data:Stored using your device's standard secure storage mechanisms (iOS Keychain / Android Keystore-backed storage via Expo SecureStore for tokens; MMKV for game data).
• Account data:Transmitted via HTTPS. Stored in Supabase's PostgreSQL database with Row Level Security (RLS) ensuring you can only access your own data.
• Analytics data: Transmitted via HTTPS to Sentry and PostHog, who maintain industry-standard security practices.

• Local data: Retained on your device until you delete the App or clear app data.
• Account data: Retained while your account is active. Deleted on account-deletion request after a 30-day support-recovery window.
• Challenge and group invitation records: Auto-deleted on a short rolling schedule (24 hours pending, 48 hours completed) regardless of account state.
• Sentry crash data: Retained for 90 days.
• PostHog usage data:Retained per PostHog's standard retention policy.

We may update this Privacy Policy from time to time. We will post the updated policy at this URL and update the "Last Updated" date. Material changes will also be surfaced inside the App.

If you have questions about this Privacy Policy or want to exercise any of the controls above:

Email: support@scripturegamesapp.com