Last updated: 2 July 2026
Tactico (“we”, “the app”) is a two-player strategy board game. This policy explains what data we handle, why, and your choices. We keep collection to the minimum needed to run the game and its rankings. We do not show ads, use third-party analytics SDKs, or sell your data.
| Data | Why |
|---|---|
A pseudonymous user ID (a random UUID, e.g.
web:… / gplay:…), plus a coarse user type and
platform. |
To run a game session and attribute your results/ranking to “you” without knowing who you are. |
| Game records: piece setups, moves, and results, and derived win/draw/loss and ELO rating, linked to your user ID. | To provide gameplay, rankings, and to improve the AI. |
| IP address (in server request logs) and, if you send feedback, the comment text with your IP and an approximate location (city/country) derived from that IP. | Security/abuse prevention, short-term diagnostics, and to understand and respond to feedback. |
Google account identifier (the opaque sub)
— only if you choose Google sign-in. |
To let you keep the same identity across devices. |
We do not collect your name, contacts, precise GPS location, or payment details. “Vs. Friend” games played over Bluetooth/Wi-Fi are peer-to-peer and are not sent to our servers.
We process game records and rankings to provide the service (performance of a contract / legitimate interest in offering multiplayer and ELO). Security logs rest on our legitimate interest in keeping the service safe. Google sign-in data is processed on the basis of your request to sign in.
We host the backend on Google Cloud (Cloud Run, Firestore, Cloud Storage, BigQuery), which processes data on our behalf under Google’s data-processing terms. We do not otherwise share personal data, except where required by law.
Data may be processed on Google Cloud servers outside your country, protected by Google Cloud’s data-processing terms and standard contractual clauses.
IP-bearing server logs are kept only briefly. Game records/replays and feedback are retained no longer than needed for rankings and product improvement and are subject to storage lifecycle limits. You can request deletion at any time (see below).
Depending on your region (e.g. GDPR/UK GDPR, California CPRA) you may request access, a copy, correction, or deletion of your data, and may object to certain processing. Because your data is keyed to a pseudonymous ID, please include that ID (or your Google sign-in) in your request. Contact us at levin.royl@gmail.com. Deletion removes your records from our analytics store and replay files.
Tactico is not directed to children and we do not knowingly collect data from children. There is no behavioral advertising.
Data is encrypted in transit (TLS); access to our stores is restricted by IAM; session tokens are signed. No system is perfectly secure, but we take reasonable measures to protect your data.
We may update this policy; we will revise the “last updated” date above and, for material changes, provide an in-app notice.
Questions or requests: levin.royl@gmail.com.