Privacy policy — Nightfall
Last updated: 2026-05-14 · Mobile app & optional online services
This document describes how Nightfall handles personal data. Replace legal entity name, contacts, and details with counsel-approved wording for your jurisdiction.
1. Who is responsible
Nightfall is operated by your legal entity ("we", "us"). For privacy requests, contact: congtyintech@hoanglongintech.com.
2. Scope
This policy applies when you install or use the Nightfall app, including: offline play on device, Script Studio, optional online features (accounts, rooms, credit purchases where available), and related cloud services (e.g., Supabase authentication, backend APIs, cloud TTS/AI if enabled).
3. Data we may collect
- Account & profile: email address, display name, user identifiers, sign-in timestamps, OAuth provider (if you use social login), and in-game profile fields (e.g., accepted terms version, credits if applicable).
- Gameplay & user-generated content: narration scripts, voice settings, optional cloud-synced match memory/summaries, online room metadata, and data needed to operate online modes.
- Payments: if you purchase credits or virtual goods, payment processors (e.g., app stores or payment gateways) handle payment details under their policies; we typically receive transaction references and fulfillment status.
- Technical & device: device type, OS version, app language, crash/diagnostic logs (where permitted), and minimal security/anti-abuse signals.
- Voice / audio (if enabled): online voice or cloud TTS may involve third-party processors (e.g., Agora, ElevenLabs) under their terms.
4. How we use data
- Provide, maintain, and improve the app and services.
- Authenticate accounts, secure the service, and prevent abuse/fraud.
- Customer support and lawful requests.
- Comply with legal obligations and enforce our Terms of Service / Community guidelines.
- Aggregated or de-identified analytics where permitted.
5. Legal bases (summary)
Depending on context, we may rely on: performance of a contract, legitimate interests, your consent, or legal obligation. You may withdraw consent where the law allows (some features may stop working).
6. Sharing & processors
We use trusted service providers to host and process data, for example:
- Supabase — database, authentication, file storage (if enabled).
- Cloud / API vendors — tokens, scripts, TTS, or AI features as configured.
- Agora / RTC vendors — if you enable online voice.
- App stores — distribution and in-app purchases.
These parties receive only what is needed to perform the service, under appropriate data protection terms.
7. Retention & deletion
We keep data as long as needed to provide the service, comply with law, resolve disputes, and enforce agreements. You may request account deletion in-app (where offered); some records may be retained where required by law or security for a limited period.
8. International transfers
Data may be processed in your country or on servers operated by cloud providers in other regions. Where required, we use appropriate safeguards (e.g., standard contractual clauses).
9. Security
We use reasonable technical and organizational measures (TLS, access controls, data minimization). No method of transmission or storage is 100% secure.
10. Your rights
Depending on applicable law, you may have rights to access, rectify, erase, restrict, object, or port your data. Contact congtyintech@hoanglongintech.com. You may lodge a complaint with your local supervisory authority where permitted.
11. Children
Nightfall is not directed to children below the minimum age required by local law (often 13 or 16). If you believe a child provided data, contact us to request deletion.
12. Changes
We may update this page. The "Last updated" date reflects the latest version. Material changes may also be communicated in-app or by email.
13. Contact
Email: congtyintech@hoanglongintech.com