Privacy Policy

This Privacy Policy describes how GMSoft di Gatti Matteo ("Company", "We", "Us", "Our") collects, uses, stores, and discloses information when you use the mobile application Pizzaiolo Rush ("Application" or "Service").

This document is intended to address applicable privacy requirements including the GDPR, CCPA/CPRA, CalOPPA, and COPPA.

1. Definitions

Application: The mobile software Pizzaiolo Rush provided by the Company.

Company: GMSoft di Gatti Matteo, Cda Ponte Tavole 3/C, Italy

Personal Data: Any information relating to an identified or identifiable individual.

Service: The Application and related services.

Usage Data: Data collected automatically through use of the Service.

User / You: Any individual using the Application.

Service Provider: A third party processing data on behalf of the Company.

2. Categories of Information Collected

Personal Data provided by users

Users may voluntarily provide email addresses, names, account credentials, and profile information when creating accounts or interacting with Service features.

Automatically collected information (Usage Data)

The following may be collected automatically: IP address, device identifier, device type and operating system, application usage statistics, session duration and interaction data, and diagnostic or crash data for operational, analytical, security, and reliability purposes.

Mobile device information

The Application may collect mobile device model, unique device identifiers, mobile operating system version, and network connectivity information.

3. Legal Bases for Processing (GDPR)

For EEA users, Personal Data processing occurs under these lawful bases:

Contractual necessity: Account management, gameplay functionality, and leaderboards.

Legitimate interests: Service analytics, security monitoring, fraud prevention, and service improvement.

Consent: Optional analytics tools or marketing communications rely on user consent, which may be withdrawn anytime.

Legal obligations: Processing occurs where required by applicable laws.

4. Use of Personal Data

Personal Data may be used to provide and maintain the Service, manage user accounts, deliver gameplay functionality and leaderboards, monitor performance and reliability, analyze usage patterns, communicate with users regarding updates or security issues, prevent fraud or abuse, and comply with legal obligations.

5. Sharing and Disclosure of Data

Service Providers

Information may be shared with third-party providers assisting with application hosting, analytics, infrastructure services, authentication systems, and error monitoring. These providers are contractually required to process data only on behalf of the Company and in accordance with applicable law.

Business transfers

Personal Data may be transferred if the Company undergoes merger, acquisition, financing, reorganization, or asset sale.

Legal compliance

Personal Data may be disclosed where required by law, court order, or valid legal request.

6. International Data Transfers (GDPR)

Personal Data may be transferred to countries outside the user's country of residence. Where transfers occur outside the EEA, the Company implements appropriate safeguards such as Standard Contractual Clauses or other legally recognized mechanisms.

7. Data Retention

Personal Data is retained only as long as necessary for purposes described in this Policy and to satisfy legal, accounting, security, and operational requirements.

Account data may be retained while accounts remain active. Usage data may be retained for analytics, fraud prevention, and service security. When no longer required, data is securely deleted, anonymized, or aggregated.

8. Security of Personal Data

Reasonable technical and organizational measures are implemented to protect Personal Data, including access controls, secure infrastructure practices, and encryption where appropriate. However, no transmission method over the Internet or electronic storage method is completely secure, and absolute security cannot be guaranteed.

9. GDPR Data Subject Rights (EU / EEA Users)

EEA users may have the following rights: right of access, right to rectification, right to erasure, right to restrict processing, right to data portability, right to object to processing, and right to withdraw consent. Users may also lodge complaints with their local supervisory authority.

10. California Privacy Rights (CCPA / CPRA)

California residents may have rights to know what personal information categories are collected, purposes for use, categories of third parties receiving disclosures, request deletion, request correction, opt out of sale or sharing, limit use of sensitive information, and not be discriminated against for exercising privacy rights.

The Company does not sell personal information and does not share personal information for cross-context behavioral advertising unless expressly stated.

Categories of Personal Information Collected

In the preceding 12 months, the following categories may have been collected: identifiers (name, email, IP address, device identifiers), internet or electronic network activity information (usage and interaction data), and sensitive personal information only where strictly necessary.

11. Do Not Track Signals (CalOPPA)

Some web browsers include a "Do Not Track" feature. Because there is currently no consistent industry or legal standard for recognizing DNT signals, the Service does not currently respond to such signals.

12. Children's Privacy (COPPA)

The Service may be used by children under 13. Where the Service collects personal information from children under 13, the Company complies with COPPA requirements, including providing direct notice to parents, obtaining verifiable parental consent before collecting personal information, and allowing parents to review, request deletion of, and refuse further collection of their child's information.

If you believe your child provided personal information without required consent, contact the Company. Upon verification, appropriate steps will be taken, potentially including account suspension and deletion of the child's personal information as required by law.

13. Links to Third-Party Services

The Application may contain links to third-party websites or services. The Company is not responsible for third-party privacy practices. Users should review privacy policies of any third-party services accessed.

14. Changes to This Privacy Policy

The Privacy Policy may be updated periodically. When revised, the "Last updated" date at the top will be updated and additional notice may be provided where required by law.

15. Contact Information

For questions about this Privacy Policy or to exercise privacy rights, contact:

GMSoft di Gatti Matteo
Cda Ponte Tavole 3/C
Italy
Email: support@gmsoft.it