Privacy Policy

This policy explains what data Toppli collects, why, who it's shared with, and the choices you have. Toppli is a single-player arcade game published by Cloud Design Studio LLC. We've tried to keep this short and plain — if anything is unclear, email info@cloudstudiodesign.com.

Data Controller

Under the EU General Data Protection Regulation (GDPR) and the UK GDPR, the Data Controller responsible for processing your personal data is:

Cloud Design Studio LLC
971 US Highway 202N, Branchburg, New Jersey 08876, USA
Email: info@cloudstudiodesign.com

Summary (the short version)

Almost everything stays on your device. Your high scores, game preferences, theme choice, and display name are stored locally in iOS UserDefaults. We never see them.
We don't collect personal information directly. No accounts, no sign-ups, no email harvesting.
Three things involve outside services:
- Apple — handles your App Store purchase if you buy Toppli Pro, and stores your Game Center leaderboard score if you've opted in to Game Center.
- Google AdMob — shows the occasional interstitial ad (suppressed if you purchase Toppli Pro). AdMob may use device identifiers to personalize ads, only if you allowed tracking in the iOS prompt.
- You can voluntarily share a challenge link with a friend; the link contains your score and display name, nothing else.
You can opt out of personalized ads any time in iOS Settings → Privacy & Security → Tracking → Toppli.
You can delete all data by uninstalling Toppli — there's nothing left for us to hold onto.

1. Information we collect

1a. Information stored on your device (we never see it)

Game state: high score, currently selected theme, daily-challenge best of the day
Preferences: sound on/off, haptics on/off, daily-reminder notification time, tutorial-completed flag
Display name: if you set one in Settings, it's stored locally and travels with the challenge links you share — but the name itself never leaves your device unless you initiate a share

These all live in iOS's standard UserDefaults system. Toppli does not transmit them to us or any third party.

1b. Information processed by Apple

In-App Purchase receipts for Toppli Pro: Apple handles the entire purchase. Toppli sees only "this device is entitled to Pro" — never your name, email, payment method, or Apple ID.
Game Center scores: if you've signed in to Game Center on your device and use Toppli's leaderboard, your high score is submitted to Apple's Game Center under your Game Center identity. This is governed by Apple's privacy policy.

1c. Information processed by Google AdMob (only for non-Pro users)

Toppli shows occasional full-screen interstitial ads to free-tier players. Ads are served by Google AdMob, which is a Google service. AdMob may collect:

Device identifiers (Apple's Advertising Identifier / IDFA — only if you allowed tracking)
General device info (model, OS version, language, coarse location at country/region level)
Ad interaction data (which ads you saw, which you tapped)

This is used to serve relevant ads and measure ad performance. Google's full description of AdMob data practices is available at Google's Privacy & Terms.

You can opt out of personalized ads at any time:

iOS Settings → Privacy & Security → Tracking → Toppli → toggle off
After opting out, you'll still see ads, but they will be contextual rather than personalized

1d. Information you voluntarily share

When you tap Challenge a Friend after a game, Toppli generates a URL containing:

Your final score for that run
Your display name (or "A friend" if you haven't set one)
A signature so the score can't be hand-edited

That URL is handed to iOS's standard share sheet — what happens next is up to you (you choose to send it via Messages, Mail, copy it, etc.). Toppli does not see who you share it with.

2. How we use information

The local data (Section 1a) is used solely to make the game work — restoring your settings, tracking your scores, scheduling your reminder. We don't analyze, aggregate, or transmit it.

Apple receives only what it needs to process IAP and Game Center (Section 1b) under their own policies.

Google AdMob (Section 1c) uses its data for ad selection, frequency capping, and measurement, per Google's policies.

We (Cloud Design Studio LLC) do not run analytics, do not collect crash reports through third-party services, and do not have a server collecting any data from Toppli players.

3. Who we share information with

Apple — for IAP and Game Center features
Google AdMob — for ad serving (non-Pro users only)
Nobody else. We don't sell, rent, or trade any user data — there's no data to sell.

4. Your rights and choices

4a. Opt out of personalized ads

iOS Settings → Privacy & Security → Tracking → Toppli → toggle off. EU/EEA/UK users will also see a GDPR consent dialog on first launch (powered by Google's User Messaging Platform) — declining there has the same effect.

4b. Disable ads entirely

Purchase Toppli Pro ($1.99 one-time) from the Settings screen — this removes all in-app ads.

4c. Disable notifications

iOS Settings → Notifications → Toppli → toggle off. Or use the toggle inside Toppli's own Settings → Daily Reminder.

4d. Delete all your Toppli data

Uninstall the app. All local data goes with it. Game Center scores are managed by Apple — to remove those, follow Apple's Game Center privacy instructions.

4e. Access or request a copy of your data

Almost all data is on your device — you can view it indirectly by playing the app. We don't hold any data ourselves to provide a copy of. For data Apple or Google hold about you in connection with Toppli, contact them directly through their privacy portals.

5. Children's privacy

Toppli is suitable for general audiences and is not directed specifically at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided personal information through Toppli (e.g., through Game Center or AdMob), please contact us so we can take appropriate action.

Parents who want to disable ads can purchase Toppli Pro, which removes all advertising including AdMob's data collection.

6. Data retention

Local data: kept on your device until you delete the app
Apple data: retained per Apple's privacy policy
Google AdMob data: retained per Google's privacy policy
Cloud Design Studio data: we don't keep any

7. Security

Local data is protected by iOS's standard sandboxing — only Toppli can access it on your device. Data in transit to Apple and Google services uses HTTPS / TLS, managed by their SDKs.

8. International transfers

If you live outside the United States and use Toppli, the third parties involved (Apple, Google) may transfer data internationally per their own policies. Toppli itself does not transmit data outside your device.

9. Legal basis for processing (GDPR Article 6)

Where the GDPR applies, we rely on the following lawful bases:

Consent — for personalized ads, IDFA tracking, and any optional analytics. You provide consent via the App Tracking Transparency prompt and (for EU/UK users) the in-app GDPR consent dialog on first launch. You may withdraw consent at any time without affecting prior processing.
Legitimate interests — for serving contextual (non-personalized) ads to non-Pro users, preventing fraud, ensuring app security, and improving Toppli's functionality.
Contract performance — for delivering Toppli Pro entitlements you've purchased through Apple's In-App Purchase system.
Legal obligation — to comply with laws, court orders, or government requests where applicable.

10. Your GDPR rights

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have the following rights under the GDPR:

Right of Access — request a copy of personal data we hold about you.
Right to Rectification — request correction of inaccurate data.
Right to Erasure ("right to be forgotten") — request deletion of your personal data.
Right to Restrict Processing — request that we limit how your data is used.
Right to Data Portability — request your data in a structured, machine-readable format.
Right to Object — object to processing based on legitimate interests, including direct marketing.
Right to Withdraw Consent — withdraw any consent previously given. Withdrawal does not affect processing carried out before the withdrawal.
Rights regarding automated decision-making — Toppli does not use automated decision-making or profiling that produces legal or similarly significant effects.

To exercise any of these rights, email info@cloudstudiodesign.com. We will respond within one month of receiving your request, extendable by up to two months for complex requests as permitted by GDPR Article 12(3).

You also have the right to lodge a complaint with your local Data Protection Authority. For the EU, contact details are at edpb.ec.europa.eu. For the UK, contact the Information Commissioner's Office at ico.org.uk.

11. Your California privacy rights (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) gives you the following rights:

Right to Know — request disclosure of categories and specific pieces of personal information collected.
Right to Delete — request deletion of personal information we have collected from you, subject to legal exceptions.
Right to Correct — request correction of inaccurate personal information.
Right to Opt-Out of Sale or Sharing — opt out of the sale or sharing of your personal information for cross-context behavioral advertising. We do not "sell" personal information in the traditional sense, but iOS tracking opt-out covers cross-context behavioral advertising.
Right to Limit Use of Sensitive Personal Information — limit use to essential purposes only.
Right to Non-Discrimination — we will not discriminate against you for exercising any of your CCPA/CPRA rights.

To exercise these rights, email info@cloudstudiodesign.com. You may designate an authorized agent to act on your behalf. We will verify your request using the information you provide.

12. International data transfers

Toppli itself does not transmit data outside your device. However, Apple and Google AdMob (the only third parties involved) may transfer data outside the European Economic Area to facilitate their services. Where such transfers occur, those providers rely on transfer mechanisms required by GDPR Chapter V, including:

Adequacy decisions by the European Commission
Standard Contractual Clauses (SCCs) approved by the European Commission
Other safeguards or derogations recognized under GDPR Chapter V, including consent where legally permitted

13. Data breach notification

In the unlikely event of a personal data breach affecting Toppli users that poses a risk to your rights and freedoms, Cloud Design Studio LLC will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify affected users without undue delay, in accordance with GDPR Article 34. Because Toppli does not maintain a server collecting user data, the risk surface is limited to data processed by Apple and Google through their respective SDKs — those providers have their own breach notification obligations.

14. Changes to this policy

If we update this policy, we'll update the Effective date at the top. Material changes will be noted on the toppli.app website and (where feasible) in the app's Settings screen on first launch after the change. Previous versions of this policy are maintained and available upon request by emailing info@cloudstudiodesign.com.

15. Contact

For all privacy questions, GDPR or CCPA requests, data deletion requests, and general business or legal inquiries, email:

info@cloudstudiodesign.com

Or write to:

Cloud Design Studio LLC
971 US Highway 202N
Branchburg, New Jersey 08876
USA

Toppli is © Cloud Design Studio LLC. The app is published independently and is not affiliated with Apple Inc. or Google LLC. Apple, App Store, Game Center, and iOS are trademarks of Apple Inc. Google and AdMob are trademarks of Google LLC.