Privacy Policy

Last updated: 12 May 2026

The short version. PerfectPlay does not collect, transmit, or share any personal information with us. All app data lives in a local database on your device. There is no PerfectPlay account, no PerfectPlay server, no advertising, and no analytics. Optional end-to-end encrypted cloud sync lets your training history travel between your own devices via iCloud or Google Drive — encrypted on-device with a password only you know. Even when sync is enabled, we cannot see your data and the cloud provider cannot either.

1. Who we are

PerfectPlay is published by Certificate Services ("we", "us"). You can reach us at support@perfect-play.app.

2. What data we collect

None. The app does not collect personal information from you. Specifically, we do not collect:

Your name, email address, phone number, or any other identifier
Device identifiers (advertising IDs, IDFA, IDFV, Android Advertising ID)
Location data
Contacts, photos, microphone, camera, or other sensitive permissions
Usage analytics, crash reports, or telemetry
Any data sent to a server we operate or any third party

We do not operate any backend service that receives data from the app. The only network traffic the app initiates is the optional cloud-sync flow described in section 4, and that traffic goes directly between your device and Apple's iCloud or Google's Drive — never to a server we operate.

3. What is stored on your device

The app stores the following locally, in a SQLite database within the app's private storage area:

Your training stats per game and drill: accuracy %, decisions played, current and best streak, daily activity, 30-day accuracy drift
App preferences: selected drill speeds, paytable configurations, sound and haptic settings, lesson-completion flags
Per-hand decision history (for review screens and the Record drill-down)

This data never leaves your device unless you turn on cloud sync. It is not encrypted at rest beyond the operating system's standard app-data protections (which are device-level: full-disk encryption on iOS / iPadOS / Android, FileVault on macOS, BitLocker where enabled on Windows).

4. Optional cloud sync

Sync is off by default. When enabled in Settings, your training history can be mirrored across your own devices via your iCloud account (on iOS, iPadOS, macOS) or your Google Drive account (on Android). This is the only feature of the app that uses the network.

We use an end-to-end encrypted, zero-knowledge design:

You pick a password. The password is stored in your device's secure keystore — Keychain on iOS / iPadOS / macOS, Android Keystore on Android — and never transmitted.
A key is derived from the password using PBKDF2-SHA256 with 100,000 iterations and a unique salt per upload.
Your data is serialised and encrypted with AES-256-GCM on your device before it leaves.
The encrypted blob is uploaded to your iCloud private database (Apple) or Drive app-data folder (Android). These are storage areas only your Apple ID or Google account can access — we cannot, even if we wanted to.
The cloud provider sees opaque bytes. The decryption key never leaves your devices.
There is no PerfectPlay-operated server in the loop. Traffic is between your device and Apple / Google directly.

Consequences of this design: forgetting your password means the encrypted cloud copy cannot be recovered (we hold no recovery key). Local data on each device is unaffected and continues to work normally. Disabling sync removes the password from your device's keystore but leaves any existing cloud copy in place so your other signed-in devices remain consistent.

5. Third parties

We do not embed third-party SDKs for analytics, advertising, attribution, A/B testing, crash reporting, or any similar purpose. The app uses platform-provided frameworks only (Apple, Google, Microsoft). When cloud sync is enabled, you are using Apple's iCloud or Google's Drive service directly — their respective privacy policies apply to the encrypted-bytes-at-rest portion. We don't pay them, configure them on your behalf, or receive any data from them.

6. Children's privacy

PerfectPlay is rated 17+ on the App Store and Teen on Google Play due to simulated gambling themes. We do not knowingly collect data from children, and there is no mechanism in the app that would do so even if a child used it.

7. Your rights

Because we do not collect, store, or transmit any personal information about you, the rights typically afforded by privacy laws (access, correction, deletion, portability) do not apply to data held by us — we hold none. To delete the local data on your device, uninstall the app. To delete the encrypted cloud copy (if you enabled sync), sign in to iCloud.com or drive.google.com on a computer; the encrypted file appears in Manage Storage → PerfectPlay (iCloud) or in the app-data area visible to Google's "Manage apps" UI (Drive).

8. Changes to this policy

We may update this policy if we ever add features that change what is stored or transmitted. If that happens, the "last updated" date at the top of this page will change, and material changes will be highlighted in the app's release notes.

9. Contact

Questions about privacy: support@perfect-play.app.

← Back to home