PRIVACY POLICY
1775 Gaming LLC — OMNIVERSE: Ascension
Effective Date: June 4, 2026
Version 2.0
This Privacy Policy ("Policy") describes how 1775 Gaming LLC ("Company", "we", "us", "our"), a Missouri limited liability company, collects, uses, stores, protects, and discloses information obtained from users ("you", "User") of the OMNIVERSE: Ascension mobile application and the https://1775gaming.com website (collectively, the "Services"). This Policy is incorporated by reference into our Terms of Service.
We are the data controller responsible for your personal data processed under this Policy. This Policy applies to all users, including residents of California (CCPA/CPRA), the European Economic Area (GDPR), and all other jurisdictions. We process personal data only for legitimate purposes explicitly described herein.
PLEASE READ THIS POLICY CAREFULLY. BY USING THE SERVICES, YOU CONSENT TO THE DATA PRACTICES DESCRIBED. IF YOU DO NOT AGREE, DO NOT USE THE SERVICES.
SECTION 1: DATA WE COLLECT AND WHY
1.1 Summary Data Table
The following table summarizes all categories of data the Services access, the basis for access, how it is used, and how long it is retained. Detailed explanations follow in subsequent sections.
Health & Fitness Data (Step counts, distance, exercise sessions, heart rate)
Collection Basis: Read-only via Android Health Connect
Purpose: Processed locally on device to calculate in-game rewards. Never uploaded to servers.
Retention: Never stored remotely. Reward metadata only (no raw health values) retained.
Foreground GPS/Location
Collection Basis: Read-only while app is open
Purpose: On-device proximity detection to activate geofenced missions and AR features.
Retention: Not stored remotely. Processed in real time.
Background GPS/Location (with explicit consent only)
Collection Basis: Read-only when app runs in background
Purpose: On-device proximity detection for passive reward generation and mission alerts.
Retention: Not stored remotely. No server upload.
Account Information (Name, email, password hash)
Collection Basis: Provided by user at registration
Purpose: Account creation, authentication, support communications.
Retention: Retained until account deletion.
Device Identifiers (Device ID, OS type/version, app version)
Collection Basis: Automatically collected
Purpose: Crash reporting, compatibility, fraud prevention.
Retention: Retained 24 months.
Gameplay Data (Mission completions, XP, inventory, session timestamps)
Collection Basis: Generated by gameplay
Purpose: Game progression, leaderboards, reward calculation.
Retention: Retained for account lifetime.
Transaction Data (Purchase amount, item, date) — no full card numbers
Collection Basis: Payment processor (Stripe)
Purpose: Subscription billing, Notheby's Auction House transactions.
Retention: Retained 7 years for legal/tax compliance.
Communications (Support emails, in-app messages)
Collection Basis: Provided by user
Purpose: Customer support, dispute resolution.
Retention: Retained 3 years after last contact.
Beta Signup Email
Collection Basis: Provided voluntarily
Purpose: Product announcements, early access invitations.
Retention: Until unsubscribe or deletion request.
SECTION 2: HEALTH AND FITNESS DATA — DETAILED DISCLOSURE
2.1 What We Access
The Services integrate with Android Health Connect and may in future integrate with Apple HealthKit. The health data types we may request READ access to include: step counts, daily active minutes, distance walked or run, exercise session type and duration, and heart rate readings.
WE DO NOT ACCESS: Medical records, clinical diagnoses, prescription medications, lab results, mental health records, reproductive health data, genomic data, or any Health Records-category data as defined by Google Play policy.
2.2 Read-Only Declaration — No Upload — No Server Storage
ABSOLUTE DECLARATION: All health and fitness data accessed by the Services is subject to the following unconditional restrictions:
READ-ONLY ACCESS: We request only read permissions. We do not write to, modify, or delete any data in Health Connect or any connected health platform.
ON-DEVICE PROCESSING ONLY: Health data is read by the application running on your device. It is used on-device to calculate an in-game reward value. The raw health data is immediately discarded after reward calculation and is never transmitted to any server, cloud service, database, or third party operated by or on behalf of 1775 Gaming LLC.
NO REMOTE STORAGE: No raw health data is stored on our servers. The only server-side record created is the outcome (e.g., "Reward: 50 XP earned on [date]"). The specific health metric that triggered the reward (e.g., "User walked 5,000 steps") is never logged server-side.
NO THIRD-PARTY SHARING: Health data is never shared with advertisers, analytics platforms, data brokers, or any third party for any purpose. It is not used to target advertisements or build personal profiles.
NO HEALTH PROFILING: We do not use health data to infer medical conditions, disabilities, fitness levels, or any other health-related characteristics. The sole use is reward calculation.
2.3 Google Play Health Connect Policy Compliance
Our use of Health Connect complies with Google Play's Health and Fitness Data Policy including January 2026 enforcement requirements. We have completed the required Health Apps Declaration in Play Console. Our approved use case is fitness and wellness app functionality — specifically, integrating physical activity data to generate in-game incentives that reward real-world activity. We do not access Health Records data.
The Privacy Policy URL used in Play Console, within the app, and on our website is identical, in compliance with Google Play's Privacy Link Consistency requirement.
2.4 Revoking Health Data Access
You may revoke Health Connect permissions at any time: Android: Settings > Apps > Health Connect > App Permissions > OMNIVERSE: Ascension. Revocation disables health-reward features only. It does not affect your account, character progression, or location-based gameplay.
SECTION 3: LOCATION DATA — DETAILED DISCLOSURE
3.1 Foreground Location
When the app is open and in active use, we access your device's GPS/network location to:
Display your in-game map position.
Detect proximity to geofenced mission zones (using haversine-based calculation on-device).
Enable AR combat overlays anchored to real-world coordinates.
Foreground location is processed in real time on your device. No raw GPS coordinates are transmitted to or stored on our servers.
3.2 Background Location
With your explicit, separate, affirmative, and informed consent — obtained through a dedicated consent prompt explaining this specific use — we may access your location while the app is running in the background. This is used solely to:
Generate passive in-game rewards when you travel near mission zones.
Deliver mission alert notifications when you enter a geofenced area without the app foregrounded.
BACKGROUND LOCATION DECLARATION: Background location data is read-only, processed entirely on your device, and is NEVER transmitted to, collected by, or stored on any server operated by or on behalf of 1775 Gaming LLC. The Company has no access to your location history.
3.3 Location Data — What We Do NOT Do
We do not sell location data in any form.
We do not share location data with advertisers.
We do not use location data to build advertising profiles.
We do not log GPS coordinates server-side.
We do not share location data with any third party except to the limited extent required to deliver the Services as described.
SECTION 4: INFORMATION WE COLLECT VIA THE WEBSITE
4.1 Beta Signup and Contact Forms
When you submit your email address for beta access or use our contact form, we collect your email address and any information you voluntarily provide. This data is stored securely in our Supabase-hosted database and is used only to:
Send product announcements and early access invitations.
Respond to your inquiries.
We do not sell email addresses. You may unsubscribe at any time using the unsubscribe link in any email we send or by emailing privacy@1775gaming.com.
4.2 Website Analytics
Our website uses Google Analytics 4 (GA4) to collect aggregated, anonymized data about website traffic including page views, session duration, geographic region, and device type. We configure GA4 with IP anonymization enabled. This data does not identify you personally and is used only to understand and improve website performance.
We do not use GA4 in a manner that would constitute disclosure of Protected Health Information (PHI) under HIPAA, as we are not a healthcare entity and our website does not process health data.
4.3 Cookies and Tracking Technologies
The website uses cookies and similar technologies for:
Session management and authentication (strictly necessary).
Analytics (as described above).
You may configure your browser to refuse cookies. Some features may not function properly without cookies. We do not use cookies to track you across third-party websites.
SECTION 5: HOW WE USE YOUR DATA
We use personal data only for the following purposes:
Providing, operating, and improving the Services.
Managing your account and authenticating your identity.
Processing payments via Stripe for subscriptions and Notheby's Auction House transactions.
Communicating with you about your account, transactions, updates, and support requests.
Enforcing our Terms of Service and preventing fraud.
Complying with legal obligations.
Analyzing aggregate usage patterns to improve the Services.
We do not use your data for targeted advertising, behavioral profiling for advertising, or to train third-party AI models.
SECTION 6: HOW WE SHARE YOUR DATA
6.1 No Sale of Personal Data
We do not sell, rent, or trade your personal data to any third party for any consideration. This applies to all categories of personal data including location, health, account information, and usage data.
6.2 Service Providers
We share limited data with trusted third-party service providers who process data on our behalf and are contractually bound to protect it:
Supabase (supabase.com): Database hosting, authentication, backend API. Hosted in the United States. Processes account and gameplay data.
Stripe (stripe.com): Payment processing for subscriptions and Notheby's Auction House. Stripe is the processor for payment card data. We do not store full card numbers.
Vercel (vercel.com): Website hosting for https://1775gaming.com. Processes standard web traffic logs.
Google Analytics 4: Aggregated website analytics. IP anonymization enabled. See Section 4.2.
Expo / React Native: Mobile application framework. Does not independently collect personal data.
OpenStreetMap / Leaflet: Map rendering. Used for in-game map display. No personal data transmitted to OpenStreetMap.
We do not share your data with any service provider not listed above without first updating this Policy.
6.3 Legal Disclosures
We may disclose your personal data to government authorities, law enforcement, or regulators if required to do so by applicable law, court order, subpoena, or government demand. We will provide notice to you of such disclosure where legally permissible.
6.4 Business Transfers
In the event of a merger, acquisition, reorganization, or sale of substantially all assets of 1775 Gaming LLC, your personal data may be transferred to the acquiring entity, subject to this Policy continuing to apply or you receiving notice and the opportunity to delete your account.
SECTION 7: DATA SECURITY
We implement industry-standard technical and organizational security measures to protect your personal data against unauthorized access, loss, destruction, or alteration. These measures include:
Encryption of data in transit (TLS/HTTPS) and at rest.
Access controls and authentication for all backend systems.
Supabase Row-Level Security (RLS) policies to restrict data access by user.
Regular security assessments of third-party integrations.
Principle of least privilege for all staff and system access.
No security system is impenetrable. In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and applicable regulators as required by law.
SECTION 8: DATA RETENTION
We retain personal data only as long as necessary for the purposes for which it was collected or as required by applicable law:
Account and gameplay data: Retained for the lifetime of your account plus 90 days post-deletion.
Transaction records: Retained for 7 years for legal and tax compliance.
Support communications: Retained for 3 years after last contact.
Analytics data: Retained in aggregated form for 26 months per GA4 defaults.
Health data: No raw health data is retained remotely. See Section 2.
Location data: No raw location data is retained remotely. See Section 3.
SECTION 9: YOUR RIGHTS AND CHOICES
9.1 Rights Available to All Users
Access: Request a copy of the personal data we hold about you.
Correction: Request correction of inaccurate or incomplete data.
Deletion: Request deletion of your personal data. We will honor deletion requests subject to legal retention obligations.
Restriction: Request that we restrict processing of your data in certain circumstances.
Portability: Request your data in a structured, machine-readable format.
Objection: Object to certain processing activities.
9.2 California Residents — CCPA/CPRA Rights
California residents have additional rights under the California Consumer Privacy Act (as amended by the California Privacy Rights Act):
Right to Know: Know what personal information we collect, use, disclose, and share.
Right to Delete: Request deletion of personal information (subject to exceptions).
Right to Opt-Out of Sale: We do not sell personal information. This right is inherently satisfied.
Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
Right to Correct: Request correction of inaccurate personal information.
Right to Limit Use of Sensitive Personal Information: You may limit our use of sensitive personal information (such as health data) to the purposes necessary to perform the Services.
To exercise California rights, contact us at privacy@1775gaming.com with the subject line "California Privacy Rights Request." We will respond within 45 days (extendable by an additional 45 days with notice).
9.3 EEA/UK Residents — GDPR Rights
If you are located in the European Economic Area or the United Kingdom, you have rights under the General Data Protection Regulation (GDPR) including rights of access, rectification, erasure, restriction of processing, data portability, objection, and the right to lodge a complaint with your local supervisory authority. Our legal bases for processing personal data are:
Performance of Contract: Processing necessary to provide the Services you have requested.
Consent: For health data access and background location access, where we rely on your explicit consent which you may withdraw at any time.
Legitimate Interests: For fraud prevention, security, and product improvement.
Legal Obligation: For tax records and legal compliance.
To exercise GDPR rights, contact us at privacy@1775gaming.com.
9.4 How to Submit a Request
Email: privacy@1775gaming.com
Subject Line: "[Privacy Request] — [Your Request Type]"
We will verify your identity before processing any data rights request. We will respond within the timeframe required by applicable law.
SECTION 10: CHILDREN'S PRIVACY
The Services are not directed to children under the age of 13. We do not knowingly collect personal data from children under 13 without verified parental consent, as required under the Children's Online Privacy Protection Act (COPPA) as amended effective June 23, 2025.
If we discover that we have collected personal data from a child under 13 without verified parental consent, we will promptly delete such data. Parents and legal guardians of children between 13 and 17 must provide consent for use of the Services and may contact us at privacy@1775gaming.com to review, correct, or request deletion of their child's data.
Users under 18 are prohibited from accessing real-money trading features.
SECTION 11: INTERNATIONAL DATA TRANSFERS
1775 Gaming LLC is based in the United States. If you access the Services from outside the United States, your data may be transferred to and processed in the United States, where data protection laws may differ from those in your home jurisdiction.
For EEA/UK users, we rely on Standard Contractual Clauses (SCCs) or equivalent mechanisms approved by applicable regulators to lawfully transfer personal data outside the EEA/UK.
SECTION 12: THIRD-PARTY LINKS AND SERVICES
The Services may contain links to third-party websites, platforms, or services not operated by us. This Policy does not apply to third-party services. We encourage you to review the privacy policies of any third-party service you access through the Services. We are not responsible for the privacy practices of third parties.
SECTION 13: CHANGES TO THIS POLICY
We may update this Policy at any time. When we make material changes, we will notify you via in-app notification, email to your registered address, and/or a conspicuous notice on https://1775gaming.com at least fourteen (14) days before the change takes effect. The "Effective Date" at the top of this Policy indicates when it was last revised. Your continued use of the Services after any change constitutes your acceptance of the revised Policy.
We maintain an archive of prior versions of this Policy available upon request.
SECTION 14: CONTACT US
Privacy & Data Rights: privacy@1775gaming.com
Legal Inquiries: legal@1775gaming.com
General Support: support@1775gaming.com
Mailing Address: 1775 Gaming LLC, Weatherby Lake, Missouri, United States
Website: https://1775gaming.com
© 2026 1775 Gaming LLC. All Rights Reserved.
OMNIVERSE: Ascension is a trademark of 1775 Gaming LLC.