Privacy Policy
Crown & Crest (the "App") is published by the Crown & Crest team ("we", "us"). We have engineered this App as an offline-first educational encyclopaedia. Privacy is not an afterthought — it is the default. This document explains, in plain English, what little data the App handles and why.
1. Data we do not collect
- No account or sign-in. We never ask for an email, name, phone number, address, date of birth, or gender.
- No contacts, calendar, camera, microphone, photo library, location, health, or motion data.
- No IDFA, no ATT prompt, no advertising identifier. We do not display ads and do not participate in any ad network.
- No analytics SDK tracks your screen views, session length, or taps.
2. Data that stays on your device
All progress is persisted only on your device, in Apple-managed storage:
- UserDefaults: current rank, etiquette score, unlocked ranks, onboarding and tutorial flags, haptic & sound preferences.
- Private app-scoped file (
saved_crests.json): the heraldic compositions you have sealed in the Armoury.
This data never leaves your device. It is removed when you tap Settings → Reset All Progress, or when you uninstall the App.
3. Third-party services
| Service | Purpose | Data sent |
|---|---|---|
| OneSignal (Push Notifications) | Optional delivery of release announcements and reminders. | Apple push token + device's Identifier-for-Vendor (IDFV). No personal data. |
| Cloudflare Worker (Update Manifest) | Check whether a new version of the App is available. | Your bundle identifier, current app version, and a device token (IDFV or OneSignal ID). Standard web logs (IP address, User-Agent) may be recorded briefly by Cloudflare. |
You may decline the push-notification permission prompt on first launch without affecting any other feature of the App.
4. WebView component
In the rare event that the Update Manifest indicates a mandatory patch, the App opens an Apple WKWebView pointed at our update page. The WebView inherits Apple's standard cookie, cache, and storage policies. It loads only our own domain; no third-party trackers are embedded.
5. Children
Crown & Crest is rated 4+ on the App Store. We do not knowingly collect any personal information from children of any age, because the App is engineered not to collect personal information from anyone.
6. Your rights (GDPR / UK-GDPR / CCPA)
Because we do not collect personal data, there is nothing for us to retrieve, correct, or delete on our servers. Your data subject rights are nevertheless respected:
- Access & portability: your local data is visible inside the App.
- Erasure: Settings → Reset All Progress deletes everything instantly.
- Push opt-out: iOS Settings → Notifications → Crown & Crest → Off.
7. Changes to this policy
If this policy changes, the new version will be posted at this URL with an updated "Last updated" date. Material changes will be highlighted in the App's release notes.
8. Contact
Questions, complaints, or data-subject requests:
privacy@crownandcrest.app