๐ Table of Contents
- Introduction
- Data Controller Information
- Information We Collect
- How We Use Your Information
- Legal Basis for Processing (GDPR)
- Data Sharing and Third Parties
- Data Retention
- Your Privacy Rights
- GDPR Rights (EU Users)
- CCPA Rights (California Users)
- Cookies and Tracking
- Data Security Measures
- International Data Transfers
- Children's Privacy
- Advertising and Analytics
- How to Contact Us
- Policy Changes
- Governing Law and Jurisdiction
1. Introduction
Welcome to Ludo Star India ("we," "our," or "us"). This comprehensive Privacy Policy applies to all users worldwide and complies with major international privacy regulations including GDPR (EU), CCPA (California), PIPEDA (Canada), LGPD (Brazil), and other applicable privacy laws.
Effective Date: June 17, 2025
Last Updated: June 17, 2025
๐ Global Compliance
This policy is designed to meet the highest international standards for data protection, ensuring your privacy rights are respected regardless of your location.
2. Data Controller Information
Company: Ludo Star India
Developer: Sea Corl
Email: liangning269@gmail.com
Website: https://corllover.com
Data Protection Officer: Sea Corl (liangning269@gmail.com)
3. Information We Collect
3.1 Information You Provide
- Account Data: Username, email address, profile information
- Game Progress: Scores, achievements, game statistics, preferences
- Communications: Support messages, feedback, user-generated content
- Payment Information: Billing details (processed securely by third parties)
3.2 Automatically Collected Information
- Device Information: IP address, browser type, operating system, device identifiers
- Usage Data: Pages visited, time spent, click patterns, feature usage
- Technical Data: Crash reports, performance metrics, error logs
- Location Data: Approximate location based on IP address (with consent for precise location)
3.3 Third-Party Sources
- Social Media: Profile information when you connect social accounts
- Analytics Services: Aggregated usage statistics
- Advertising Partners: Interest categories and demographics (anonymized)
4. How We Use Your Information
We process your personal information for the following purposes:
- Service Delivery: Providing, maintaining, and improving our gaming platform
- User Experience: Personalizing content, recommendations, and game features
- Communication: Sending updates, notifications, support responses, and marketing (with consent)
- Security & Safety: Detecting fraud, preventing abuse, ensuring platform security
- Analytics & Research: Understanding user behavior, improving services, market research
- Legal Compliance: Meeting regulatory requirements, responding to legal requests
- Business Operations: Internal administration, business planning, financial reporting
5. Legal Basis for Processing (GDPR)
For users in the European Economic Area, we process your data based on:
- Contract Performance: Providing gaming services, account management
- Legitimate Interest: Analytics, security, service improvement, fraud prevention
- Consent: Marketing communications, optional features, non-essential cookies
- Legal Obligation: Compliance with applicable laws and regulations
- Vital Interest: Protecting user safety in emergency situations
6. Data Sharing and Third Parties
We may share your information with:
6.1 Service Providers
- Cloud Infrastructure: AWS, Google Cloud Platform (data processing agreements)
- Analytics: Google Analytics, Firebase (with data retention controls)
- Customer Support: Zendesk, Intercom (encrypted communications)
- Payment Processing: Stripe, PayPal (PCI DSS compliant)
- Advertising: Google AdSense (with privacy controls)
6.2 Legal Requirements
We may disclose information when required by law, legal process, or to protect rights and safety.
6.3 Business Transfers
In case of merger, acquisition, or asset sale, your information may be transferred with appropriate safeguards.
๐ซ We Never Sell Your Data
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
7. Data Retention
We retain your information for different periods based on data type and legal requirements:
- Account Information: Until account deletion + 30 days for recovery
- Game Data: Until account deletion + 90 days for restore requests
- Analytics Data: 26 months (aggregated and anonymized)
- Support Communications: 3 years for quality assurance
- Financial Records: 7 years for accounting and tax purposes
- Marketing Data: Until opt-out + 6 months for suppression
8. Your Privacy Rights
You have the following rights regarding your personal information:
- Access: Request a copy of all personal data we hold about you
- Rectification: Correct inaccurate or incomplete information
- Erasure: Request deletion of your personal data ("right to be forgotten")
- Portability: Receive your data in a structured, machine-readable format
- Restriction: Limit how we process your data in certain circumstances
- Objection: Object to processing based on legitimate interests
- Withdrawal: Withdraw consent at any time where processing is based on consent
How to Exercise Your Rights: Email us at liangning269@gmail.com with your request. We respond within 30 days (GDPR) or as required by applicable law.
๐ช๐บ Additional Rights for EU Users (GDPR)
- Supervisory Authority: Right to lodge a complaint with your local data protection authority
- Automated Decision-Making: Right to object to purely automated decisions with legal effects
- Data Protection Impact Assessment: Right to request information about high-risk processing
- Breach Notification: Right to be informed of personal data breaches that pose high risk
EU DPA Directory: Find your local authority
๐๏ธ CCPA Rights (California Users)
California residents have specific rights under the California Consumer Privacy Act:
- Right to Know: Categories and sources of personal information collected
- Right to Delete: Request deletion of personal information
- Right to Opt-Out: Opt-out of sale/sharing of personal information
- Right to Correct: Request correction of inaccurate personal information
- Right to Limit: Limit use of sensitive personal information
- Right to Non-Discrimination: Equal service regardless of exercising rights
California Privacy Disclosure: We do not sell or share personal information as defined by CCPA.
11. Cookies and Tracking Technologies
11.1 Types of Cookies
- Essential Cookies: Required for basic website functionality
- Performance Cookies: Analytics and usage statistics (Google Analytics)
- Functional Cookies: Enhanced features and personalization
- Advertising Cookies: Personalized advertisements (Google AdSense)
11.2 Cookie Management
You can manage cookies through:
- Browser settings (disable/delete cookies)
- Our cookie consent banner
- Google Ad Settings: adssettings.google.com
- Network Advertising Initiative: optout.networkadvertising.org
12. Data Security Measures
We implement comprehensive security measures to protect your information:
- Encryption: TLS 1.3 for data in transit, AES-256 for data at rest
- Access Controls: Role-based permissions, multi-factor authentication
- Network Security: Firewalls, intrusion detection, DDoS protection
- Regular Audits: Security assessments, penetration testing, vulnerability scans
- Employee Training: Regular privacy and security awareness programs
- Incident Response: 24/7 monitoring and rapid response procedures
- Data Minimization: Collect only necessary data, regular data purging
๐จ Security Incident Response
In case of a data breach, we will notify affected users and authorities within 72 hours (GDPR requirement) or as mandated by applicable law.
13. International Data Transfers
Your data may be processed in countries outside your region. We ensure adequate protection through:
- Adequacy Decisions: Countries recognized by EU Commission as having adequate protection
- Standard Contractual Clauses: EU-approved contractual safeguards
- Binding Corporate Rules: Internal data protection standards
- Certification Schemes: Recognized privacy certification programs
Data Processing Locations: United States, European Union, India (with appropriate safeguards)
14. Children's Privacy Protection
We are committed to protecting children's privacy and comply with applicable laws:
- Age Requirements: 13+ globally, 16+ in EU without parental consent
- Parental Consent: Required for users under applicable age limits
- Data Minimization: Limited data collection for users under 18
- Parental Rights: Parents can access, modify, or delete their child's data
- Educational Use: Special protections for school-based accounts
๐จโ๐ฉโ๐งโ๐ฆ Parent Notice
If you believe your child has provided information without proper consent, contact us immediately at liangning269@gmail.com
15. Advertising and Third-Party Services
15.1 Google AdSense
We use Google AdSense to display relevant advertisements. Google may use cookies and similar technologies.
15.2 Analytics Services
- Google Analytics: Website traffic and user behavior (anonymized)
- Firebase Analytics: Mobile app performance and usage patterns
15.3 Social Media Integration
Social media features may collect information about your interaction with these features.
15.4 Opt-Out Options
- Google Analytics Opt-out: tools.google.com/dlpage/gaoptout
- Google Ad Personalization: adssettings.google.com
๐ Contact Us - Privacy Matters
Data Protection Officer: Sea Corl
Privacy Email: liangning269@gmail.com
Website: https://corllover.com
Response Time: We respond to privacy requests within 30 days (GDPR) or as required by applicable law.
Languages: English, Hindi, Tamil, Telugu support available.
17. Updates to This Privacy Policy
We may update this Privacy Policy to reflect changes in our practices, services, or legal requirements.
17.1 Notification Process
- Material Changes: Email notification to registered users
- Website Notice: Prominent banner for 30 days
- Version Control: Updated "Last Modified" date and version number
17.2 Continued Use
Continued use of our services after policy updates constitutes acceptance of the revised terms.
18. Governing Law and Dispute Resolution
18.1 Applicable Law
- EU Users: GDPR and local EU member state laws
- California Users: CCPA/CPRA and California state law
- Canadian Users: PIPEDA and provincial privacy laws
- Other Users: Local privacy laws and international standards
18.2 Dispute Resolution
Privacy-related disputes will be resolved through appropriate channels based on your location and applicable law.
19. Additional Information
19.1 Privacy by Design
We implement privacy considerations into all aspects of our service development and operations.
19.2 Regular Reviews
This policy is reviewed annually and updated as necessary to maintain compliance and best practices.
19.3 Accessibility
This privacy policy is available in multiple formats. Contact us for assistance or alternative formats.
Document Version: 2.0
Next Scheduled Review: December 17, 2025