Privacy Policy
1. Scope
This Privacy Policy describes how Liberty Studios ("we," "us," "our") collects, uses, and protects information when you access or use Liberty Bells (the "Service"). This Policy is incorporated by reference into our Terms of Service.
This Policy applies to information collected through the Service only. It does not apply to any third-party websites, services, or platforms that may be referenced from the Service.
2. Eligibility — Adults Only
The Service is intended exclusively for individuals who are at least eighteen (18) years of age (or the legal age of majority in their jurisdiction, whichever is higher) and who are not located in any restricted jurisdiction listed in Section 2.2 of our Terms of Service. We do not knowingly collect any data from minors. If we become aware that we have collected data from a minor, we will delete it.
3. Data We Collect
3.1 Information you provide
- Callsign / display name: a self-selected pseudonym, stored locally in your browser and, if you connect to multiplayer, transmitted to our game server to identify you during matches;
- Avatar selection: a chosen image from a fixed set provided by the Service;
- Deck composition and gameplay actions: the cards you build into your deck and the moves you play during matches;
- Wallet address (optional): if you choose to sign in with a Solana wallet, the public address of that wallet. We verify a message signature to confirm you control the wallet; we never request, receive, or store your private keys or seed phrase. We do not read your wallet balances, tokens, or NFTs, and we perform no on-chain transactions.
- Account progression (wallet sign-in only): if you connect a wallet, your callsign, avatar, Cubes balance, card collection, and other progression are stored on the Liberty Studios game server, keyed to your public wallet address, so they persist across devices. If you play as a guest, this data stays only in your browser.
3.2 Information collected automatically
- IP address: collected at connection time solely to enforce geographic restrictions and to mitigate abuse. We do not retain IP addresses tied to individual gameplay records beyond what is reasonably necessary for the foregoing purposes.
- Gameplay statistics: aggregate records of matches played, victories, defeats, cards played, Cubes balance, ranks, mastery progression, daily-challenge progress, and similar in-game telemetry;
- Technical metadata: browser user-agent string, viewport size, and basic device characteristics, used to render the Service correctly and to debug issues;
- Session identifiers: ephemeral tokens used to maintain a connection to the game server during a match.
3.3 Information stored locally on your device
- Your profile, deck composition, Cubes balance, card collection, mastery progression, settings, mute state, daily challenge progress, streak counters, and Terms acceptance status are stored in your browser's
localStorage. In guest mode this is the only record and it never leaves your device. In wallet mode the same data is also synced to our game server (see 3.1) so it survives across devices and browser resets.
4. Data We Do NOT Collect
We deliberately design the Service to minimize personal data collection. We do NOT collect:
- Your real name, legal name, or aliases beyond your self-chosen callsign;
- Your email address, phone number, or postal address;
- Government-issued identification, "Know Your Customer" (KYC) information, or any biometric data;
- Payment card details or banking information;
- Location data finer than country-level geolocation derived from your IP address;
- Contacts, photos, microphone, camera, or other device sensor data;
- Behavioral profiles or interest categories for targeted advertising — we do not run advertising on the Service.
5. Purposes of Processing
We process the limited data we collect for the following purposes only:
- operating and maintaining the Service;
- enforcing geographic restrictions (Section 2.2 of Terms);
- matchmaking, scoring, and recording match outcomes;
- detecting and preventing cheating, multi-accounting, abuse, and fraud;
- communicating service-related notices through in-game interfaces;
- aggregate, anonymized analytics to understand engagement and improve the Service;
- complying with applicable law, regulation, legal process, or governmental request.
6. Legal Basis
Where any applicable data protection regime requires identification of a lawful basis for processing, the basis is one or more of: (a) performance of the contract you have entered into by accepting our Terms; (b) our legitimate interests in operating, securing, and improving the Service; (c) compliance with legal obligations to which we are subject; and (d) your consent, where required and obtained.
Note that the Service is not made available to residents of jurisdictions whose data-protection regimes (such as the EU GDPR, UK GDPR, California CCPA/CPRA, and Canada PIPEDA) impose comprehensive obligations; see Section 2.2 of our Terms of Service.
7. Storage & Retention
Locally-stored data persists in your browser until you clear it through browser controls. We have no ability to access, retrieve, or back up this local data on your behalf.
Server-side data (gameplay records, telemetry, IP-derived country code) is retained only for the period reasonably necessary for the purposes described in Section 5. Aggregated, anonymized statistics may be retained indefinitely.
If at any point you cease using the Service, server-side data associated with your account may be deleted, archived, or anonymized at our discretion.
8. Third-Party Processors
We rely on a limited set of third-party service providers to operate the Service. These providers process data only on our behalf and only as needed to provide their service. Categories include:
- Hosting provider: a virtual private server (VPS) provider where our game server runs;
- Content delivery / DNS: a service that may proxy connections and provide DDoS protection and TLS termination;
- IP-based geolocation service: used to determine country of origin for enforcement of Section 2.2 of the Terms;
- Optional, privacy-respecting analytics: if enabled, an analytics provider that does not use third-party cookies and does not build behavioral profiles.
We do not sell, rent, or trade personal data to any third party for any purpose.
9. Blockchain Data
The Service does not currently interact with any blockchain. No on-chain data is generated by Service use. If and when wallet-based authentication or any blockchain integration is introduced, this Policy will be updated to reflect the additional data flows. Note that any transaction broadcast to a public blockchain is, by the nature of blockchain technology, public, permanent, and outside our ability to delete or modify.
10. International Transfers
Because the Service operates pseudonymously and may use infrastructure providers in various jurisdictions, data may be transferred to and processed in countries other than the one from which it was collected. By using the Service, you acknowledge and consent to such transfers. The Service is not made available to residents of jurisdictions whose laws require specific safeguards for international transfers; see Section 2.2 of our Terms of Service.
11. Security
We apply reasonable technical and organizational measures to protect the data we hold, including encrypted transport (HTTPS/WSS), access controls on server infrastructure, and minimization of data collection. However, no system is perfectly secure. You acknowledge that you transmit information at your own risk.
In the event of a security incident materially affecting User data, we will publish a notice through the Service interface as soon as reasonably practicable.
12. Your Rights
Subject to applicable law and to the practical constraints of our pseudonymous operation, you may request:
- information about whether we hold data about you;
- deletion of server-side data we may hold about your account;
- withdrawal of any consent you have given.
Requests should be submitted through the official channels described in Section 16. Because we do not collect identifying information beyond a self-chosen callsign and (optionally) a wallet address, our ability to identify "your" data may be limited.
You can clear all locally-stored data at any time using your browser's standard controls (clearing site data) or by using the in-game RESET function in the Settings menu.
13. Cookies & Local Storage
The Service uses browser localStorage to persist your profile, deck, settings, and gameplay state. We do not use third-party tracking cookies. See our Cookie Policy for details.
14. Children
The Service is not directed to and is not intended for any individual under eighteen (18) years of age. We do not knowingly collect data from minors. If you believe we have inadvertently collected such data, contact us through the official channels and we will delete it.
15. Changes
We may update this Policy from time to time. Material changes will be communicated through the in-game interface or the Service website at least seven (7) days prior to taking effect.
16. Contact
Privacy inquiries should be sent through the official channels published on the Service. We do not maintain any other official communication channel for privacy matters. See Section 23 of the Terms of Service for important guidance on identifying official communications.