WOAH GAMES – PRIVACY STATEMENT

This Privacy Statement explains how WOAH Games (“we” or “WOAH”) collect and process the user’s (“you” or “User”) personal information when you download, install, or use our apps (“Apps”) or other services. By using any of our Apps or services, you consent to the collection and use of your personal information as described in this Privacy Statement.

Compiled on 22.02.2026 (last modified on 22.02.2026). We reserve the right to modify this Privacy Statement and notify the User of significant changes when deemed necessary. Any such modifications will be effective as of the “last modified” date indicated in this paragraph.

Data controller: Sami Simolin (WOAH Games)

Contact person: Sami Simolin

Website: www.sites.google.com/view/woahgamesstudio/

Email: woahgamesstudio@gmail.com

PROCESSING OF PERSONAL DATA

Basis for processing

We always process your personal data lawfully, fairly, transparently, and with respect for your privacy. We only collect and process information about you where we have a legal basis to do so.

We collect and use your data, if

• you have given us permission to use the data for a specific purpose; 

• it is necessary for the fulfillment of a contract to which you are a party or in order to take certain actions at your request before the conclusion of the contract;

• it fulfills a legitimate interest (which is not overridden by your data protection interests), such as the detection of abuse, statistical and research work, or the protection of our legitimate rights or interests; or

• it is necessary for compliance with legal obligations.

Collecting personal data

We may collect data from the users of our apps (“Apps”) or services. Such data may include

• personal information, such as username, email address, and payment details;

• technical information, such as device type and operating system;

• analytics information, such as usage data;

• location information (if applicable and you have enabled location services).

Information may be collected via third-party services, such as app stores where the Apps are available and potential purchases can be made. Where necessary, we may also collect the necessary data from registers maintained by public authorities.

We do not knowingly collect personal information from children as required by COPPA and similar, applicable regulations. If you believe your child has provided us with their personal information (without your consent), contact us so that we can take necessary actions.

PROCESSING PERSONAL DATA AND PURPOSES

Essential data for the exercise of the activity

We process data that is relevant and necessary for the operation of our business and the management of our customer relationships. This may include information relating to customer, co-operation, commissioning and contractual relationships, as well as information relating to the provision, management and development of activities and the Apps, such as information necessary for customer service or customer communication. This may include, for example, information about you or entered by you, information about your user profile, or payment and billing information. We may collect billing, payment method and other purchase-related information for the purposes of fulfilling the contract and providing customer service.

We process data about Users, stakeholders, and partners, as well as information we need to carry out any potential events or projects. The data processed may also include information about persons who have contacted us or about our potential partners, customers, or stakeholders, and their employees or other representatives. We also process personal data for the purposes of implementing the rights and obligations of the parties.

The data processed relates to the contact, identification or background information of the aforementioned parties or their representatives. Data may also be collected on joint activities, depending on their form. This may include, for example, name, position, organization, billing information, contact information, order information, identification information, or other information related to the performance of an assignment or contract.

Marketing and customer communications

We process Users' and potential customers' data for sales and marketing purposes and to inform and communicate about our activities. For example, data may be processed for the purpose of sending newsletters, invitations, conducting opinion or market research, sending customer feedback, or making and sending other surveys. Data may also be processed for the purposes of participating in or running a campaign, and providing personalized content, features, and targeted advertising. The data collected may include, for example, name, contact details, or other identifying information.

If the User subscribes to any potential WOAH newsletters or registers for an App, the User consents to receive marketing communications from WOAH. Some of the marketing material may be targeted, for example, geographically or to a specific group of users.

App information and user tracking

We may process information related to your use of Apps, including technical information. Such information may include, but is not limited to, how and when Apps have been used, as well as technical information provided to us by the User's device or otherwise obtained through or in connection with the Apps. We need the aforementioned data to ensure the operation of the Apps, for development, maintenance, communication, and marketing, and to investigate possible misuse. Information related to the use of the Apps is not used for User tracking or identification.

Other information

The data processed may also include data that the data subject has provided voluntarily, for example through a contact request or other means of communication. 

The information may also be used to provide, maintain or ensure the quality of the Apps or our services, and to enable business planning and development.

Our Apps may contain links to third-party services, such as app stores, which may collect and use information about you in accordance with their own terms and policies. We are not responsible for the privacy practices or terms of third parties.

We may allow access to or transfer your personal data to third parties who process personal data on our behalf or act as our subcontractors, collaborators, or partners (for example, an App Store, payment service provider, email service provider, technical support, or outsourced customer service or marketing service provider). However, these third parties may only use the User's personal data for the purpose for which the personal data was collected, and the services of these third parties are subject to confidentiality. We may also share your information in response to valid legal requests. In addition, in the case of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction. By default, personal information is shared in a non-personally identifiable format unless required by law or to fulfill our obligations.

DATA RETENTION

We retain your information for as long as necessary to fulfill the purposes described in this Privacy Statement (for example, for the duration of the customer relationship) and for 3 months thereafter, unless a longer retention period is required or permitted by law. After the retention period has expired, the data will be deleted within two weeks. We reserve the right to inform you separately of a shorter or longer retention period.

The collection, processing and disclosure of personal data always involves risks, and no system or technology is completely secure or protected against unauthorized access. No data transmission over the internet is completely secure, and we cannot guarantee the absolute security of your data. However, we always exercise due care in storing and processing data, and safeguard data security through firewalls, passwords, and various generally accepted technical methods. Manually maintained records are stored in locked premises, where access is denied to unauthorized persons. Storage and processing of data is done through recognized secure service providers. Data is protected by strictly limited access rights and processed only for the purpose for which it was collected. All personal data is treated in confidence. We may make backups of our databases, which may prevent the loss or corruption of the User's personal data as a result of unintentional action or misuse.

As a general rule, we do not disclose or transfer information to third parties unless you have given your explicit consent. Exceptions may be made for legal or regulatory obligations, the legality of which will be assessed on a case-by-case basis. An exception may also be the disclosure of data based on a contractual relationship with a service provider or subcontractor who may process the data in order to provide a service. In these cases, the proper and lawful processing of personal data is ensured through contracts and, where appropriate, confidentiality agreements.

We operate globally, and there may be Users of our Apps in different countries, which means that WOAH may transfer and process the User's personal data outside the User's country of residence. The User's personal data may also be processed in countries outside the European Economic Area (EEA) where the level of data protection may not be sufficient according to the European Commission. In the event that the User's personal data is transferred, we will comply with applicable laws to ensure that the User's personal data is adequately protected. Personal data will only be transferred for the purpose of providing the Apps.

YOUR RIGHTS

You may have certain rights regarding your personal information, subject to legal obligations and your country of residence or jurisdiction.

You have the right to be informed about the processing of your personal data and to have access to your personal data. The personal data you input in an App is, by default, also accessible in the same App. WOAH can also assist you and provide you with a copy of your personal data. You have the right to know whether we are processing personal data about you and to receive a copy of that data, unless we have a legal reason for refusing to provide it. You also have the right to know how and for what purposes we process your personal data.

You have the right to rectification and erasure of your personal data. By default, you have the possibility to correct or delete your personal data you have input in the Apps yourself. You also have the right to request that we correct, without undue delay, inaccurate or incorrect personal data concerning you. You have the right to request the erasure of personal data concerning you without undue delay. However, we will not be able to delete personal data that is necessary to comply with binding legal obligations or that must be retained under applicable law. Please note that we cannot recover deleted personal data. Deletion of personal data may mean that we can no longer provide our Apps to you.

You have the right to restriction of processing and the right to object to the processing of your personal data. You have the right to request the restriction of the processing of your personal data and to object to the processing and profiling operations that are carried out in relation to you. You have the right to object where your personal data are processed for direct marketing purposes or where the processing is based on legitimate interests. In this case, the situation must be specified in the objection request, which we can only refuse to comply with on the grounds provided for by law. You also always have the right to withdraw your consent to the use of your personal data where the use was based on consent. However, such withdrawal does not affect the prior processing of the data or its lawfulness.

You have the right to transfer your personal data to another controller. You have the right to receive personal data concerning you in machine-readable form and the right to transfer this data to another controller, provided that this processing is carried out automatically and is technically feasible. However, please note that we cannot guarantee that the third-party system will be able to process the personal data in the transferred format.

You also have the right to complain to the competent supervisory authority if you feel that we have failed to comply with data protection law.