Privacy Policy
Last updated: October 10, 2025
Thank you for choosing to use the services of the Eterea organization. In this Privacy Policy, we inform you about how we collect, use and protect the personal information that you provide to us when you use our services.
01Who we are and scope
This Privacy Policy explains how EtereaGames (“we”, “us”, “our”) collects and processes personal data when you use:
- Type (social app); and
- Nova Assault (game, including online services and integrations with Epic Games Services).
Unless stated otherwise, EtereaGames is the Controller under applicable data-protection laws (e.g., GDPR).
Support: support@EtereaGames.com
Controller representative: Francesco Geloso — francescogeloso@etereagames.com
02Who may use our products
Type
Intended for individuals 15 years of age or older. We do not knowingly collect data from children under 15 for Type. If we learn an account belongs to a user under 15, we will delete the account and associated data (subject to legal retention).
Nova Assault
Available according to platform terms and local age ratings. Where parental controls or age-verification are required (e.g., via Epic, Steam, console stores, or local law), we rely on those mechanisms and apply appropriate restrictions.
03What data we collect
3.1 Data you provide
- — Account and profile data (e.g., email/username, display name, country, language, settings).
- — Communications (support tickets, emails, feedback, reports).
- — Type only: Date of birth or age band for age-assurance (see §6).
3.2 Data collected automatically
- — Technical/device data (app version, OS, device identifiers, crash logs).
- — IP address, general location at the city/region level, timestamps, performance metrics.
- — Usage/interactions (content you post, friends/follows, likes, moderation events).
3.3 Data from third parties
- — Authentication / platform: Apple/Google sign-in, Epic Games Account (Nova Assault), Steam, platform stores.
- — Payment processors (if you purchase premium or in-game items): limited billing info and payment status.
- — Push/notifications: Firebase Cloud Messaging (device token).
- — Anti-abuse/security: signals used to detect fraud, spam, or EULA violations.
We do not require or store copies of government IDs unless legally required or handled by a specialized provider for verification.
04Why we process your data
| Purpose | Legal Basis |
|---|---|
| Provide the service and your account (create, log in, sync, social features, cross-platform play) | Art. 6(1)(b) GDPR (contract) |
| Age-assurance (Type) to confirm 15+ eligibility and apply age-appropriate settings | Art. 6(1)(c) & Art. 6(1)(f) |
| Safety and integrity (anti-cheat, anti-fraud, abuse prevention, moderation, security logging) | Art. 6(1)(f) |
| Communications (service messages, policy updates) | Art. 6(1)(b)/(f) |
| Analytics (aggregated/non-behavioral) to improve stability and features | Art. 6(1)(f) |
| Marketing (optional) | Consent or Legitimate Interest |
We do not use age signals for behavioral advertising or marketing profiling.
05Sharing your data
We share data only as needed with:
- Processors: Notifications (e.g., Firebase Cloud Messaging), Anti-abuse & security, Aggregated analytics tools.
- Platform partners / controllers: Epic Games Services (Nova Assault login, friends, matchmaking, anti-cheat, cloud saves), Apple/Google (sign-in, app stores).
- Authorities: Where required by law or to protect rights/safety.
We require processors to implement appropriate security and to process data only on our instructions.
06Age-assurance (Type)
For Type, we enforce 15+ access. We may ask for date of birth or let you select an age band. Where available, we may receive OS/store age signals to help confirm eligibility or apply minor-friendly defaults.
- Age signals are used only for eligibility/safety and are not used for ads or marketing.
- We store outcomes (e.g., “eligible 15+”) and minimal logs to demonstrate compliance; we do not store ID images.
- If we cannot verify 15+, we may deny account creation or restrict features.
07International data transfers
Where data is transferred outside the EEA/UK, we use appropriate safeguards (e.g., Standard Contractual Clauses) and, if needed, supplementary measures.
08Retention
We keep personal data only for as long as needed for the purposes above:
- Account data: for the life of the account.
- Security/moderation logs: for a limited period aligned with risk and legal requirements.
- Age-assurance outcomes/logs (Type): the minimum period necessary to evidence compliance and manage eligibility.
Upon account closure, we delete or anonymize data unless retention is required by law (e.g., tax, fraud prevention).
09Your rights
Subject to law, you can request access, rectification, erasure, restriction, objection, portability, and lodge a complaint with your supervisory authority.
Exercise your rights10Security
We implement technical and organizational measures appropriate to risk, including encryption in transit/at rest, access controls, monitoring, backups, and incident response. No system is 100% secure; we continuously improve our safeguards.
11Cookies and similar technologies
If you use our websites, we may use cookies or similar technologies for strictly necessary purposes and, with consent where required, for analytics. See our Cookie Notice (if provided) for details and controls.
12Automated decision-making
We do not conduct automated decision-making that produces legal or similarly significant effects without human review. Anti-fraud/anti-cheat detections may use automated signals with human oversight.
13Changes to this notice
We may update this Privacy Policy from time to time. For material changes, we will provide reasonable advance notice (e.g., in-app, email, or banner) before they take effect.