Privacy Policy

1) Data Controller & Contact

This policy is intended to help meet Google Play’s User Data requirements and aligns with disclosures expected alongside the Play Console “Data safety” form and in-app disclosures where applicable. (See Google Play User Data & Data Safety guidance: User Data, Data Safety.)

6) Device Permissions & Controls (How to Manage)

The Application Rabbit Cash : Play Earn Money uses certain Android permissions and system capabilities to provide core functionality (rewards tracking, offer attribution, fraud prevention, notifications, and security). You can manage or revoke permissions at any time through your device settings.

How to Manage Permissions

• Android permission settings: Settings → Apps → Rabbit Cash : Play Earn Money → Permissions
• Notifications: Settings → Notifications → App notifications → Rabbit Cash : Play Earn Money
• Advertising controls: Settings → Privacy → Ads (options vary by device/Android version)
• Usage access (special access): Settings → Privacy (or Security) → Special app access → Usage access

Permission Categories We Use

1) App Usage & Package / Usage Statistics

Permission/Capability: PACKAGE_USAGE_STATS (Usage Access) and related Android system APIs.

Why we use it: Some reward partners (including engagement-based SDKs such as adjoe Playtime) may require usage signals to verify eligibility and completion of tasks in third-party apps/games, prevent fraud/abuse, and protect the integrity of rewards.

How to disable: Settings → Privacy/Security → Special app access → Usage access → disable access for Rabbit Cash : Play Earn Money.

Disabling Usage Access may prevent certain reward features from working correctly (for example, completion verification for specific offers).

2) Installed Apps / Package Visibility

Permission/Capability: package visibility / installed applications queries (may include QUERY_ALL_PACKAGES or Android package visibility mechanisms, depending on version/build).

Why we use it: This may be used by third-party reward/fraud-prevention SDKs to perform integrity checks, detect abuse, and validate offer eligibility.

Important: We do not independently compile, sell, or use a complete list of installed applications for marketing or profiling. Any such access is limited to operational and anti-fraud purposes and may be processed by the relevant SDK under its own privacy policy.

3) Advertising, Attribution & Privacy Sandbox (AdServices)

Permissions/Capabilities: Advertising ID (AD_ID) and Android AdServices APIs (may include items such as “Access Adservices Ad Id / Attribution / Topics” depending on device and Android version).

Why we use it: To provide ads/offers, measure performance, attribute rewards correctly, limit fraud, and support personalized/non-personalized advertising depending on your settings and applicable law.

How to manage: You can reset or limit ad personalization via Settings → Privacy → Ads (options vary). You may also use Google Ads settings: https://support.google.com/accounts/answer/2662922

4) Notifications

Permission: POST_NOTIFICATIONS (Android 13+).

Why we use it: To notify you about reward status, important account updates, and offer-related alerts (where applicable).

How to disable: Settings → Notifications → App notifications → Rabbit Cash : Play Earn Money.

5) Biometric / Fingerprint (Optional)

Permissions: USE_BIOMETRIC / USE_FINGERPRINT (device-dependent).

Why we use it: Only for secure sign-in or confirming sensitive actions when you enable biometric authentication. We do not collect or store your biometric templates; biometric checks are handled by your device OS.

How to disable: Disable biometrics for the App within the App settings (if available) and/or via device security settings (Biometrics/Fingerprint settings).

6) Network & Connectivity

Permissions: INTERNET, ACCESS_NETWORK_STATE, ACCESS_WIFI_STATE.

Why we use it: Required to connect to our servers, load offers/ads, synchronize reward status, and provide core app functionality.

7) Background Reliability (Foreground Service / Wake Lock)

Permissions/Capabilities: Foreground Service and WAKE_LOCK (where applicable).

Why we use it: To maintain reliable app operation during certain active processes (for example, when you are interacting with an offer flow) and reduce interruptions.

8) Install Referrer

Capability: Google Play Install Referrer service (may appear as “Bind Get Install Referrer Service”).

Why we use it: To understand which source referred you to install the App and to support attribution and analytics.

Note: Your device and Android version may display permissions differently, and some features may be requested only when needed. If you deny certain permissions, related features (such as specific reward verification flows) may not function properly.

9) Legal Bases (GDPR/EEA users)

Where the GDPR applies, we rely on one or more of the following legal bases:

• Contract necessity: to provide the App services and reward attribution you request.
• Legitimate interests: to secure the App, prevent fraud/abuse, maintain system integrity, and improve services.
• Consent: where required (e.g., certain targeted advertising or consent-based tracking in some regions).
• Legal obligation: to comply with applicable laws, enforce rights, or respond to lawful requests.

GDPR reference: Regulation (EU) 2016/679.

10) Who We Share Data With (Third Parties / Processors)

We may share personal data with third parties to operate the App, provide ads/offers, measure performance, prevent fraud, and process withdrawals. Sharing may include identifiers (AAID/IDFA), device information, IP address, app usage events, and conversion/attribution data.

10.1 Installed Applications and App Usage Data

The App integrates third-party SDKs, including adjoe Playtime, that may access information about applications installed or recently used on the user’s device.

This access may occur through Android system permissions that allow package visibility or application usage statistics.

Such information is used strictly for the following purposes:

• Fraud prevention and abuse detection
• Verification of reward eligibility
• Security and integrity monitoring

The App does not independently compile, sell, or use a complete list of installed applications for marketing or user profiling. Any such access is limited to operational and anti-fraud purposes and is processed by the relevant SDK in accordance with its own privacy policy.

10.2 Categories of recipients

• Advertising networks (to show ads and measure ad performance)
• Offerwall / reward partners (to present offers and attribute rewards)
• Survey providers (to provide survey offers and validate completion)
• Analytics and crash reporting providers (to understand usage and fix issues)
• Security / fraud prevention (to protect integrity and prevent abuse)
• Hosting/infrastructure providers (to run backend services)
• Payment/payout providers (to process withdrawals where applicable)

10.3 Specific SDKs / Partners used in the App (non-exhaustive, updated as integrations change)

• Google AdMob / Google Mobile Ads SDK (Google LLC) — ads delivery & measurement. Privacy: Google Privacy Policy. Play disclosure: Google Mobile Ads Play data disclosure.
• Unity Ads (Unity Technologies) — ads delivery & measurement. Privacy: Unity Privacy Policy.
• Fyber (SponsorPay GmbH) — advertising / offer services. Privacy: Fyber Privacy Policy.
• Tapjoy — offer/ads platform. Privacy: Tapjoy Privacy Policy.
• adjoe Playtime (adjoe GmbH) — rewarded engagement offers, attribution & fraud prevention. Privacy: adjoe Privacy Policy.
• CPX Research — surveys and reward attribution. Privacy: CPX Privacy Policy.
• Firebase Analytics (Google) — analytics and measurement. Privacy: Firebase Privacy. Play disclosure: Firebase Play data disclosure.
• Firebase Crashlytics (Google) — crash reporting and diagnostics. Privacy: Firebase Privacy.
• Firebase Cloud Messaging (Google) — push notifications. Privacy: Firebase Privacy.
• Hosting / Infrastructure (Hostinger) — backend hosting and infrastructure. Privacy: Hostinger Privacy Policy.
• Google Play Store (Google) — app distribution and related diagnostics under Google’s policies. Privacy: Google Privacy Policy.

Google Play expects your privacy policy and your Play Console “Data safety” disclosures to match. (Data safety guidance: Data Safety.)

11) Do Not Sell or Share My Personal Information

Certain privacy laws, including the California Consumer Privacy Act (CCPA/CPRA) and the Virginia Consumer Data Protection Act (VCDPA), provide users with the right to opt out of:

• The sale of personal data
• The sharing of personal data for cross-context behavioral advertising
• Targeted advertising
• Profiling in furtherance of decisions that produce legal or similarly significant effects

Do We Sell Personal Data?

We do not sell personal data for monetary compensation.

However, we may share identifiers and limited usage information (such as Advertising ID (AAID), device information, IP address, and app interaction data) with advertising, analytics, and reward attribution partners for operational, measurement, fraud-prevention, and advertising purposes. Under certain U.S. privacy laws, this activity may qualify as “sharing” for cross-context behavioral advertising.

How to Submit an Opt-Out Request

You may exercise your opt-out rights at any time by:

• Email: call@rabbitpuzzle.site
  Subject line: Do Not Sell or Share Request
  Please include your account email address.
• Device Advertising Controls (Android):
  Settings → Privacy → Ads → Reset or Delete Advertising ID
  You may also disable ad personalization in system settings.
• Industry Opt-Out Tools:
  Network Advertising Initiative
  YourAdChoices

We will process verified opt-out requests within 30 days or sooner where required by applicable law.

We do not discriminate against users for exercising their privacy rights.

12) Additional Opt-Out and Appeal Rights

Depending on your U.S. state of residence, you may have additional privacy rights including:

• Right to access personal data
• Right to correct inaccuracies
• Right to delete personal data
• Right to data portability
• Right to opt out of targeted advertising
• Right to opt out of certain profiling activities

Profiling Statement

The App does not engage in profiling that produces legal or similarly significant effects (such as decisions related to credit eligibility, employment, housing, or insurance).

Virginia Appeal Rights

Virginia residents may appeal a denied privacy request by replying to our response email with the subject line: Virginia Privacy Appeal.

We will respond to appeal requests within the timeframe required by applicable law.

16) Account Deletion & Data Deletion Requests

You can request account deletion and/or deletion of personal data by emailing: call@rabbitpuzzle.site with subject Account Deletion Request.

Please include:

• Account email used in the App
• User ID (if available)
• Request type: Account deletion / Data deletion / Data access / Correction

We may request additional information to verify your identity and protect your account.

19) Your Rights (EEA/UK – GDPR)

Depending on your location and applicable law, you may have rights including:

• Access to your personal data
• Correction of inaccurate data
• Deletion (erasure) in certain cases
• Restriction of processing
• Data portability
• Objection to processing
• Withdrawal of consent (where processing is based on consent)

Where GDPR applies, you may lodge a complaint with a supervisory authority. References: EU Commission data protection, EDPB.

20) Brazil Privacy Rights (LGPD)

If you are located in Brazil, your personal data is protected under the Lei Geral de Proteção de Dados (LGPD – Law No. 13.709/2018).

Your Rights Under LGPD

• Confirmation of the existence of data processing
• Access to personal data
• Correction of incomplete, inaccurate, or outdated data
• Anonymization, blocking, or deletion of unnecessary or excessive data
• Data portability to another service provider
• Deletion of personal data processed with consent
• Information about public and private entities with whom we share data
• Information about the possibility of denying consent and consequences
• Withdrawal of consent at any time

How to Exercise Your LGPD Rights

Brazilian users may submit requests by contacting: call@rabbitpuzzle.site
Subject: Brazil LGPD Request

We will respond within the timeframes required by applicable Brazilian law.

LGPD reference: Brazilian Data Protection Authority (ANPD) .

21) California Privacy Rights (CCPA/CPRA)

We do not sell personal information for money.

We may “share” certain identifiers and activity data for cross-context behavioral advertising as described above.

Your rights (California residents)

• Right to know/access: categories and specific pieces of personal information collected
• Right to know what is sold/shared and to whom (by category)
• Right to delete (subject to exceptions)
• Right to correct inaccurate personal information
• Right to opt out of sale/sharing (where applicable)
• Right to non-discrimination for exercising privacy rights

How to exercise California rights

Email: call@rabbitpuzzle.site
Subject: California Privacy Request
Include: account email + user ID (if available) + request type (Access / Delete / Correct / Opt-out).

22) Virginia Privacy Rights (VCDPA)

This section applies to Virginia residents under the Virginia Consumer Data Protection Act (VCDPA).

Your rights (Virginia residents)

• Access: confirm processing and access your data
• Correct inaccuracies
• Delete personal data
• Data portability (where applicable)
• Opt out of targeted advertising, sale, and certain profiling

How to exercise Virginia rights

Email: call@rabbitpuzzle.site
Subject: Virginia Privacy Request

Appeals

If we deny your request, you may appeal by replying to our response with subject: Virginia Privacy Appeal.

VCDPA transparency/opt-out duties are reflected here. (Statute reference: Va. Code § 59.1-578.)

25) Definitions & Legal References

• GDPR: Regulation (EU) 2016/679
• Google Play User Data: Policy page
• Google Play Data Safety: Policy page
• Firebase Play Data Disclosure: Guide
• Google Mobile Ads Play Data Disclosure: Guide