Privacy Policy

Effective date: April 23, 2026 Last updated: April 23, 2026

This Privacy Policy describes how Pokemon Auto Chess ("we", "us", "our") processes information when you use https://pokemon-auto-chess.com and related game services.

Who We Are

Service: Pokemon Auto Chess
Website: https://pokemon-auto-chess.com
Contact: [email protected]

Pokemon Auto Chess is an open-source, non-profit fan project: Non profit game. For fans, by fans. All rights to The Pokemon Company.

Information We Process

We process the following categories of data.

1) Authentication and account identifiers

Authentication is handled through Firebase Authentication. Current sign-in methods are:

• Google
• Email/password
• Twitter/X

To operate your account, we process identifiers and profile fields such as user ID, display name, and, when available, email.

2) In-game profile and progression data

We store gameplay profile data linked to user ID, including:

• language and avatar selection
• wins, games played, XP/level, ELO and max ELO
• event points and event finish time
• titles, role, and ban status
• Pokemon collection and progression fields (for example owned entries, shards/dust, selected emotion or shiny state, and played counters)

3) Game history and statistics

We store detailed game records for history/profile views, ranking features, and statistics. Records may include player ID, display name, avatar, rank, ELO, game mode, timestamp, Pokemon used, and synergy or region data.

4) Chat data

When chat is used, messages include fields such as message ID, payload, author ID, author name, avatar, and timestamp.

5) Bot builder submissions

If you submit a bot build, we store bot fields such as bot ID, author name, avatar, ELO, approval status, and step/board configuration data.

6) Local browser storage

The web client uses local storage for client-side features such as preferences, quality-of-life settings, favorites/team-planner data, and reconnection/session-related values.

7) Technical and security data

We process technical request and service data necessary to operate and protect the service, including authentication checks, moderation actions, error logging, and anti-abuse/security operations.

How We Use Information

We use data to:

1. Authenticate users and secure account access.
2. Provide game functionality, matchmaking/lobbies, and progression features.
3. Show profile, leaderboard, and history-related features.
4. Run moderation and trust/safety actions (for example searching chat for moderation, renaming accounts, or applying bans/unbans by authorized roles).
5. Process and moderate community bot submissions.
6. Maintain, debug, monitor, and protect service reliability.
7. Comply with legal obligations and enforce these terms.

Legal Bases (Where Applicable)

Depending on your location, legal bases may include:

1. Performance of a contract (providing the game/service).
2. Legitimate interests (security, moderation, abuse prevention, and service operation/improvement).
3. Consent (where required by law).
4. Legal obligation.

Sharing and Third Parties

We do not sell personal information.

We use third-party providers to operate the service, including:

• Firebase/Google services for authentication and related infrastructure.
• Hosting/network infrastructure providers.
• Optional Discord webhooks (if configured by operators) for operational/moderation notifications.

We may also disclose information when required by law or to protect users and the service.

Data Retention

Retention depends on data type and operational need. Current implementation examples include:

• Chat messages are configured with a 7-day TTL in the chat model.
• Detailed game history records are periodically cleaned up (configured at about 30 days).

Other account/profile records are retained while needed to operate the service, enforce rules, resolve disputes, and comply with legal obligations.

Account Deletion and Effect

The app includes an in-product account deletion action. Under current server logic, this deletes the UserMetadata record and disconnects the session.

Deleting that record does not automatically guarantee immediate deletion of every related record across all systems (for example authentication-provider records or previously created history/chat records), unless removed by separate processes.

For additional deletion requests, contact: [email protected]

Your Rights

Depending on your location, you may have rights to request access, correction, deletion, restriction, objection, or portability.

To submit a request, contact: [email protected]

Security

We apply reasonable technical and organizational safeguards. No system can be guaranteed fully secure.

International Transfers

Your data may be processed outside your country. Where required, we apply appropriate transfer safeguards.

Children

The service is not intended for children under 13 (or the minimum digital age in your jurisdiction). If you believe a child provided data in violation of this policy, contact us.

Changes To This Policy

We may update this Privacy Policy. Updates are posted at:

https://pokemon-auto-chess.com/privacy-policy

Contact

Privacy questions and requests:

[email protected]