Privacy Policy for BerryBreach

1. Introduction

Welcome to BerryBreach ("we", "us", "our", or "BerryBreach"). We are committed to protecting the privacy of our users ("user," "you," or "your"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you download, install, access, or use our BerryBreach desktop application (the "Application") and any related services, including our website and API (collectively, the "Services").

Please read this Privacy Policy carefully. By using the Services, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Services.

This Privacy Policy should be read in conjunction with our Terms of Service.

2. Information We Collect

We may collect information about you in a variety of ways when you use our Services. The information we may collect includes:

• Personal Data:
  • Discord Account Information: When you choose to authenticate or log in to BerryBreach using your Discord account, we collect your Discord User ID. We may also receive your Discord username/tag and email address if provided by Discord's API and necessary for account creation, authentication, communication, and support purposes within our Services. The specific information shared by Discord is subject to your Discord privacy settings and Discord's own privacy policy.
  • IP Address: We may collect your IP address when you use our Services (e.g., interact with our API server). This is used for security purposes such as abuse prevention (e.g., detecting suspicious activity, rate limiting API requests), for diagnostic and troubleshooting purposes, and to determine general geographic location for analytics (e.g., country-level).
• Transaction Data:
  • When you purchase credits or other paid features within the Application, payments are processed by our third-party payment processor, Stripe. We do not directly collect, store, or have access to your full credit card details or other sensitive payment information. Stripe handles this information directly. However, we may receive transaction confirmation details from Stripe, such as the amount paid, date of transaction, a unique transaction identifier, and partial payment information (like the last four digits of a card or card type) for the purposes of managing your credits, providing customer support regarding transactions, and for our internal accounting and record-keeping. For more details, please review Stripe’s Privacy Policy.
• Usage Data & Application Interaction:
  • We may collect information about how you use and interact with the Application and our Services. This may include features accessed, actions taken within the Application (e.g., performing an account check), usernames of accounts checked (for the purpose of tracking checks against your credit balance and for internal logging if an error occurs during a check), timestamps of activity, errors encountered, crash reports, and general usage patterns or statistics. This data is primarily used in an aggregated and/or anonymized form to improve our Services, monitor performance, identify and fix issues, and enhance user experience. Passwords for third-party accounts (such as Animal Jam Classic accounts) are not part of this collected Usage Data.
• Device and Application Information:
  • We may collect basic information about the device on which the Application is installed and about the Application itself, such as device operating system, application version, and unique identifiers generated by the Application for installation tracking or error reporting. This helps us provide support and improve compatibility.

Important Note on Third-Party Account Credentials (e.g., Animal Jam Classic): When you input credentials (username and password) for a third-party account (such as an Animal Jam Classic account) into the Application for the purpose of performing a check, these credentials are used by the Application on your device to attempt to communicate with the third-party service. We do not knowingly collect, store on our servers, or log these third-party passwords beyond their temporary, ephemeral use in your computer's volatile memory (RAM) during an active check session initiated and controlled by you. Once the check is complete or the session ends, these passwords are not designed to be retained by our Application or transmitted to our servers. You are responsible for the security of credentials you input into the Application.

3. How We Use Your Information

Having accurate information permits us to provide you with a smooth, efficient, secure, and customized experience. Specifically, we may use information collected about you via the Application and Services to:

• Create, maintain, and manage your BerryBreach account.
• Authenticate your access to the Application and Services.
• Process payments for credit packages and manage your credit balance.
• Fulfill your requests for products, services, and information.
• Provide customer support, troubleshoot issues, and respond to your inquiries or requests.
• Monitor and analyze usage, trends, and performance to improve the Application, Services, and overall user experience.
• Develop new products, services, and features.
• Prevent fraudulent transactions, monitor against theft or unauthorized activity, and protect against criminal activity, abuse of our Services, or violations of our Terms of Service.
• Ensure the security and integrity of our Services, including debugging and repairing errors.
• Comply with applicable legal and regulatory requirements, such as tax obligations or responding to lawful requests from authorities.
• Communicate with you about your account, transactions, or important updates to our Services or policies (e.g., service-related announcements).

4. Disclosure of Your Information

We are committed to maintaining your trust, and we want you to understand when and with whom we may share the information we collect. We do not sell, trade, rent, or otherwise share your Personal Data with unrelated third parties for their direct marketing purposes.

We may share information we have collected about you in the following situations:

• With Service Providers: We may share your information with trusted third-party vendors, service providers, contractors, or agents who perform services for us or on our behalf and require access to such information to do that work. Examples include:
  • Payment processing (e.g., Stripe).
  • Data hosting, cloud computing, and infrastructure provision (e.g., DigitalOcean for our API server and database).
  • Customer support tools or platforms.
  • Analytics services (data is typically anonymized or aggregated).
  • Error tracking and crash reporting services.
  These service providers are contractually obligated to protect your data, maintain its confidentiality, and use it only for the specific purposes for which it was disclosed to them and in accordance with our instructions.
• By Law or to Protect Rights: If we believe the release of information about you is necessary to: (a) comply with any applicable law, rule, regulation, legal process, or governmental request; (b) enforce our Terms of Service or other agreements or policies; (c) investigate or remedy potential violations of our policies; or (d) protect the rights, property, and safety of BerryBreach, our users, or others, we may share your information as permitted or required. This may include exchanging information with other companies and organizations for fraud protection and credit risk reduction.
• Business Transfers: In connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company, your information may be transferred as part of that transaction. We will notify you via a prominent notice on our service of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.
• Aggregated or Anonymized Data: We may share aggregated or anonymized information, which does not directly identify you, with third parties for various purposes, including research, analysis, service improvement, or to understand usage trends.
• With Your Consent: We may disclose your personal information for any other purpose with your explicit consent.

5. Data Security

We implement and maintain reasonable administrative, technical, and physical security measures designed to help protect your personal information from unauthorized access, use, disclosure, alteration, or destruction. We use measures such as data encryption (where appropriate), access controls, and secure software development practices.

While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission over the Internet or method of electronic storage can be guaranteed to be 100% secure. Therefore, we cannot guarantee absolute security. Any information disclosed online is vulnerable to interception and misuse by unauthorized parties. You transmit personal information at your own risk.

6. Data Retention

We will only retain your personal information for as long as it is necessary to fulfill the purposes for which it was collected, as outlined in this Privacy Policy, including for the purposes of satisfying any legal, accounting, or reporting requirements, or to resolve disputes.

Generally, this means we will keep your account information as long as your account is active. Transaction data may be kept for longer periods as required by financial regulations. Usage data that is anonymized or aggregated may be kept indefinitely for analytical purposes.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it. If this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

You may request the deletion of your account and associated personal data by contacting us as described in Section 11 ("Contact Us"). We will respond to such requests in accordance with applicable law.

7. Your Privacy Rights and Choices

Depending on your jurisdiction (e.g., if you are in the European Economic Area (EEA), UK, California, etc.), you may have certain rights regarding your personal information. These rights may include:

• The right to access: You may have the right to request copies of the personal data we hold about you.
• The right to rectification: You may have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
• The right to erasure (or "right to be forgotten"): You may have the right to request that we erase your personal data, under certain conditions.
• The right to restrict processing: You may have the right to request that we restrict the processing of your personal data, under certain conditions.
• The right to object to processing: You may have the right to object to our processing of your personal data, under certain conditions, particularly for direct marketing purposes or processing based on legitimate interests.
• The right to data portability: You may have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• The right to withdraw consent: If we are processing your personal information based on your consent, you have the right to withdraw your consent at any time.
• The right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority if you believe that our processing of your personal information infringes applicable law.

To exercise any of these rights, please contact us using the contact details provided in Section 11 ("Contact Us"). We will respond to your request within the timeframes required by applicable law. We may need to verify your identity before processing your request.

Please note that some of these rights may be limited, for example, if fulfilling your request would adversely affect other individuals, or if we are required by law to retain your information.

8. Children's Privacy

Our Services are not directed to, and we do not knowingly collect personal information from, individuals under the age of 13 (or the relevant minimum age in your jurisdiction if it is higher). If we become aware that we have inadvertently collected personal information from a child under the age of 13 without verifiable parental consent, we will take steps to delete such information from our records as soon as possible.

If you are a parent or guardian and believe that your child under 13 has provided us with personal information without your consent, please contact us using the details in Section 11 ("Contact Us").

9. Cookies and Similar Tracking Technologies

Our desktop Application itself generally does not use cookies in the traditional web browser sense. However, when you interact with our Services, certain technologies may be employed:

• Third-Party Payment Processor: Our third-party payment processor, Stripe, may use cookies or similar tracking technologies on their checkout pages to process payments and prevent fraud. We encourage you to review Stripe’s privacy policy for more information on their practices.
• Website/API Interactions: If you interact with any associated websites or our API, standard web technologies like cookies, local storage, or server logs might be used for session management, authentication, analytics, and security. These would be used in line with the purposes outlined in this policy.

We do not currently respond to Do Not Track (DNT) signals for our website or API as there is no industry-standard approach for DNT signals.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time in order to reflect, for example, changes to our data practices, or for other operational, legal, or regulatory reasons. If we make material changes to this Privacy Policy, we will notify you by posting the updated policy on this page and updating the "Last Updated" date at the top. We may also provide notice through the Application or via other communication channels, such as email if we have your email address, if the changes are significant.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

11. Contact Us

If you have any questions, concerns, requests regarding this Privacy Policy, our data practices, or your personal information, please do not hesitate to contact us:

• Via our official Discord server: https://discord.gg/Nu2eE6d38a

We will endeavor to address your concerns promptly and effectively.