Privacy Policy – EazyQuizy
Effective date: June 13, 2026 · Last updated: June 13, 2026
This Privacy Policy describes how data is processed in the EazyQuizy mobile application (hereinafter the "App").
1. Data controller
The controller of your personal data is:
- Company name: Jerzy Kozieł Digital Consulting
- Address: Aleja Kasztanowa 71A/21, 30-238 Kraków, Poland
- NIP / VAT EU: PL 7372175225
- Contact e-mail: app@eazyquizy.app
2. Scope of data collected
The App has been designed around the principle of data minimization and does not require account registration. While you use the App, we collect only:
- Nickname and language settings: The nickname chosen by the user and language preferences are stored locally on the device. The App may read the operating system's default language in order to automatically adjust the interface. The nickname may be used temporarily during multiplayer sessions to identify the player.
- Gameplay data: Quiz results, user answers, game progress, and random, temporary game room identifiers.
- Technical data (including IP addresses): We process IP addresses in order to limit the number of connections (rate limiting) from a single address, which helps prevent abuse, attacks (e.g. DDoS), and maintain smooth server operation. In addition, IP addresses and basic server logs are processed by the infrastructure provider (OVHcloud) to ensure the security and stability of the application. This data is not used to directly identify the user.
3. Purposes of processing
We process data for the following purposes:
- Providing the App's services, including running and verifying gameplay and adjusting the interface language.
- Enabling real-time multiplayer gameplay and maintaining session stability.
- Ensuring infrastructure security and preventing abuse (including limiting the number of connections based on IP addresses).
4. Legal basis for processing
The legal basis for processing data is:
- Necessity for the performance of a contract (Art. 6(1)(b) GDPR) – to the extent necessary for the proper functioning of the App, its features (including language adjustment), and game operation.
- The controller's legitimate interest (Art. 6(1)(f) GDPR) – to the extent of ensuring stability, security (including analysis of IP addresses for connection limiting), and maintenance of the technical infrastructure.
5. Profiling, advertising, and analytics
The EazyQuizy app:
- Does not profile users or study their behavior.
- Does not use behavioral (interest-based) advertising.
- Does not use advertising identifiers (IDFA/AAID) or third-party tracking systems (SDKs).
- Does not perform cross-app or cross-website tracking.
The App does not share user data with any third parties for advertising or analytics purposes.
6. Data sharing
Data may be transferred only to:
- The hosting service provider (OVHcloud) – OVHcloud acts as an independent infrastructure service provider. Data is transferred only to the minimal technical extent necessary to handle connections, rate limiting, and multiplayer gameplay.
Information on data transfers: All servers are located within the European Economic Area (EEA). Data is not transferred outside the EEA, nor sold/shared with third parties for marketing purposes (in accordance with CCPA: "do not sell / do not share").
7. Access to device features (Camera)
Access to the camera is optional and used solely to scan QR codes in order to join a game room.
- The user may decline camera access – in that case it is possible to join a game manually without using a QR code.
- The camera image is processed solely locally on the user's device and is not saved, transmitted, or stored.
8. Data retention period
We retain data only for as long as is absolutely necessary:
- Session and gameplay data (multiplayer): Automatically deleted from the server once the game session ends.
- Nickname and language settings: Stored in the device's memory until the App is uninstalled or its local data is cleared.
- IP addresses and technical server logs: IP addresses used for limiting the number of connections (rate limiting) are processed only in real time and short-term. Basic technical logs are stored by the hosting provider solely for security purposes.
9. User rights
The user has the right to:
- Access their data, rectify it, or restrict its processing.
- Erasure of data ("the right to be forgotten") – since the App does not require creating a user account, deleting any locally stored data (e.g. nickname, language settings) is done directly by uninstalling the App.
- Object to processing.
To exercise your rights or if you have any questions, contact us at: app@eazyquizy.app
Users within the EEA have the right to lodge a complaint with their local supervisory authority (in their country of residence) or with the authority competent for the controller: President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00-193 Warszawa, Poland (www.uodo.gov.pl).
10. Age of users
The App is intended for users who are at least 13 years old. We operate in compliance with the requirements of the GDPR and the U.S. Children's Online Privacy Protection Act (COPPA). We do not knowingly collect data from children under 13. If you become aware that a child has provided us with data without a guardian's consent, contact us – we will delete it promptly.
11. Security measures
We apply, among others:
- Encryption of data transmission (TLS protocols).
- Server safeguards compliant with GDPR requirements.
- Technological barriers, such as limiting the number of connections (rate limiting), protecting against DDoS attacks.
- Limited access to data, granted only to authorized persons.
12. Notification of changes to the Privacy Policy
If changes are made to the Privacy Policy, users will be informed:
- Directly within the App.
- At the permanent, public URL where this document is made available.