Privacy Policy

Effective: May 18, 2026 Last updated: May 18, 2026 Contact: [email protected]

1. Introduction

This Privacy Policy explains how Clash Companion ("we", "us", "our") collects, uses, and shares information when you use our mobile application (the "App") and related services (collectively, the "Services").

Developer: Zidan Codes
Location: Amman, Jordan

Fan Content Disclaimer: This App is an unofficial, fan-made companion for Clash of Clans. We are not affiliated with, endorsed by, or sponsored by Supercell Oy. "Clash of Clans" and all related trademarks, logos, and game assets are the property of Supercell Oy. This material is unofficial and is not endorsed by Supercell. For more information see Supercell's Fan Content Policy: www.supercell.com/fan-content-policy

2. Privacy Summary (Quick Overview)

No account required: You can use the App without creating an account.
Analytics, Crash Reporting & Performance Monitoring: We use analytics, crash reporting, and app performance monitoring tools (such as Firebase Analytics, Firebase Crashlytics, and Firebase Performance Monitoring) to understand how users interact with the App, measure startup and loading performance, improve features, and ensure stability and reliability.
Minimal data collection: We collect only basic device and usage data for app functionality and improvement.
Local storage: Most of your preferences and data are stored locally on your device.
Push notifications (optional): If you allow notifications, we collect a push notification token (and a hashed device identifier) to deliver alerts and process deletion requests.
Advertising: The App displays ads through Google AdMob and mediation partners (including Meta Audience Network, Unity Ads, and ironSource/LevelPlay). You can control ad personalization in Privacy Settings.
No data selling: We do not sell your personal information to third parties.
Your rights: You can request access to or deletion of your data in the App's Privacy Settings or by contacting us. Some privacy-related preferences may be available depending on platform capabilities.

3. Information We Collect

GDPR & CCPA Compliance – App Usage and Diagnostics: In compliance with GDPR (Europe), CCPA (California), and Google Play’s privacy requirements:

App Usage & Diagnostics: The App uses analytics, crash reporting, and performance monitoring tools (such as Firebase Analytics, Firebase Crashlytics, and Firebase Performance Monitoring) to understand how users interact with the App, improve features, and ensure stability and reliability. These tools may automatically collect limited usage, performance, network timing, and technical diagnostic information in accordance with applicable laws and platform policies.
Advertising: Advertising is displayed to help keep the App free. Ads may be non-personalized by default, and certain limited device or network information (such as IP address or basic device signals) may still be processed by advertising partners for ad delivery, fraud prevention, and measurement. We do not access or store those IP addresses. Where available, you can manage ad personalization through your device settings or in-app privacy controls. Advertising SDKs may process data independently in accordance with their own privacy policies.
User Controls: Some privacy-related preferences may be available through your device’s system settings (such as advertising personalization controls). The App does not provide individual feature-level opt-out toggles for analytics, diagnostics, or performance monitoring.
Transparency: We aim to provide clear information about our data practices in this Privacy Policy and to keep users informed about how analytics, diagnostics, performance, and advertising data are used within the App.

3.1 Information You Provide Directly

Feedback and Support: When you contact us for support or submit feedback or problem reports, we collect the content of your message and any contact information you provide. If you explicitly opt in, the App may also include limited technical information (such as app version, device model, operating system version, and a hashed device identifier) to help diagnose and resolve issues.
In-App Data: Any information you voluntarily input into the App (such as game statistics, notes, or preferences) is stored locally on your device and is not transmitted to our servers unless required for a specific feature.

3.2 Information Collected Automatically

When you use the App, we and our service providers may automatically collect:

Device Information: Device type, model, operating system version, unique device identifiers (hashed using SHA-256) representations used for diagnostics and data deletion requests; We do not store or use the raw Android ID or IDFV. In limited cases (such as diagnostics or data deletion requests), the App may derive a hashed device identifier (for example, using SHA-256) from system identifiers for identification purposes only.
Push Notification Data: If you enable push notifications, the App collects a push notification token associated with your device in order to deliver notifications. The token may be associated with a hashed device identifier to deliver notifications and process deletion requests. This token and hashed identifier may be transmitted to our backend services and to push delivery providers to enable notification delivery. We do not store or use the raw Android ID or IDFV. The token and hash are not used for advertising or profiling purposes, and you can disable notifications in your device settings.
Backend Service Data: The App communicates with our backend services to fetch content, submit feedback or reports, synchronize certain features, and deliver push notifications. These interactions may include IP address, request metadata, and limited device information necessary to operate the service.
Game-Related Identifiers: When using features such as player or clan tracking, the App may process game-related identifiers (such as player tags or clan tags) and transmit them to our services and/or third-party game data providers solely to retrieve and display the requested game information.
IP Address: The App does not read or send your public IP address directly. When you use online features (including feedback, bug reports, and feature requests), our servers receive your IP address automatically as part of standard network requests (for example, in server logs). Advertising partners may also receive IP addresses when serving ads; those are processed on their systems and are not shared with us. We use IP addresses only for the following limited purposes:
1. Security and fraud prevention to detect and prevent malicious activity.
2. Rate limiting and spam prevention on feedback submissions to protect our services.
3. Approximate location inference (country or region level only - we do NOT track precise GPS location), inferred by our servers or advertising partners from IP addresses to comply with regional requirements and support advertising delivery/measurement.
4. Analytics aggregation to understand general usage patterns.
5. Crash diagnostic context to help identify technical issues.
Retention: IP addresses in server logs are typically retained for up to 30 days and then rotated monthly via server log rotation, unless a longer period is required for security, troubleshooting, or legal compliance. If an IP address is stored with a feedback or report submission to prevent abuse or duplicates, it is retained only as long as the submission is kept and removed when that submission is deleted. We do not use IP addresses for precise geolocation, user profiling, or sell them to third parties.
App Usage Data: Information about how you interact with the App, including features accessed, screens viewed, buttons clicked, session duration, and frequency of use.
Performance Data: App performance metrics, crash reports, error logs, startup timing, screen rendering metrics, HTTP/S network timing data, and diagnostic information to help us identify and fix technical issues and improve responsiveness.
General Location: Approximate location (country or region level only) may be inferred by our servers or advertising partners from IP address or region settings (not precise GPS) to comply with regional requirements and support advertising delivery/measurement.

3.3 Advertising and Analytics Data

Important: The App currently displays advertisements to support development and keep the app free. The App displays advertisements through Google AdMob. Our advertising setup may also include mediation partners such as Meta Audience Network, Unity Ads, and ironSource/LevelPlay. These partners may collect and process information on their own systems for ad delivery and measurement, including IP addresses. We do not receive or store IP addresses from these partners. Information collected may include:

Advertising identifiers (such as Google Advertising ID or IDFA)
IP address and approximate location (collected by ad partners)
Device information and app usage patterns
App activity signals, including limited "apps on device" data where required by ad partners for fraud prevention, ad quality, and attribution
Ad interaction data (views, clicks, conversions)
Cookie data and similar tracking technologies

This data is collected and processed according to the privacy policies of our advertising partners. You can opt out of personalized ads through your device settings or in the app's Privacy Settings screen.

4. How We Use Your Information

We use the collected information for the following purposes:

Provide and Operate the App: To deliver core functionality and features of the Services.
Improve and Optimize: To analyze usage patterns, understand user preferences, and enhance the App's performance and user experience.
Performance Monitoring: To measure app startup, screen responsiveness, network request timing, and key loading flows so we can diagnose slowdowns and improve reliability.
Maintain and Troubleshoot: To monitor stability, identify crashes and bugs, fix technical issues, and ensure security.
Customer Support: To respond to your inquiries, feedback, and support requests.
Advertising: To display, personalize, and measure the effectiveness of advertisements. All ads comply with applicable laws and Google Play's monetization policies.
Analytics: To generate aggregated, anonymized statistics about App usage and performance.
Legal Compliance: To comply with applicable laws, regulations, legal processes, and enforce our Terms of Service.

We do not sell your personal information. We may share information in the following circumstances:

Service Providers: We share data with third-party service providers who help us operate the App, including:
- Cloud hosting and storage providers
- Analytics, crash reporting, and performance monitoring services (including Firebase Analytics, Firebase Crashlytics, and Firebase Performance Monitoring)
- Customer support and email services
Advertising Partners: To display and measure ads. See section 6 for details on specific partners.
Legal Requirements: When required by law, legal process, or government request; to protect our rights, property, or safety; to prevent fraud, abuse, or security threats.
Business Transfers: In connection with any merger, acquisition, sale of assets, or bankruptcy, your information may be transferred to the successor entity.
With Your Consent: We may share information for other purposes with your explicit consent.

6. Third-Party Services and SDKs

The App integrates with the following third-party services that may collect data:

Service Provider	Purpose	Data They May Collect
Google Play Services	Core Android functionality, app distribution, security, and updates.	Device identifiers, app diagnostics, and performance data as required by the platform.
Firebase Crashlytics v23.8.3	Stability monitoring, bug fixing, and crash reporting.	Crash traces, device state (battery, orientation), stack traces, and custom event breadcrumbs to identify technical issues.
Firebase Analytics v23.8.3	Usage analysis, feature optimization, and user behavior tracking.	App events (navigation patterns), screen views, session duration, and game-related information (such as in-game identifiers, progress, configuration data, or similar gameplay-related details) .
Firebase Performance Monitoring v23.8.3	Performance monitoring on supported Android builds, including app startup analysis, screen rendering analysis, HTTP/S request monitoring, and lightweight custom trace collection for key loading flows.	Performance trace durations, app startup timing, screen rendering metrics, HTTP/S request timing and payload size, app version, country/region, device and OS attributes, and custom trace metrics used to diagnose slow or failing app flows.
Google AdMob v16.0.1	Advertising (banner, interstitial, rewarded ads) and ad measurement.	Advertising ID (GAID), IP address, approximate location, ad interaction data, and app usage patterns.
Meta Audience Network (Mediation)	Bidding-based ad demand through AdMob mediation and ad delivery optimization.	Advertising ID, IP address, approximate location, device and app information, ad interaction/performance signals, and limited app activity signals (including apps on device data where applicable under partner policy).
Unity Ads (Mediation)	Bidding-based ad demand, ad delivery, and ad quality measurement through mediation.	Advertising ID, IP address, device/app information, ad events, diagnostics, and anti-fraud signals.
ironSource / LevelPlay (Mediation)	Bidding and demand mediation for ad serving, monetization optimization, and reporting.	Advertising ID, IP address, device/app information, ad performance data, diagnostics, and anti-fraud signals.
AppLovin MAX	Mediation platform for advertising, ad optimization, and analytics.	Advertising ID, IP address, device information, ad performance metrics, and mediation data.
RevenueCat v9.19.1	In-app purchase and subscription management, cross-platform subscription sync, and purchase receipt validation.	Purchase history (transaction receipts, purchase timestamps, product IDs), subscription status (active/expired/cancelled, renewal dates, trial periods), and app user identifiers (anonymous user IDs for subscription tracking across devices). RevenueCat does not collect payment information or personal identifiable information beyond what's necessary for subscription management.

Privacy Policies:

We configure third-party SDK integrations to align with Google Play requirements and keep this policy updated as integrations change. Each provider processes data under its own privacy policy.

7. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Here are specific retention periods for different types of data:

IP Addresses (server logs): Typically retained for up to 30 days and then rotated monthly via server log rotation, unless a longer period is required for security, troubleshooting, or legal compliance. IP addresses stored with feedback or report submissions are retained with those submissions until deletion.
Push notification tokens and device hash: Retained while notifications are enabled and for as long as needed to deliver notifications and handle deletion requests. Tokens may be disabled after extended inactivity (for example, 90 days).
Firebase Analytics Data: Retained for up to 14 months, in accordance with Firebase Analytics data retention settings, after which it is automatically deleted by Google’s systems.
Crash Reports (Crashlytics): Retained for up to 90 days or longer as necessary to investigate, resolve, and verify technical issues, after which the data is deleted or anonymized.
Performance Monitoring Data: Retained by Firebase in accordance with Google's operational retention and console availability practices for Performance Monitoring. We use the resulting reports only for performance analysis, issue diagnosis, and service improvement.
Diagnostic Logs: Retained for up to 90 days to allow for troubleshooting, security monitoring, and issue resolution.
Purchase History (RevenueCat): Retained for the duration of your subscription plus up to 1 year for accounting, tax compliance, and dispute resolution purposes.
Support Communications: Retained for up to 2 years from the date of last contact to provide ongoing support and to meet legal or compliance obligations.
Advertising Data: Managed by our advertising partners (such as Google AdMob) in accordance with their own data retention policies, which may range from approximately 6 to 24 months.
Local Device Data: Stored locally on your device until you uninstall the App or manually clear the App’s data through your device settings.

You can request deletion in the App's Privacy Settings. If the in-app request cannot be completed, contact us at [email protected].

8. Security

We implement reasonable technical, administrative, and physical safeguards designed to protect your information from unauthorized access, disclosure, alteration, and destruction. These measures include:

Encryption of data in transit using industry-standard protocols (HTTPS/TLS)
Secure storage practices for any server-side data
Regular security assessments and updates
Limited access to personal information by employees and contractors

However, please be aware that no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

9. Children's Privacy

The App is intended for general audiences and is not specifically directed at children under the age of 13 (or the minimum age required in your jurisdiction to provide consent for data processing).

We do not knowingly collect personal information from children under 13 without verifiable parental consent. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at [email protected], and we will take steps to delete such information.

If you are under 13 (or the applicable minimum age in your region), please do not use the App or provide any personal information without your parent or guardian's permission and supervision.

10. Your Privacy Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

10.1 Access and Portability

You have the right to request access to the personal information we hold about you and, in some cases, receive a copy in a portable format.

10.2 Correction and Update

You can request that we correct or update inaccurate or incomplete personal information.

10.3 Deletion (Right to Be Forgotten)

You can delete your personal information from our servers by following the in-app steps below, subject to certain legal exceptions (such as legal obligations or legitimate business interests). Per Google Play's requirements as of December 2025, users can request data deletion at any time.

Use the in-app Privacy Settings screen as the primary method. Email is available only as a fallback if the in-app flow cannot be completed. Because the App does not require accounts, we may ask you to confirm a device identifier (such as a hashed device ID or push notification token) to locate your data and protect against unauthorized deletion. If you use the email fallback, the App automatically pre-fills the email with the required hashed device ID.

When you confirm in-app deletion, the App immediately triggers the removal of your notification data from our active servers. Simultaneously, an internal request is generated to ensure any associated records (such as feedback or reports) are identified and purged. We complete this entire verification and deletion process within 30 days, unless a longer period is required by law.

10.4 Objection and Restriction

You may object to or request that we restrict certain processing of your personal information.

10.5 Advertising Controls

You can control personalized advertising through your device settings or within the app's Privacy Settings screen:

Android: Settings → Google → Ads → Opt out of Ads Personalization
iOS: Settings → Privacy → Advertising → Limit Ad Tracking

10.6 Consent

Where applicable, consent may be required by law for certain data processing activities. The App processes analytics, diagnostics, and advertising data as part of its normal operation in accordance with applicable laws and platform requirements.

How to Exercise Your Rights: To exercise any of these rights, submit a request in the App's Privacy Settings. If the in-app request cannot be completed, contact us at [email protected]. We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing your request.

11. International Data Transfers

Your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States and other jurisdictions where our service providers operate.

These countries may have data protection laws that differ from those in your country. When we transfer information internationally, we implement appropriate safeguards to protect your data, including:

Standard contractual clauses approved by the European Commission (for EEA transfers)
Adequacy decisions by the European Commission or other relevant authorities
Other legally approved transfer mechanisms

12. Additional Rights for California Residents

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Right to Know: You can request information about the categories and specific pieces of personal information we've collected, the sources, purposes, and third parties we've shared it with.
Right to Delete: You can request deletion of your personal information, subject to certain exceptions.
Right to Opt-Out: You can opt out of the "sale" or "sharing" of personal information (though we do not sell personal information).
Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA/CPRA rights.
Right to Correct: You can request correction of inaccurate personal information.
Right to Limit: You can limit the use and disclosure of sensitive personal information.

To exercise these rights, contact us at [email protected].

If you are in the European Economic Area (EEA) or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR) and UK GDPR:

Right to access, rectification, erasure, and restriction of processing
Right to data portability
Right to object to processing based on legitimate interests
Right to withdraw consent at any time
Right to lodge a complaint with your local data protection authority

Legal Basis for Processing: We process your data based on:

Performance of a contract (to provide the App)
Legitimate interests (to improve and secure the App)
Consent (for analytics and advertising, where required by applicable law)
Legal obligations (to comply with applicable laws)

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, new features (such as enabling advertising), or for other operational reasons.

When we make material changes, we will:

Update the "Last Updated" date at the top of this policy
Notify you through the App or by other reasonable means (such as email if we have your contact information)
In some cases, obtain your consent if required by law

We encourage you to review this Privacy Policy periodically. Your continued use of the App after changes are posted constitutes your acceptance of the updated policy.

15. Contact Us

If you have any questions, concerns, requests, or complaints about this Privacy Policy or our data practices, please contact us:

Email: [email protected]
Website: https://clashcompanion.com
Developer: Zidan Codes
Location: Amman, Jordan

We will respond to your inquiry within 30 days (or as required by applicable law).