Arbaa Privacy Policy

Last updated: 14 May 2026

Introduction

Arbaa is an iOS card game (Baloot) developed by Motasim Alsayed. This document explains the data the app collects, how it's used, where it's stored, and who it's shared with. We collect as little as possible and never ask you for personally identifying information.

Data We Collect

• Anonymous identifier: The app generates a random Anonymous Firebase Auth UID on first launch to associate your usage data. This identifier does not contain your name, email, or phone number.
• Crash reports: When the app crashes, we send technical crash logs (stack trace, device model, OS version) to Firebase Crashlytics.
• Usage analytics: Usage-related events (game started, game completed, win/loss, duration, rounds played, chosen settings such as theme and card design) via Firebase Analytics. Stored as numbers and strings with no identifying information.
• Game results: At the end of each game we store a Firestore document containing the anonymous UID, timestamp, outcome (win/loss), final scores, rounds played, and duration. These documents cannot be read by other clients.
• Purchases: If you buy a player via the App Store, we track this via RevenueCat so we can restore your purchases on your other devices. We never receive your payment card data — that stays with the App Store.
• Device attestation: We use Firebase App Check with Apple's DeviceCheck to prevent abuse by automated software. This does not collect any personal information about you.
• App version and OS: We log the app version and OS version with analytics events to understand which versions are in use.

What We Don't Collect

• Your name, email, phone number, or any directly identifying information.
• Your location (beyond what the App Store derives from your account settings).
• Contacts, photos, or any data from other apps on your device.
• Advertising identifier (IDFA). The app shows no advertisements in the current release.

How We Use the Data

• Improve the app and fix crashes.
• Understand which features are used most to prioritize development.
• Validate purchase transactions.
• Prevent automated abuse from fake accounts.

We do not sell your data and do not use it for advertising.

Where Data Is Stored

All Firebase data (anonymous identifier, game results, analytics, crash reports) is stored in the Google Cloud region me-central2 located in Dammam, Saudi Arabia. This means your data does not leave the Kingdom.

RevenueCat data (purchase history) is stored on RevenueCat's and Apple's servers per their respective policies.

Who We Share With

We use the following service providers as sub-processors:

• Google Firebase (Auth, Crashlytics, Analytics, Firestore, App Check) — to store data and run app services.
• Google BigQuery — receives analytics events for internal analysis.
• RevenueCat — manages in-app purchase records.
• Apple App Store — processes payments and validates receipts.

We do not share your data with anyone else and do not sell it.

Children

The app is designed for a general audience and is not targeted at children under 13. We do not knowingly collect information from children.

Your Rights

• Right to deletion: Because we do not hold your personal data, deleting the app from your device severs your link to the anonymous identifier. If you want your data tied to this identifier explicitly deleted from our servers, contact us at the email below and mention the identifier (you can find it in Settings → Diagnostics in dev builds, or ask us to help).
• Right to access: This policy describes everything we collect. If you want a copy of your data tied to your identifier, contact us.

Changes to This Policy

We may update this policy from time to time. The "last updated" date at the top will change. For material changes, we will notify you via an in-app message.

Contact Us

For any privacy questions:
Email: ArbaaApp@gmail.com