Security & Privacy

Your trust is our foundation. This policy details how Fun Circle Games protects and handles your personal information.

Last Updated: May 27, 2026Version 2.1

1. Introduction and Scope

Fun Circle Games ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at funcirclegames.com and use our Creator Studio simulation software (collectively, the "Services").

This policy applies to all users of our Services globally, including those in the United Kingdom (UK), European Economic Area (EEA), and the United States (US). We process personal data in accordance with the GDPR, the UK GDPR, the Data Protection Act 2018, and relevant US state privacy laws (such as the CCPA/CPRA).

🔒 We do not sell personal information to third parties.

2. Information We Collect

A. Account & Newsletter Information

Basic CredentialsEmail address, username, display name, and passwords provided during registration.
Account SettingsAccount type, active plan, billing status, and profile preferences.
Consent DataNewsletter subscription status (opt-in/opt-out preferences), consent timestamps, consent sources (e.g. signup flow, settings panel, wishlist), and communication preferences.
Uploaded Creator AssetsPhysics project configuration files, custom audio files, MIDI sequences, and exported video metadata.

B. Technical & Program Information

Network & Location MetadataIP addresses and corresponding approximate geographic regions (country/state/city).
Device & Browser detailsUser agent, browser type, operating system, screen resolution, and hardware capabilities.
Referral & Origin DataReferrer headers, UTM marketing tags, and source paths (e.g., direct, YouTube, Instagram).
Beta Tester DataBeta enrollment status, diagnostic reports, hardware configuration details, testing usage metrics, and survey responses (followers, platform preferences, creator experience).

3. How & Why We Use Your Data

We process your personal information for the following specific and transparent reasons:

Deliver Simulation CoreTo compile, render, save, and export your physics simulation loops.

Manage SubscriptionsTo handle subscription access tiers, trial configurations, and invoices via Paddle.

Transactional MessagingTo send one-time passcodes, security notifications, invoice receipts, and beta invites via Resend.

Marketing CommunicationsTo distribute newsletters, product upgrades, and beta program announcements (strictly subject to optional user opt-in).

Beta Quality AssuranceTo evaluate candidate profiles from wishlist surveys and analyze client-side hardware/software diagnostics to fix physics bugs.

Security & Abuse PreventionTo verify sessions with CAPTCHA validation (Cloudflare Turnstile), track geographic origin to detect double-login exploits, and prevent automated spam.

4. Legal Basis (UK/EEA/Global)

Contractual Necessity

Required to initialize accounts, process premium subscriptions, and host projects.

Legal Obligation

Required for tax tracking, invoicing standards, and anti-fraud protocols under corporate law.

Legitimate Interests

To monitor system loads, enhance the rendering engine, optimize frame rates, and defend the network.

Consent

Where you have explicitly opted into email marketing campaigns or wishlist surveys. You may withdraw consent at any time.

5. Data Sharing & Third Parties

We share specific information with trusted third-party service providers solely to operate our software. We only document services actually integrated and active on the platform.

Cloudflare Pages & R2

Web hosting, serverless edge functions, and secure storage for simulation saves, custom audio, and video exports.

Cloudflare Turnstile

Non-intrusive CAPTCHA checks to block bots on login, sign-up, and password reset screens.

Paddle

Merchant of Record, processing payments, subscription renewals, billing address validation, and VAT compliance.

Resend

Transactional email infrastructure, delivering OTPs, invoice details, and opt-in updates.

Google OAuth API

Authentication service enabling secure, passwordless account creation and profile details mapping.

6. Data Retention Policies

We store collected information for varying durations depending on utility, legal requirements, and account status:

Data Category	Retention Duration	Purpose & Trigger
Account Data	Lifetime of the Account	Retained to provide services. Deleted within 30 days of explicit account closure requests.
Project Configs & Assets	Active Account Term	Cloud saves are preserved. Inactive accounts (no logins for 18 months) may have projects archived or deleted.
Invoices & Billing Info	7 Years	Mandated for corporate accounting, audits, and VAT taxation audits.
Technical & IP Logs	90 Days	Deleted automatically. Kept for traffic monitoring, security logs, and rate-limiting diagnostics.
Consent & Preference Records	5 Years post-account closure	Retained to prove regulatory compliance (GDPR/CCPA opt-in consent histories).
Beta & Survey Submissions	2 Years post-program close	Kept for development feedback analysis and product optimization history.

7. Your Rights (GDPR, UK GDPR & US State Laws)

Access

Request a copy of all personal information we store about you in a clear format.

Rectification

Correct inaccurate username details, display names, or preference parameters.

Erasure

Request deletion of your profile, projects, and email records where no legal override exists.

Opt-out

Decline marketing newsletters, or withdraw consent to wishlist survey data processing.

Data Portability

Export raw simulation project files and account history logs for portability.

Non-Discrimination

US residents will not face service throttling or price hikes for exercising privacy rights.

Email [email protected] featuring "Data Rights Request" to exercise these rights.

8. Cookies & Local Storage Policy

We use cookies and local storage (such as IndexedDB and localStorage) to run core session features, remember simulation configuration presets, verify payments with our billing processor, and analyze origin traffic parameters.

Essential login tokens, anti-CSRF protections, and checkout verification cannot be disabled. To learn more about how we utilize cookies and how you can manage your preferences, please consult our detailed Cookie Policy.

View Cookie Policy

9. Beta Tester Data & Diagnostics

By participating in our Beta Program, we collect supplementary demographic information (demographics, followers, creator platforms) and technical runtime data (average frame rates, canvas WebGL memory logs, physics calculation thread timeouts) to debug simulation engines.

For comprehensive information regarding beta program terms, responsibilities, and data collection procedures, please view our full Beta Testing Terms page.

View Beta Terms

10. Children's Privacy

Service Audience: Fun Circle Games is software platform. Our Services are not directed to, or intended for, children under the minimum age required to consent to data processing in their jurisdiction (such as children under 13 in the United States, or under 16 in certain European jurisdictions). Users must meet these age requirements to create an account or use our Services.

Data Collection and Account Removal: We do not knowingly collect, store, or process personal information from children below the applicable age threshold. If we discover that a minor under the minimum age has provided us with personal data, we will take steps to delete that information and close the associated account as quickly as possible.

Parent and Guardian Rights: If you are a parent or legal guardian and believe your child has provided us with personal information without your consent, please contact us immediately at [email protected]. We will investigate reasonable requests and take appropriate actions to purge the data and close any corresponding account.

11. Contact
Information

Questions about your data or security? Our dedicated team is ready to assist you.

Support Team[email protected]

General Inquiries[email protected]