This Privacy Policy explains how ALESUND TEAM, S.L. (“Alesund Team”, “we”, “us”, or “our”) collects, uses, stores, shares, and protects personal data when you use Tarkin Rewards, our mobile application, website, games, rewards program, loyalty points system, redemption flow, customer support services, and related features (together, the “Service”).
The Service is operated by:
ALESUND TEAM, S.L.
Jacometrezo 15, 6ª Floor
28013 Madrid
Spain
CIF: B-88194014
Trade and Companies Registry: Folio 153, Section 8, Sheet M681827
For privacy, legal notices, and formal complaints, you may contact us at: [email protected].
For general support, you may contact us at: [email protected].
By using the Service, you acknowledge that your personal data will be processed as described in this Privacy Policy.
1. Scope of This Privacy Policy
This Privacy Policy applies to:
- the Tarkin Rewards mobile app;
- the website located at tarkinstudios.com;
- reward flows, Loyalty Coins, redemption flows, and payout-related features;
- selected games developed, published, or operated by us when they are connected to Tarkin Rewards;
- customer support and communications with us;
- analytics, advertising, fraud prevention, attribution, and technical systems used to operate the Service.
This Privacy Policy does not apply to third-party websites, apps, platforms, payment providers, payout providers, app stores, advertising networks, or services that we do not control. Those third parties may process your data under their own privacy policies.
2. Age Requirement
The Service is intended only for users who are at least 18 years old.
We do not knowingly collect personal data from children or minors. If we become aware that we have collected personal data from a person under 18, we may delete the data and close the account, unless we are legally required to retain certain information.
If you believe that a minor has provided us with personal data, please contact us at [email protected].
3. Personal Data We Collect
Depending on how you use the Service, we may collect the categories of personal data described below.
3.1 Account and Login Data
When you create or access your account, we may collect:
- email address;
- email verification code status;
- account ID;
- account creation date;
- login history;
- account status;
- country or region;
- language settings;
- communication preferences.
Login is currently performed through an email verification code.
3.2 Gameplay and Reward Activity Data
To operate Tarkin Rewards and validate rewards, we may collect data related to your activity in our games and apps, including:
- games installed or connected to your Tarkin Rewards account;
- levels, maps, milestones, stages, or progression goals reached;
- completed reward actions;
- pending, confirmed, rejected, reversed, or paid rewards;
- Loyalty Coins balance;
- daily bonus activity;
- session data;
- gameplay events;
- timestamps of reward-related actions;
- technical validation events;
- offer eligibility and completion status.
3.3 Advertising and Rewarded Ad Data
If you watch rewarded ads or interact with ads, we may collect:
- ad impression data;
- rewarded ad completion data;
- ad placement and campaign identifiers;
- ad network or mediation identifiers;
- ad revenue data associated with your device or user profile;
- timestamps and frequency of ad views;
- fraud prevention signals related to ad activity.
The availability of ads may depend on your device, region, consent choices, ad network availability, and technical factors.
3.4 Purchase and In-App Purchase Data
If you complete an eligible in-app purchase linked to a reward, we may collect:
- purchase event data;
- product identifier;
- purchase value;
- currency;
- timestamp;
- platform or app store purchase validation status;
- refund, chargeback, cancellation, or reversal status;
- reward amount linked to the purchase;
- fraud prevention data related to the transaction.
We do not collect or store your full payment card details. Payments made through Apple App Store, Google Play, PayPal, card networks, or third-party payment providers are processed by those third parties according to their own terms and privacy policies.
3.5 Redemption and Payout Data
When you request a redemption or cashout, we may collect or process:
- email address;
- PayPal email address;
- selected redemption method;
- redemption amount;
- Loyalty Coins redeemed;
- payout status;
- payout provider transaction references;
- country or region;
- payout history;
- payout errors or rejection reasons;
- information required by our payout provider for compliance, fraud prevention, payment processing, tax, sanctions screening, anti-money laundering checks, or legal obligations.
Redemptions are processed by third-party payout providers, including Payouts.com, or any replacement or additional provider we may use in the future.
Depending on the payout method, country, amount, provider rules, risk checks, or applicable law, you may be asked to provide additional information directly to the payout provider.
3.6 Device and Technical Data
We may collect technical data from your device and app usage, including:
- device type;
- operating system;
- app version;
- device identifiers;
- advertising identifiers, where permitted;
- IP address;
- approximate location derived from IP address;
- time zone;
- crash logs;
- diagnostic data;
- network information;
- app performance data;
- SDK events;
- install and attribution data;
- push notification token, if push notifications are enabled.
3.7 Fraud Prevention and Security Data
Because the Service involves rewards with potential real-world value, we may process data to detect and prevent fraud, abuse, manipulation, and unauthorized activity.
This may include:
- duplicate account signals;
- device integrity signals;
- IP, VPN, proxy, or emulator indicators;
- suspicious activity patterns;
- purchase refund or chargeback patterns;
- ad manipulation signals;
- reward abuse signals;
- account risk scoring;
- manual review notes;
- blocked account or device identifiers;
- support history related to disputes or fraud investigations.
3.8 Customer Support and Communications Data
If you contact us, we may collect:
- your email address;
- support request content;
- screenshots or attachments you provide;
- account identifiers;
- device or app information;
- communication history;
- issue status and resolution notes.
3.9 Website and Cookie Data
When you visit our website, we may collect data through cookies, pixels, tags, log files, or similar technologies, including:
- IP address;
- browser type;
- device type;
- pages visited;
- referral source;
- session duration;
- cookie preferences;
- analytics events.
Where required by law, we will request your consent before using non-essential cookies or similar technologies.
4. Data We Do Not Intentionally Collect
We do not intentionally collect sensitive personal data unless required for a specific legal, security, fraud prevention, or payout compliance purpose.
We do not intentionally collect:
- precise GPS location unless expressly requested and consented to;
- biometric data for identification purposes unless expressly required and legally permitted;
- health data;
- religious or political beliefs;
- full payment card numbers;
- government ID documents unless required by a payout provider, compliance process, or legal obligation.
If a third-party payout provider requires additional identity verification, that provider may collect and process such data under its own privacy policy.
5. How We Use Personal Data
5.1 To Provide and Operate the Service
We use data to:
- create and manage accounts;
- authenticate users by email verification code;
- operate the Tarkin Rewards app;
- connect reward activity to eligible games;
- calculate, display, confirm, reject, or reverse Loyalty Coins;
- show available reward opportunities;
- process redemptions and payouts;
- provide customer support;
- maintain app functionality.
5.2 To Validate Rewards
We use data to:
- verify that a required level, map, milestone, ad view, purchase, or daily bonus action was completed;
- determine whether a reward is eligible;
- prevent duplicate or invalid rewards;
- detect refunded, cancelled, reversed, or charged-back purchases;
- confirm whether a reward should be pending, approved, rejected, or deducted.
5.3 To Process Redemptions
We use data to:
- send redemption requests to payout providers;
- process PayPal, prepaid Visa card, or other supported payout methods;
- verify payout status;
- resolve redemption issues;
- comply with payout provider requirements;
- prevent fraud and abuse.
5.4 To Prevent Fraud and Protect the Service
We use data to:
- detect bots, automation, emulators, fake accounts, device farms, VPN abuse, proxy abuse, ad manipulation, purchase fraud, and reward abuse;
- investigate suspicious activity;
- suspend or terminate accounts that violate our Terms of Use;
- block abusive devices, accounts, or activity;
- protect users, our systems, our partners, and our business.
5.5 To Improve and Analyze the Service
We use data to:
- analyze app performance;
- understand user engagement;
- measure reward funnel performance;
- improve game progression and reward design;
- fix bugs and crashes;
- optimize user experience;
- test new features;
- measure marketing and acquisition performance.
5.6 To Show Ads and Measure Advertising
Where permitted by law and platform rules, we may use data to:
- show ads;
- measure ad impressions and rewarded ad completions;
- prevent ad fraud;
- attribute installs and events;
- evaluate campaign performance;
- improve ad delivery.
On iOS, where required, tracking for advertising purposes will be subject to Apple’s App Tracking Transparency framework.
5.7 To Communicate With You
We may use your email or in-app messages to:
- send verification codes;
- respond to support requests;
- notify you about account or reward issues;
- provide important service updates;
- notify you of changes to our Terms or Privacy Policy;
- send promotional or engagement messages where permitted by law.
You may opt out of non-essential marketing communications where applicable.
5.8 To Comply With Legal Obligations
We may use data to:
- comply with tax, accounting, consumer protection, payment, sanctions, anti-money laundering, or other legal obligations;
- respond to legal requests;
- enforce our rights;
- cooperate with regulators, courts, law enforcement, or public authorities where required or permitted by law.
6. Legal Bases for Processing Personal Data
If you are located in the European Economic Area, United Kingdom, Switzerland, or another jurisdiction requiring a legal basis, we rely on the following legal bases:
6.1 Performance of a Contract
We process data where necessary to provide the Service, manage your account, validate rewards, process redemptions, provide support, and enforce our Terms of Use.
6.2 Legitimate Interests
We process data based on our legitimate interests, including:
- fraud prevention;
- security;
- analytics;
- service improvement;
- reward validation;
- business operations;
- legal claims;
- preventing abuse of the Service.
We only rely on legitimate interests where those interests are not overridden by your rights and freedoms.
6.3 Consent
We may rely on consent for:
- non-essential cookies;
- certain advertising or tracking activities;
- push notifications;
- optional marketing communications;
- permissions requested by your device or platform.
You may withdraw consent at any time where processing is based on consent.
6.4 Legal Obligation
We process data where necessary to comply with applicable laws, regulations, court orders, tax obligations, payment rules, sanctions screening, or other legal requirements.
7. How We Share Personal Data
We may share personal data with the following categories of recipients.
7.1 Payout Providers
We may share data with Payouts.com and other payout providers to process redemptions, PayPal payments, prepaid Visa cards, compliance checks, fraud prevention, payout status updates, and support requests.
7.2 App Stores and Platform Providers
We may share or receive data from Apple App Store, Google Play, and related platform services for app distribution, purchase validation, refunds, fraud prevention, attribution, and compliance with platform rules.
7.3 Advertising Networks and Mediation Partners
We may share data with advertising networks, ad mediation platforms, attribution providers, and measurement partners to show ads, validate rewarded ad completions, measure performance, prevent fraud, and attribute installs or events.
7.4 Analytics and Attribution Providers
We may use analytics and attribution providers to understand app performance, user engagement, technical issues, acquisition campaigns, and reward funnel behavior.
7.5 Fraud Prevention and Security Providers
We may share data with fraud prevention, security, device integrity, risk scoring, and abuse detection providers to protect the Service and validate rewards.
7.6 Hosting, Infrastructure, and Technical Providers
We may share data with cloud hosting providers, database providers, email delivery providers, monitoring providers, crash reporting tools, and other technical service providers that help us operate the Service.
7.7 Customer Support Providers
We may share data with support tools or service providers used to manage user requests, disputes, and account issues.
7.8 Group Companies and Affiliates
We may share data with companies within our corporate group where necessary for business operations, legal compliance, customer support, fraud prevention, analytics, or service management.
7.9 Legal Authorities and Compliance Recipients
We may disclose data to courts, regulators, law enforcement, tax authorities, public authorities, legal advisors, auditors, or other parties where required or permitted by law.
7.10 Business Transfers
If we are involved in a merger, acquisition, restructuring, financing, sale of assets, bankruptcy, or transfer of business, personal data may be transferred as part of that transaction, subject to applicable law.
8. International Data Transfers
We are based in Spain, but some of our service providers, payout providers, analytics providers, advertising partners, infrastructure providers, or group companies may process data in other countries, including the United States and other jurisdictions that may not provide the same level of data protection as your country.
Where required by law, we use appropriate safeguards for international data transfers, such as:
- Standard Contractual Clauses;
- adequacy decisions;
- contractual safeguards;
- technical and organizational security measures;
- provider due diligence.
9. Data Retention
We keep personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.
Retention periods may depend on:
- account status;
- reward and payout history;
- fraud prevention needs;
- tax, accounting, and legal obligations;
- dispute resolution;
- security requirements;
- technical backup cycles.
In general:
- account data is retained while your account remains active;
- reward and payout records may be retained for legal, accounting, tax, fraud prevention, and audit purposes;
- fraud prevention records may be retained where necessary to prevent repeated abuse;
- support communications may be retained for quality, dispute, and compliance purposes;
- technical logs may be retained for shorter periods unless needed for security, fraud, or legal purposes.
When data is no longer needed, we will delete, anonymize, or securely retain it only where legally required.
10. Your Privacy Rights
Depending on your country or region, you may have rights regarding your personal data.
These may include the right to:
- access your personal data;
- correct inaccurate data;
- delete your data;
- restrict processing;
- object to processing;
- withdraw consent;
- request data portability;
- opt out of certain marketing communications;
- opt out of certain advertising or tracking activities;
- lodge a complaint with a data protection authority.
To exercise your rights, contact us at: [email protected].
We may need to verify your identity before responding to your request.
Certain data may need to be retained where required for legal obligations, fraud prevention, accounting, tax, dispute resolution, security, or enforcement of our Terms of Use.
11. Rights for Users in the European Union
If you are located in the European Union, you may have rights under the General Data Protection Regulation, including access, rectification, erasure, restriction, objection, portability, and withdrawal of consent.
You also have the right to lodge a complaint with your local data protection authority.
In Spain, the competent authority is the Agencia Española de Protección de Datos (AEPD).
12. Additional Notice for United States Users
Depending on your U.S. state of residence, you may have additional privacy rights.
These may include the right to:
- know what personal information we collect, use, disclose, or share;
- access personal information;
- correct inaccurate personal information;
- delete personal information;
- opt out of certain targeted advertising, sale, or sharing of personal information;
- limit the use of sensitive personal information, where applicable;
- appeal a denied privacy request, where required by law.
We do not sell personal information for money.
However, some advertising, analytics, attribution, or measurement activities may be considered a “sale”, “sharing”, or “targeted advertising” under certain U.S. state privacy laws. Where required, we will provide appropriate opt-out mechanisms.
You may contact us at [email protected] to exercise applicable rights.
13. California Privacy Notice
If you are a California resident, this section provides additional information under the California Consumer Privacy Act, as amended by the California Privacy Rights Act.
Categories of Personal Information We May Collect
We may collect:
- identifiers, such as email address, account ID, device identifiers, IP address, and advertising identifiers;
- commercial information, such as purchase events, reward activity, redemption history, and payout records;
- internet or electronic network activity, such as app usage, ad interactions, session data, and event logs;
- geolocation information, such as approximate location derived from IP address;
- inferences, such as fraud risk signals, reward eligibility, and engagement patterns;
- sensitive personal information only where required for compliance, fraud prevention, or payout processing.
Sources of Personal Information
We may collect personal information from:
- you;
- your device;
- your use of the Service;
- our games and apps;
- app stores;
- payout providers;
- advertising networks;
- analytics and attribution providers;
- fraud prevention providers;
- customer support interactions.
Purposes
We use personal information for the purposes described in this Privacy Policy, including account management, reward validation, redemption processing, fraud prevention, analytics, advertising, customer support, legal compliance, and service improvement.
Disclosure
We may disclose personal information to service providers, payout providers, app stores, advertising partners, analytics providers, fraud prevention providers, hosting providers, support providers, group companies, legal authorities, and business transfer recipients.
Sale or Sharing
We do not sell personal information for money.
Certain advertising or analytics activities may be considered “sharing” or “targeted advertising” under California law. Where required, you may opt out through available in-app settings, device settings, consent tools, or by contacting us.
Retention
We retain personal information as described in the “Data Retention” section of this Privacy Policy.
Non-Discrimination
We will not discriminate against you for exercising your privacy rights.
14. Tracking, Advertising Identifiers, and Device Permissions
We may use advertising identifiers, device identifiers, SDKs, and similar technologies for advertising, attribution, analytics, rewarded ad validation, and fraud prevention.
On iOS, where required, we will request permission through Apple’s App Tracking Transparency framework before tracking you across apps or websites owned by other companies.
You can control certain tracking and advertising preferences through your device settings, app settings, consent tools, or platform-level privacy controls.
We do not require you to enable tracking, push notifications, location services, or other optional device permissions in order to receive monetary or other compensation. Some features may be limited or unavailable if certain permissions are disabled, but permissions will only be requested where relevant.
15. Push Notifications
If we offer push notifications, we may use them to send information about rewards, account activity, service updates, promotions, or reminders.
You can enable or disable push notifications through your device settings.
16. Security
We use reasonable technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure.
However, no system is completely secure. We cannot guarantee that personal data will always remain secure, especially where issues are caused by third-party providers, device compromise, user error, or events outside our control.
You are responsible for keeping your account, email address, device, and verification codes secure.
17. Third-Party Links and Services
The Service may contain links or integrations with third-party services, including app stores, payout providers, PayPal, card issuers, advertising networks, analytics providers, and support tools.
We are not responsible for the privacy practices, terms, content, or security of third-party services.
You should review the privacy policies of third parties before using their services.
18. Changes to This Privacy Policy
We may update this Privacy Policy from time to time.
If we make material changes, we may notify you through the Service, by email, or by other reasonable means.
The updated Privacy Policy will apply from the effective date shown at the top of the document.
If you continue using the Service after the updated Privacy Policy becomes effective, you acknowledge the updated Privacy Policy.
19. Contact Us
For privacy questions, legal notices, complaints, or requests to exercise your rights, contact us at:
ALESUND TEAM, S.L.
Jacometrezo 15, 6ª Floor
28013 Madrid
Spain
CIF: B-88194014
Trade and Companies Registry: Folio 153, Section 8, Sheet M681827
Email: [email protected]
For general support: [email protected]