Pandemoni Privacy Policy

1. Overview

Pandemoni ("the App") is developed and published by Kynoss Studios ("we," "us," or "our"). Pandemoni is a party game platform for iPhone, iPad, and Apple TV where the host device runs a local server on your WiFi network, displays the game board on a TV via AirPlay or HDMI, and other players join by scanning a QR code on their own phones — no app download, no account, and no internet connection required.

This Privacy Policy explains what data Pandemoni accesses, how that data is processed, and your rights regarding your information. We are committed to transparency and to protecting your privacy.

Pandemoni operates entirely on your local network. We do not operate servers, databases, or cloud services. We do not create user accounts. We have no mechanism to collect, receive, view, or store your personal data. All game communication happens over your local WiFi — nothing is sent to the internet.

2. Local Network Communication

How It Works

When you host a game, Pandemoni starts a local HTTP and WebSocket server on your device. Other players join by scanning a QR code displayed on the TV, which opens a webpage served directly from the host device over your local WiFi. This means:

1. All game data (player names, scores, game actions) travels directly between devices on your WiFi network.
2. No game data passes through any external server or internet service.
3. The game functions entirely offline — no internet connection is needed.
4. When the game ends or the app closes, the local server stops and all connections are terminated.

Local Network Permission

Pandemoni requests local network permission from iOS so that player devices on your WiFi can connect to the host. This permission is used solely for in-game communication and is never used to scan, discover, or interact with other devices or services on your network.

Player Information

Players provide only a display name when joining a game session. This name:

• Is used only during the active game session for display purposes.
• Is not stored permanently — it exists only in memory while the game is running.
• Is never transmitted to Kynoss Studios or any third party.
• Is discarded when the game session ends.

3. Data Storage & On-Device Processing

A small amount of data is stored locally on your device using Apple's SwiftData framework. This includes:

• App settings and preferences
• In-app purchase unlock state
• Game history (for Game Night session tracking)

This data is protected by:

• iOS/tvOS Data Protection (encrypted at rest, tied to your device's security)
• App sandboxing (only Pandemoni can access its own data store)
• Standard Apple platform security architecture

Pandemoni does not use:

• iCloud or any cloud storage
• Any third-party analytics SDKs (no Firebase, no Mixpanel, no Amplitude, etc.)
• Advertising SDKs or ad networks
• Crash reporting services
• Any form of user tracking or fingerprinting

4. Data Retention & Deletion

Retention Policy

Local app data (settings, purchase state, game history) is retained on your device until you choose to delete it. There is no automatic expiration. Player session data (names, scores) exists only in memory during active games and is discarded when the session ends.

Deletion

• Delete the app: Deleting Pandemoni from your device permanently removes all associated data. Because no data exists anywhere other than your device, deletion is complete and irreversible.
• There is no server-side data to delete, no account to close, and no request process needed. You have full and immediate control.

5. Data Sharing & Third Parties

• We do not sell your data.
• We do not share your data with third parties.
• We do not transmit your data off your local network.
• We do not use third-party SDKs that could collect data.
• We do not serve advertisements.
• We do not engage in data mining or use-based data profiling.
• We do not share data with parent companies, subsidiaries, or related entities (Kynoss Studios is an independent sole developer).

Pandemoni makes no internet requests whatsoever, except for StoreKit transactions processed by Apple (see Section 7). The app functions entirely offline on your local WiFi.

6. Data Security

Pandemoni relies on Apple's built-in security infrastructure to protect your data:

• Encryption at rest: All local data is protected by iOS/tvOS Data Protection.
• App sandboxing: The operating system prevents other apps from accessing Pandemoni's data store.
• Local-only networking: Game communication occurs only on your local WiFi network and is not exposed to the internet.
• No accounts: There are no credentials to steal, no passwords to breach, and no accounts to compromise.

Local Network Security

Game sessions run on your local WiFi network using HTTP. This is standard for local network communication on iOS and is the same approach used by AirPlay, printers, and other local devices. Because the traffic never leaves your local network, it is not exposed to internet-based threats. For additional security, only players on the same WiFi network can connect to a game session.

7. In-App Purchases

Pandemoni offers one-time in-app purchases to unlock additional game modes and bundles. These purchases are processed entirely by Apple through the App Store using StoreKit. Kynoss Studios:

• Does not collect payment information (Apple handles all transactions).
• Does not store credit card numbers, billing addresses, or financial data.
• Receives only an anonymous transaction confirmation from Apple's StoreKit framework.
• Cannot identify you from purchase information.

8. Children's Privacy (COPPA)

Pandemoni is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13.

Because Pandemoni does not collect, transmit, or store personal information on any server, and because all data remains solely on the user's device and local network, Pandemoni does not create the data collection risks that COPPA is designed to address. Nonetheless:

• Pandemoni does not collect personal information from any user, including children.
• Pandemoni does not require or support account creation.
• Pandemoni contains no advertising or social features.
• Pandemoni does not transmit any data to Kynoss Studios or any third party.

If you are a parent or guardian and have concerns about your child's use of the app, please contact us at kynossstudios@gmail.com.

9. Your Rights Under GDPR (European Economic Area)

If you are located in the European Economic Area (EEA), the General Data Protection Regulation (GDPR) provides you with specific rights regarding your personal data. We respect these rights, even though Pandemoni's on-device architecture means we do not act as a data controller or processor of your personal data in the traditional sense — because your data never reaches us.

Legal Basis for Processing

To the extent any on-device processing constitutes "processing" under the GDPR, the legal basis is:

• Consent: You explicitly start game sessions and provide display names. You may stop at any time.
• Legitimate interest: Processing your data on your own device to provide the app's functionality directly to you.

Your Rights

• Right of access: All data is stored on your device and accessible to you at all times.
• Right to rectification: You can change your display name at any time by rejoining a session.
• Right to erasure: You can delete all data by deleting the app.
• Right to restrict processing: You control what data is processed by choosing when to host or join games.
• Right to data portability: Game data is transient and session-based; persistent data is minimal (settings and purchase state).
• Right to object: You can stop all data processing by not using the app or deleting it.

Data Transfers

Pandemoni does not transfer personal data outside your device or local network. No cross-border data transfers occur because no data is transmitted to any server, anywhere.

Data Protection Officer

Due to the nature of our data processing (entirely on-device, no data collection), we are not required to appoint a Data Protection Officer. For any privacy-related inquiries, please contact us at kynossstudios@gmail.com.

10. Your Rights Under CCPA/CPRA (California)

If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) provides you with specific rights.

Information We Process

Under CCPA/CPRA definitions, Pandemoni processes the following categories of information on your device and local network only:

• Game session data (player display names, scores, game actions)
• App settings and purchase state

However, because all processing occurs on your device and local network and we never collect, receive, or access this information, Kynoss Studios does not "collect" personal information as defined by the CCPA/CPRA.

Your Rights

• Right to know: This Privacy Policy describes all data the app processes. We do not collect additional data beyond what is described here.
• Right to delete: Delete the app to remove all data.
• Right to opt out of sale: We do not sell your personal information. We never have and never will.
• Right to opt out of sharing: We do not share your personal information with third parties for cross-context behavioral advertising or any other purpose.
• Right to non-discrimination: We will not discriminate against you for exercising any of your privacy rights.
• Right to limit use of sensitive personal information: Pandemoni does not process sensitive personal information as defined by the CCPA/CPRA.

"Do Not Sell or Share My Personal Information"

Pandemoni does not sell or share personal information. Because no data is transmitted from your device to us or any third party, there is no sale or sharing to opt out of. We fully comply with the CCPA/CPRA without requiring any user action.

11. Apple Platform Disclosures

In compliance with Apple's App Store Review Guidelines and platform requirements:

Local Network Usage

• Pandemoni uses the local network solely to host game sessions where players on the same WiFi connect to the host device.
• Local network access is requested via the standard iOS permission dialog.
• No data is sent to the internet. All communication is device-to-device on your local WiFi.

External Display

• Pandemoni uses AirPlay or HDMI output to display the game board on a TV. This is a standard iOS feature and does not involve data collection.
• On Apple TV, Pandemoni runs natively as a tvOS app.

Required Reason APIs

Pandemoni uses only Apple's first-party frameworks and does not access any APIs that require declared reasons beyond those already disclosed in this policy and in the app's App Store privacy nutrition label.

App Tracking Transparency

Pandemoni does not track users across apps or websites owned by other companies. The App Tracking Transparency framework is not used because no tracking occurs.

App Privacy Nutrition Label

Pandemoni's App Store privacy nutrition label accurately reflects that the app does not collect any data.

12. Changes to This Policy

We may update this Privacy Policy to reflect changes in the app's functionality or legal requirements. When we make changes:

• The "Last Updated" date at the top of this page will be revised.
• Material changes will be communicated through the app or its App Store listing.
• Continued use of Pandemoni after changes constitutes acceptance of the updated policy.

We encourage you to review this policy periodically. This policy will be updated at least annually.

13. Contact Us

If you have questions about this Privacy Policy, your privacy rights, or Pandemoni's data practices, please contact us:

• Email: kynossstudios@gmail.com
• Developer: Kynoss Studios
• Support Page: Pandemoni Support

We will respond to privacy inquiries within 30 days.