Effective: February 16, 2026
HYDE ("we", "us", "our") is a real-time, location-based multiplayer hide-and-seek game. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data.
By using HYDE you agree to the collection and use of information as described in this policy. If you do not agree, please do not use the app.
Account information: When you sign in with Google or Apple, we receive your name and email address from the provider. We store this to identify your account.
Player name: You choose a display name that is visible to other players in games you join.
Profile photo: You may optionally upload a profile photo, which is stored in our cloud storage and visible to other players.
Precise GPS location: During active gameplay, we collect your precise location continuously, including when the app is in the background. Location data is sent to our server so other players can see your position on the game map. We do not collect location data outside of active game sessions.
Bluetooth proximity: During active gameplay, we use Bluetooth Low Energy (BLE) to detect nearby players for accurate catch verification. BLE data is processed locally on your device and is not transmitted to our servers.
Voice audio: During gameplay, you may use push-to-talk voice chat to communicate with your team. Audio is transmitted in real time through Daily.co and is not recorded or stored by us or Daily.co.
Game session data: We store gameplay information including your role (runner/seeker), catch events, power-up pickups, chat messages, and position history for the duration of the game. Position history may be retained for replay functionality.
Provide core gameplay: Your location, Bluetooth proximity, and game actions are used to power the real-time multiplayer experience.
Display your identity: Your player name and profile photo are shown to other players in games you join.
Authenticate your account: Your email and sign-in credentials are used to securely identify you across sessions and devices.
Improve the service: We may use aggregated, anonymized usage data to understand how the app is used and to fix bugs.
We do not use your data for advertising, profiling, or any purpose unrelated to providing and improving the HYDE game experience.
Performance of a contract (Art. 6(1)(b) GDPR): Processing your account information, location, and game session data is necessary to provide the Service you have requested.
Legitimate interests (Art. 6(1)(f) GDPR): We process aggregated, anonymized usage data to improve the Service. This does not override your rights and freedoms.
Consent (Art. 6(1)(a) GDPR): Where we ask for your explicit consent (e.g. optional profile photo), you may withdraw it at any time without affecting the lawfulness of prior processing.
HYDE requires background location access during active game sessions. This is essential for gameplay — if location updates stop when your phone is locked, seekers lose visibility of runners and the game cannot function.
Background location is requested only when you enter an active game, not at app launch. Location tracking stops automatically when the game ends.
On Android, a persistent notification is shown while background location is active. On iOS, the location indicator appears in the status bar.
We do not sell, rent, or trade your personal data to any third party.
Supabase (database and authentication): Stores your account information, game data, and player positions. Hosted in the EU/US. Privacy policy: supabase.com/privacy.
Mapbox (maps): Provides the map tiles displayed in the app. Mapbox may collect anonymized telemetry data about map usage. Privacy policy: mapbox.com/legal/privacy.
Daily.co (voice chat): Processes real-time audio for push-to-talk voice chat. Audio is not recorded or stored. Privacy policy: daily.co/legal/privacy.
Google Sign-In / Apple Sign-In: Used for authentication only. We receive your name and email; we do not access your contacts, calendar, or other account data.
Vercel (hosting): The web application is hosted on Vercel. Vercel may process server logs including IP addresses. Privacy policy: vercel.com/legal/privacy-policy.
Account data (name, email, photo) is retained for as long as your account exists.
Game session data (positions, catches, chat messages) is retained for gameplay history and replay features.
Voice audio is never stored — it is transmitted in real time and discarded.
When you delete your account, your authentication data is permanently removed, your profile photo is deleted from storage, and your player records are anonymized (unlinked from your identity but preserved for game history integrity).
Right to access (Art. 15): You can request a copy of the personal data we hold about you by contacting us at the email below.
Right to rectification (Art. 16): You can update your player name and profile photo at any time from the Account screen.
Right to erasure (Art. 17): You can delete your account at any time from the Account screen. This permanently removes your authentication data and profile photo, and anonymizes your player records.
Right to restriction (Art. 18): You may request that we restrict processing of your data in certain circumstances.
Right to data portability (Art. 20): You may request your personal data in a structured, machine-readable format.
Right to object (Art. 21): You may object to processing based on legitimate interests.
Right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority. The competent authority in Bavaria is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), www.lda.bayern.de.
Right to withdraw consent: You can stop sharing your location by leaving the active game or closing the app. You can revoke sign-in access through your Google or Apple account settings.
HYDE is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal data, please contact us and we will delete it.
We use industry-standard security measures to protect your data, including encrypted connections (HTTPS/TLS), secure authentication via OAuth 2.0 (Google and Apple Sign-In), and role-based access controls on our database.
No method of electronic transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.
We may update this Privacy Policy from time to time. When we make material changes, we will notify you through the app or by other means. The effective date at the top of this policy indicates when it was last revised.
Your continued use of HYDE after changes are posted constitutes your acceptance of the revised policy.
If you have questions or concerns about this Privacy Policy or your data, contact us at: support@hyde-game.com