Privacy Policy

Last updated: March 2026

Introduction

BPOS GCV ("we", "us", or "our") operates the Hoppli mobile application. This Privacy Policy explains how we collect, use, and protect your information when you use our app. We comply with the EU General Data Protection Regulation (GDPR) and applicable child privacy laws including COPPA.

Information We Collect

Account Information: When you create an account via Google Sign-In, Apple Sign-In, or email registration, we collect your email address and display name. Passwords are managed securely by Firebase Authentication and are never stored by us in plain text.

Hunt Data: We store the treasure hunts you create, including hunt names, missions, clues, QR codes, and settings.

Player Information: When children join a hunt, we collect the player name they enter and their game progress. This data is associated with the hunt, not with a persistent profile.

Purchase Information: In-app purchase transactions are processed by the Apple App Store or Google Play Store. We receive purchase confirmation and entitlement status through RevenueCat, our purchase management service. We do not receive or store payment details (credit card numbers, bank accounts, etc.).

Camera Access: The App uses your device camera to scan QR codes during hunts. No images are stored or transmitted during QR scanning.

How We Use Your Information

• To provide and maintain the Hoppli service
• To allow you to create and manage treasure hunts
• To enable children to participate in hunts
• To process and verify in-app purchases
• To improve our app and user experience

Data Storage

Your data is stored securely using Google Firebase services (Authentication, Firestore Database, and Cloud Storage) hosted in the European Union. We implement appropriate technical and organizational security measures to protect your information in accordance with GDPR requirements.

Children's Privacy

Hoppli.app is listed in the Kids Category and is designed to be used by children under parental supervision. We take children's privacy seriously:

• Children do not create accounts, provide email addresses, or submit any personal information
• All accounts are created and managed by parents or guardians
• Player names entered during hunts are temporary identifiers chosen by the parent or child and are not used to identify individuals outside the context of the hunt
• We do not collect, store, or share personal data from children
• No location data, device identifiers, or analytics are collected from children using the app
• No advertising or third-party tracking is present in the app
• A parental verification gate is required before any in-app purchase

Your Rights (GDPR)

Under the General Data Protection Regulation, you have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your account and all associated data (via Settings > Delete Profile)
• Restrict or object to processing of your data
• Data portability: request a copy of your data by contacting us

To exercise these rights, use the Settings menu in the app or contact us at the address below.

Data Retention

We retain your data as long as your account is active. When you delete your account, all associated data (including hunts, missions, player progress, and QR codes) is permanently and immediately deleted from our systems.

Third-Party Services

We use the following third-party services:

• Google Firebase (Authentication, Firestore, Cloud Storage): for account management and data storage. See Google's Privacy Policy.
• RevenueCat: for managing in-app purchase entitlements. RevenueCat receives your anonymous user identifier and purchase status. See RevenueCat's Privacy Policy.
• Google Sign-In: for optional account authentication. See Google's Privacy Policy.
• Apple Sign-In: for optional account authentication. See Apple's Privacy Policy.

We do not use any analytics, advertising, or tracking services.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the updated policy on our website and in the app.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us:

BPOS GCV
Tweelingenstraat 33
2018 Antwerp, Belgium