Privacy Policy

What We Collect

When you play WhosThatMon, we collect the following data:

• Display name — the name you choose when registering
• Game results — guesses, scores, streaks, and session data
• IP address — used temporarily for rate limiting; not stored long-term
• Authentication token — a randomly generated token stored in your browser to identify your account

How We Use It

• Game functionality — tracking your progress, scores, and streaks
• Leaderboards — displaying your display name and scores publicly on the leaderboard
• Rate limiting — preventing abuse of our API endpoints
• Trainer Rating — calculating your ELO-style rating across games

Data Storage

Your data is stored on a Neon PostgreSQL database. Game state is also stored locally in your browser via localStorage, which you can clear at any time through your browser settings.

Third-Party Sharing

We do not sell, share, or transfer your personal data to any third parties. Pokemon data and sprites are loaded from PokeAPI and GitHub — these services do not receive your player data.

Cookies

WhosThatMon does not use cookies. All client-side data is stored in localStorage.

Your Rights

You can:

• Clear local data— clear your browser's localStorage at any time
• Request data deletion — email us to have your server-side data removed
• Request data export — email us to receive a copy of your data

Children's Privacy

WhosThatMon is a casual game suitable for all ages. We do not knowingly collect personal information from children under 13. If you believe a child has provided us data, please contact us and we will delete it.

Changes

We may update this policy from time to time. Changes will be reflected on this page with an updated date.

Contact

For any privacy-related questions or data requests, email neogalik@yahoo.com.