This Privacy Policy explains how Trivialize ("we", "our") handles personal data when you use the Trivialize mobile app and related services. We follow the Nigeria Data Protection Regulation (NDPR), the EU GDPR where it applies, and the ICO's UK guidance.
On this page
1. Data we collect
- Account: email or phone number, username, country, region, date of birth (for the age gate on cash-stakes features).
- KYC (only if you withdraw): national ID number, ID document image, and a selfie. Stored encrypted; deleted within 90 days of account closure (subject to AML retention rules).
- Wallet activity: top-ups, stakes, prizes, withdrawals. Retained for 18 months for regulatory and dispute resolution.
- Game activity: quizzes, PvP matches, live event participation, leaderboard scores.
- Device / app: app version, OS, language, IP address (truncated for non-debug logs), FCM push token. Used for security + delivery.
- Optional analytics: only if you allow ATT on iOS / advertising id on Android. Used to measure ad performance, never to identify you to advertisers without your consent.
2. How we use it
- Run the game and pay out prizes to your wallet.
- Verify your identity for cash withdrawals (a regulatory requirement).
- Detect and prevent fraud, abuse, and underage use.
- Send notifications you've opted into (event reminders, social, marketing).
- Improve gameplay (anonymised aggregate analytics).
We do not sell personal data and do not share it with third-party advertisers except aggregated, non-identifying signals (per Apple's ATT / Google's UMP framework).
3. Who we share it with
- Payment providers (Paystack, Flutterwave, Stripe, Apple, Google) when you top up or withdraw.
- KYC providers (Smile Identity, Youverify) for identity verification only.
- Cloud infrastructure (managed Postgres, Redis, FCM). All in regions with adequate data-protection regimes.
- Law enforcement in response to a valid court order.
4. Your rights
- Access / portability: Settings → Privacy and data → Download my data exports a JSON file with your profile, history, friends, and wallet activity.
- Deletion: Settings → Privacy and data → Delete account permanently removes your profile, history, and friends. Wallet must be empty first.
- Rectification: edit your profile; for fields you can't edit (e.g. date of birth), email privacy@trivializethis.com.
- Marketing opt-out: Settings → Notifications → Marketing toggle off.
- Self-exclusion: Settings → Account limits → Self-exclude blocks every deposit and stake for the duration you choose (24h cool-off before activation; immutable until it ends).
5. Children
Trivialize is not intended for users under 18. The age gate at signup blocks under-18s from cash-stakes features; if we learn an account belongs to a minor we close it and refund the wallet to the original funding source.
6. Retention
- Account data: until you delete the account, then 30 days for fraud holdback, then purged.
- KYC documents: 90 days post-closure (regulatory minimum may extend this for AML cases).
- Wallet ledger: 18 months (audit trail).
- Analytics aggregates: 24 months in anonymised form.
7. Security
All data in transit uses TLS 1.2+. Wallet tokens at rest are encrypted with AES-GCM. Operator access is gated by SSO + MFA + audit log. We perform a third-party security review before each major release.
8. Contact
Data Protection Officer: dpo@trivializethis.com
General privacy: privacy@trivializethis.com
In-app: Settings → Help & support → Contact us → "Account".