Skip to content
Word ChallengeWord Challenge

Privacy Policy

Last updated: 24 June 2026

Overview

This Privacy Policy explains how Nanotech Computers (Pty) Ltd (“Nanotech Computers”, “we”, “us”) collects, uses, and protects your information when you use the Word Challenge website at word-challenge.com (the “Website”) and the Word Challenge game for iOS (the “App”, together the “Services”). We are the developer of the App and the operator of the Website, and we are the responsible party (data controller) for your personal information. We process information in line with South Africa’s Protection of Personal Information Act (POPIA) and, where it applies, the EU/UK General Data Protection Regulation (GDPR).

We keep data collection to the minimum needed to run a word game and a set of free word tools. You do not need to create an account, and the Website’s solver tools run entirely in your browser.

Information we collect on the Website

  • Usage and device data via Google Analytics 4 — pages and tools viewed, in-page events (such as solver searches and download-link clicks), approximate location derived from your IP address, browser, operating system, and a cookie-based analytics identifier.
  • We do not collect your name, email address, or payment details on the Website, and the word solvers process your guesses on your device only.

Information we collect in the App

  • Game data on our servers — we operate our own game servers (api.word-challenge.com). To save your progress, sync your coins and statistics, run real-time multiplayer matches, and keep your word lists up to date, we process a player identifier together with your in-game data (statistics, streaks, coin balance, and multiplayer match data).
  • Apple Game Center — if you sign in to Game Center, Apple provides a Game Center player identity that we use for leaderboards, achievements, and matching you with other players. Apple manages this identity.
  • Purchases — coins can be bought through Apple’s In-App Purchase system, which we manage with RevenueCat. Apple processes your payment; we and RevenueCat receive a purchase receipt and identifier, not your card number.
  • Advertising — rewarded video adverts are provided by Google AdMob. With your permission (see App Tracking Transparency below), your device advertising identifier (IDFA) and ad-interaction data may be used to show and measure adverts. Apple’s SKAdNetwork is used for privacy-preserving ad attribution.
  • Notifications — if you allow notifications, we process a device push token to send you reminders (for example, daily-challenge or multiplayer-turn alerts).
  • Device and diagnostic data — device model, operating-system version, app version, language, and basic crash and performance data, used to run and improve the App.

You do not need to provide your name, email address, or phone number to play.

How we use your information

  • Provide, operate, save, and maintain your game, multiplayer matches, and leaderboards;
  • Process in-app purchases and manage your coin balance;
  • Show and measure adverts where you have allowed it;
  • Send notifications you have enabled;
  • Understand usage trends through aggregated analytics and improve the Services;
  • Keep the Services secure and prevent fraud, cheating, and abuse; and
  • Comply with our legal obligations.

Legal basis (GDPR)

Where the GDPR applies, we rely on: your consent (for example, for tracking, personalised adverts, notifications, and non-essential cookies); the performance of a contract (to provide the features you request); our legitimate interests (to operate, secure, and improve the Services); and compliance with legal obligations.

App Tracking Transparency and advertising

On iOS, the App asks for your permission before tracking your activity across other companies’ apps and websites, as required by Apple’s App Tracking Transparency framework. If you decline, you can still play and may still see non-personalised adverts. You can change your choice at any time in iOS Settings → Privacy & Security → Tracking, and you can reset or limit your advertising identifier in iOS Settings.

Cookies (Website)

The Website uses cookies set by Google Analytics to measure traffic and improve the site. You can block or delete cookies in your browser settings; the Website’s content and tools will continue to work.

How we share information

We do not sell your personal information. We share limited data only as described here:

  • Apple — App distribution, In-App Purchases, Game Center, and push delivery (see the Apple Privacy Policy).
  • Google — Google AdMob (adverts in the App) and Google Analytics (Website) (see the Google Privacy Policy).
  • RevenueCat — in-app purchase management (see the RevenueCat Privacy Policy).
  • Our hosting and infrastructure providers — who run our game servers on our behalf under appropriate confidentiality and security terms.
  • Legal and safety — where required by law, or to protect our rights, our users, or the public.

International data transfers

We are based in South Africa, and some of our service providers (such as Apple, Google, and RevenueCat) process data in other countries. Where we transfer personal information across borders, we take steps to ensure it receives an adequate level of protection as required by POPIA and, where applicable, the GDPR.

Data retention

We keep personal information only for as long as needed for the purposes described here, or as required by law, after which it is deleted or anonymised. Aggregated analytics data may be kept for longer because it no longer identifies you.

Security

We use appropriate technical and organisational measures to protect your information. No method of transmission or storage is completely secure, but we work to safeguard your data against unauthorised access, loss, or misuse.

Your rights

Subject to applicable law, you have the right to access, correct, or delete your personal information, to object to or restrict certain processing, to withdraw consent, and (under the GDPR) to data portability. To exercise these rights, contact us at [email protected].

Under POPIA, you may also lodge a complaint with the Information Regulator of South Africa. Under the GDPR, you may complain to your local data protection authority.

Children's privacy

The Services are intended for a general audience and are not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it.

Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version here and change the “Last updated” date above. Significant changes may also be highlighted in the App or on the Website.

Contact us

Nanotech Computers (Pty) Ltd (registration 2017/122030/07), South Africa. For any privacy questions or to exercise your rights, contact us at [email protected].