Privacy Policy
Privacy Policy for Doctor Iota Applications
Effective date: 2026-07-09
This Privacy Policy explains what information Doctor Iota's applications ("our apps", "our services", "we", "us") process when you use them, why we process it, and the choices you have. We design for privacy and collect only what is necessary to provide the experience described in each app's documentation.
If you have questions or requests, contact: dr2iota@gmail.com.
This policy describes features across our current and imminent releases. A specific feature it mentions (for example, optional rewarded ads or one‑time in‑app purchases in the Packing app) may reach your device in a recent or upcoming version, and any such feature stays opt‑in as described below.
What our applications do
We create applications focused on mathematical art, education, and recreation. Our apps are designed to be interactive and educational. Examples include:
- Fantastic Fractals: An interactive fractal explorer (e.g., Mandelbrot, Julia, Newton) with real‑time pan/zoom, color palettes, and share‑by‑link.
- Animated Geometry: An interactive geometry playground for exploring shapes, their properties, and animated proofs.
- Packing Puzzles: A collection of packing and sliding puzzle games (fill, slide, merge), free — with an optional rewarded‑ad choice and one‑time in‑app purchases offered in current and upcoming versions.
In the future, we may add optional user accounts and multi‑user experiences (e.g., shared sessions or games) to our apps. We will continue to follow a strict data‑minimization approach across all our services.
Our apps are distributed in multiple forms:
- Native installations (mobile / desktop): available as published releases and preview builds, sometimes trailing the latest web version. Once installed, they run on your device and work fully offline; the only automatic network activity is a launch‑time update check and, where enabled, a small "related links" feed for the side pane, both downloaded from our hosting (see Information processed automatically). Any other network use happens only for features you explicitly invoke (e.g., share‑by‑link, or a rewarded ad you choose to watch).
- Web version: today, our most up‑to‑date deployed form. Served from our hosting provider over HTTPS, then runs in your browser. Standard web‑server logs may be retained by the hosting layer.
Some of our apps are free with an optional rewarded‑ad choice: for example, the Packing app lets you (in current and upcoming versions) choose to watch a short ad (via Google AdMob) to refill an in‑game allowance, as a free alternative to a one‑time in‑app purchase. No ads are ever shown unless you actively choose to watch one — there are no banners, no interstitials, and nothing on launch — and the web versions have no ads at all. Buying the corresponding purchase removes the need to watch ads for that feature. On our website we use cookieless, privacy‑preserving analytics (Cloudflare Web Analytics) that counts visits in aggregate without identifying you. These practices are detailed in the Analytics and ads section below.
Summary
- We do not sell your data, serve targeted ads of our own, or share personal information with third parties for their own marketing.
- Our apps are fully functional without an account. Native installations run on your device and work offline, aside from a launch‑time update check and an optional side‑pane "related links" feed downloaded from our hosting. The web version is loaded from our hosting provider and then runs in your browser, with no ongoing API calls of our own.
- We store settings locally on your device (e.g., theme, user-customized color schemes, and speaker/voice settings; a language setting is saved once you use that feature). Share links encode view parameters in the URL.
- We use a cookieless, non-identifying analytics service (Cloudflare Web Analytics) to measure aggregate traffic on our website. The apps themselves (native and in-browser) include no analytics of ours.
- Some free native apps (e.g., Packing) offer optional rewarded ads (Google AdMob) that play only when you choose to watch one, as a free alternative to an in-app purchase; no ads appear otherwise. Ad networks have their own data practices (see Analytics and ads). The web versions show no ads.
- We do not set our own cookies, and our analytics is cookieless. When you choose to watch an optional ad, the ad network (Google AdMob) may use device identifiers or on-device storage governed by its own privacy policy.
Information we process
We collect no personal information for our own use. Native installations run on your device once installed and work offline, aside from a launch‑time update check and an optional side‑pane "related links" feed downloaded from our hosting; native apps that offer the optional-ad choice include a third-party ad SDK (Google AdMob), which requests an ad only when you choose to watch one. The web version is loaded from our hosting provider and runs in your browser, with no analytics of ours; our informational website separately uses cookieless, aggregate visitor analytics. The subsections below describe what is stored locally and what is processed automatically across these forms.
Information stored on your device
- App preferences and parameters: When you adjust controls (e.g., theme, color schemes, speaker/voice, and language), that information is stored locally in the app or in your browser for the web version. This information is not transmitted to us. URLs you choose to share in the web version may contain parameters that describe the view.
- Game progress and content: Some apps store gameplay state locally — for example, puzzle progress, saved boards, and in‑app allowance counts ("meters"). This stays on your device and is not transmitted to us.
- In‑app purchases: Where an app offers a one‑time purchase, we store only a local flag recording that you own it, so the feature stays unlocked. Payments are handled by Google Play; we do not receive or store your payment details (see Data sharing).
- Optional feedback or support messages: If you contact us via email, we will receive the information you include in your message.
Information processed automatically
What is processed automatically depends on how you use the app:
- Native installations (mobile / desktop): Once installed, run on your device with no analytics of ours and work fully offline. On launch they make up to two one-way content requests to our hosting: an update-availability check (
<app>-versions.json) and, where the side "related links" pane is enabled, a small links feed (aux-pane-links.json). These downloads send no personal data and are skipped silently when you are offline, but our hosting/CDN sees your device's IP address and User-Agent on each request, as with any web request. Apps with the optional-ad choice (e.g., Packing) include the Google AdMob SDK so you can choose to watch a rewarded ad; an ad is requested only when you tap to watch one, and at that point AdMob may collect data such as IP, device/advertising identifiers, ad interactions, and coarse location per Google's privacy policy (see Analytics and ads). If you never watch an ad (or you own the in-app purchase), no ad is requested. Apps without this feature load no ad SDK. - Web version: Delivered as static files from our hosting provider over HTTPS. The hosting infrastructure may retain standard web-server logs (IP address, request URL, timestamp, User-Agent) for delivery and abuse prevention. The web versions contain no ads and no analytics of ours. Once loaded, the app runs in your browser and we make no further API calls of our own. (Our informational website separately uses cookieless visitor analytics — see Analytics and ads.)
Our apps may read device/runtime capabilities (e.g., WebGL features) locally to adapt rendering. This information stays on-device.
We use your device's or browser's local storage to save your settings; this data is not transmitted to us.
Future features (accounts and multiplayer)
If we introduce accounts or multi‑user experiences in any of our apps, we will process only the minimum data required. These features would require a server connection.
- Account identifiers: For example, an email address or an OAuth provider identifier, plus authentication tokens. We will not request profile details beyond what is necessary to authenticate and provide the service.
- Display name (optional): If shown to other users in multiplayer contexts.
- Personal sync (preferences, history, saved views): if you sign in, the app may store your preferences, in-app history, and saved views on our servers so they follow you across devices. This data exists to serve you; we do not analyze account contents for advertising, profiling, or sale.
- Session and game/fractal state: Parameters needed to synchronize a shared session (e.g., current view, room/session IDs). This may be visible to other participants you explicitly join.
- Moderation/anti‑abuse signals: Minimal metadata strictly needed to keep the service safe (e.g., rate limiting data, rule violations where applicable).
- Basic service logs: Our hosting and security systems may log standard metadata such as IP address, request headers, timestamps, error details, and basic performance metrics. This is used for operations (e.g., troubleshooting, abuse prevention) and kept for a limited retention period.
We will update this policy and, where required, request consent before launching such features.
How we use information
- Provide and improve our apps, including rendering, performance, and reliability.
- Offer requested features such as share‑by‑link; links may contain parameters that reveal your current view/choices to anyone with the link.
- Communicate with you about our apps if you reach out to us.
Legal bases (EEA/UK users)
Where applicable, we rely on the following legal bases:
- Performance of a contract: To provide our apps and requested features.
- Legitimate interests: For security, fraud prevention, service reliability, and aggregate, cookieless website analytics that does not identify you.
- Consent: Where required (e.g., an optional rewarded ad you choose to watch, obtained through Google's UMP consent flow in the EEA/UK; or new server-side features). You can withdraw or change your choice at any time.
Third parties and SDKs at a glance
The table below summarizes every external party our apps or website may reach and what each one sees. Details follow in Analytics and ads and Data sharing.
| Third party | Where it applies | Purpose | Data it may see | Your control |
|---|---|---|---|---|
| Our hosting / CDN | Web version (delivery); native apps (launch‑time update check and optional side‑pane links feed) | Serve the app and report available updates / related links | Standard web‑server logs: IP address, User‑Agent, request URL, timestamp | Inherent to any download; native apps work fully offline if these are skipped |
| Cloudflare Web Analytics | Our informational website only | Aggregate, cookieless traffic measurement | Aggregate visit data (page views, referrers, approximate country, device type); no cookies, no cross‑site tracking, no identification | Non‑identifying by design; not present in the apps themselves |
| Google AdMob | Packing native app only, and only when you choose to watch a rewarded ad | Show a rewarded ad as a free alternative to a one‑time purchase | IP, device/advertising identifier, ad interactions, coarse location — only when you watch | No ad unless you tap to watch; consent via Google UMP in the EEA/UK; the one‑time purchase removes the need to watch |
| Google Play Billing | Native apps offering a one‑time purchase | Process the purchase and report ownership back to the app | Payment handled entirely by Google; we receive only ownership status, never card or payment details | Purchases are optional and entirely your choice |
Analytics and ads
Website analytics (cookieless). On our website we use Cloudflare Web Analytics, a privacy-preserving service that measures aggregate traffic (e.g., page views, referrers, approximate country, device type) without cookies and without building profiles of individuals. It does not track you across sites and collects no information that identifies you; its handling is governed by Cloudflare's privacy policy. We use it only to understand overall usage and reliability. Native installations include no analytics of ours.
Third-party ads (optional, user-initiated). Some free native apps — for example, the Packing app — let you choose to watch a rewarded ad via Google AdMob (the Google Mobile Ads SDK) as a free alternative to a one-time in-app purchase. Ads are never shown automatically: there are no banners, no interstitials, and nothing on launch — an ad loads only when you tap to watch one, and if you own the corresponding purchase the watch-ad option isn't offered at all. When you do choose to watch, AdMob loads that ad on-device and may collect data such as IP, device/advertising identifiers (Android Advertising ID), ad interactions, and coarse location, and may use on-device storage — all governed by Google's privacy policy and Google's advertising/partner policies. We configure AdMob to serve age-appropriate ads for a general audience. Depending on your consent choice, a rewarded ad may be personalized (tailored using the identifiers above) or non-personalized (chosen only from context, such as the app and the ad's surroundings). In the EEA/UK, a Google-certified consent (UMP) message is shown as required, and you can change your choice at any time. The web versions contain no ads.
Data sharing
We do not sell personal data. We share data with third parties only as follows:
- Hosting provider (web version): standard web-server delivery; the provider may retain access logs as described above.
- Cloudflare Web Analytics (informational website only): receives cookieless, aggregate traffic measurements; no personal profiles and no cross-site tracking. It is not present in the apps themselves (native or in-browser).
- Google AdMob (native apps with the optional-ad choice): receives data only when you choose to watch a rewarded ad, as described in Analytics and ads, per Google's privacy policy. If you never watch an ad, no data goes to AdMob. The web versions share no data with ad networks.
- Google Play (in‑app purchases): processes payment for one‑time purchases and reports ownership status to the app so it can unlock the feature; we receive no card or payment details. Governed by Google's privacy policy.
- Service providers (future server-side features): e.g., error logging, under agreements that restrict their use of data to our instructions.
- Legal and safety: If required by law or to protect the rights, property, or safety of users or the public.
Data retention
- Local preferences: Stored on your device until you clear them.
- Server logs/diagnostics (future): If we introduce server features, logs will be retained only as long as necessary for operations and security, then deleted or anonymized.
- Account and multiplayer data (future): Retained for as long as your account or session is active and for a reasonable period thereafter for backup, security, or legal compliance.
International transfers
Currently, we do not transfer personal data across borders — we collect none of our own. Third-party providers we use (e.g., Google AdMob for optional rewarded ads, Cloudflare for cookieless web analytics) may process data internationally under their own privacy policies and safeguards. If we introduce server-based features in the future that involve transferring user data across borders, we will use appropriate safeguards (e.g., Standard Contractual Clauses) where required by law.
Your rights
Depending on your location, you may have rights to access, correct, delete, or export your information, and to object to or restrict certain processing. As we do not currently hold any of your personal information, these rights are not applicable at this time. To exercise these rights in relation to future services or for any privacy-related questions, contact us using the details above. We will honor these requests as required by applicable law.
Children, schools, and education contexts
COPPA (United States, under 13)
Our applications are directed to a general audience (13 and older), not to children under 13 (or the minimum age required by your jurisdiction), and we do not knowingly collect personal information from children under 13. We keep no accounts and run no analytics of our own in native apps; our web analytics is cookieless and non-identifying. Apps with the optional-ad choice use Google AdMob configured for general audiences — ads (shown only when a user chooses to watch one) are limited to age-appropriate content and the app is not flagged as child-directed — so we do not knowingly permit child-directed data collection.
If we introduce features that would collect personal information (e.g., accounts, multiplayer rooms, classroom mode), we will either verify users are 13 or older at sign-up, or, where features are expressly directed to under-13 users, obtain verifiable parental consent as required by COPPA before enabling those features for that account. We will not enable child-directed features by default.
If you believe a child under 13 has provided personal data to us, contact us at dr2iota@gmail.com and we will delete it.
FERPA (United States schools)
We are not, by default, a "school official" with a legitimate educational interest under FERPA — schools do not need to give us access to student education records to use our apps as they ship today. The apps run locally (native) or in the browser (web) and do not require accounts.
If a school adopts a future classroom feature that involves processing student records on our behalf (e.g., per-class progress tracking, teacher-led sessions tied to student rosters), we will operate as a school official under the school's direct control, under a written data-handling agreement, and only for the educational purposes the school authorizes. We will not use student records for advertising, profiling, or sale.
What to evaluate
For schools or districts evaluating our apps:
- Our apps do not require accounts and collect no personal information for our own use. The web is delivered through standard hosting logs (IP, User-Agent, request URL, timestamp) plus cookieless, non-identifying Cloudflare Web Analytics; native apps include no analytics of ours.
- Future classroom features will be opt-in per school and governed by a written data-handling agreement; details will be disclosed before activation.
- Apps with the optional-ad choice (e.g., Packing) let a user watch a rewarded ad only by choice (Google AdMob, general-audience content; see Analytics and ads); nothing is shown otherwise. For classroom use with no ad-network involvement, use the web versions (no ads), the one-time in-app purchase, or simply don't use the watch-ad option.
Schools or parents with questions: dr2iota@gmail.com.
Security
We use reasonable administrative, technical, and organizational measures to protect information. Our apps are designed to be secure by default, with minimal privileges. Native installations function fully offline once installed and make no automatic network calls of their own beyond a launch‑time update check and an optional side‑pane "related links" feed (see Information processed automatically); the web version requires loading from our hosting provider but does not contact our servers thereafter. Any external links are opened in your device's default browser, not within the application itself. No system is 100% secure; we encourage you to use current software and secure your devices.
Changes to this policy
We may update this policy to reflect changes in our apps or law. We will post the updated version here and revise the effective date. Material changes will be highlighted within the relevant app(s) where appropriate.
Contact
Questions or requests: dr2iota@gmail.com