WWGI Shield Privacy Policy

1. Controller and contact

Winners Without Gambling International is responsible for Shield privacy handling. Privacy and support requests can be sent to developer@wwgi.org.za.

2. Local device information

Shield stores local settings needed to run protection, such as activation state, strict-mode state, blocked count, last blocked domain, subscription cache, repair flags, unlock-window state, linked WWGI account identifiers, and local setup confirmations. This data helps Shield keep working after restarts and recover from update or permission interruptions.

3. Cloud and account information

Shield downloads public blocklists and optional UI text from Firebase when the configured version changes. Shield may subscribe to Firebase Cloud Messaging so WWGI can prompt it to check for blocklist or UI text updates.

If direct WWGI account sign-in is used, Firebase Auth and the selected provider, such as Google, Facebook, X, or email and password, process the sign-in. Shield reads the signed-in user's own WWGI profile approval status and Shield access entitlement from Firestore.

4. Shield status, bridge, and ledger data

When Shield is paired, it may send minimal app safety ledger events to Firebase, including linked WWGI user ID, event date and time, app name, event type, Shield client ID, and an unlock verification secret used by WWGI systems. Unlock requests may include the user's stated reason, contact details, request status, staff decision, rejection reason, code delivery status, and audit timestamps.

WWGI Platform can read Shield status through a package-and-certificate verified bridge and may sync that status to WWGI systems for member support and moderation follow-up.

5. Permissions and sensitive APIs

Shield may request VPN, Accessibility, Device Admin, notification, battery optimisation, and background launch related permissions. These are used to block gambling access, detect selected risky app or settings flows, keep protection active, notify the user, and reduce bypasses while strict mode is active.

6. What Shield does not do

Shield is not designed to sell personal data, show third-party ads, collect payment card numbers, read private message content, collect contacts, collect photos or videos, or provide a general-purpose privacy VPN. Google Play handles payment method details for subscriptions.

7. Sharing and retention

Shield data may be available to authorized WWGI moderators or administrators where needed for recovery support, unlock review, safety follow-up, audit, billing access verification, fraud prevention, dispute handling, or legal compliance. Some records may be retained after account deletion where retention is necessary for safety, audit, legal, accounting, or abuse-prevention reasons.

8. User choices

Users can manage subscriptions through Google Play, manage supported sign-in methods through their WWGI account flow, request account deletion through WWGI, and contact WWGI about privacy questions. While Shield is active in strict mode, disabling protection may require the in-app unlock-request process.

9. Children and vulnerable users

Shield is not intended for children. Because the app concerns gambling harm and recovery, vulnerable users should involve trusted support people and qualified professionals where appropriate.

10. Updates

WWGI may update this Privacy Policy as Shield, WWGI Platform, subscriptions, Firebase setup, Google Play requirements, or legal requirements change. The effective date shown on this page identifies the current hosted version.