Privacy Policy

(Effective: May 06, 2026)

This text may be provided in multiple languages. In case of discrepancies or interpretation differences, the German version shall prevail.

We (“we”, “us”, “our”) take the protection of the data of users (“users” or “you”) of our website and/or our mobile app (the “website” or the “mobile app”) very seriously and are committed to protecting the information that users provide to us in connection with the use of our website and/or mobile app (together: “digital services”). Furthermore, we are committed to protecting and using your data in accordance with applicable law.

This privacy policy explains our practices regarding the collection, use and disclosure of your data when you use our digital assets (the “services”) and when you access the services through your devices.

Please read this privacy policy carefully and make sure that you fully understand our practices regarding your data before using our services. If you have read and fully understood this policy and do not agree with our practices, you must discontinue using our digital assets and services. By using our services, you acknowledge the terms of this privacy policy. Continued use of the services constitutes your acceptance of this privacy policy and any amendments made to it.

In this privacy policy, you will learn:
Which data is required for registration
Which data we collect
How we collect data
Why we collect this data
To whom we disclose the data
Where the data is stored
How long the data is retained
How we protect the data
How we handle minors
Updates or changes to the privacy policy

Which data is required for registration?

Username: A freely selectable playername under which you are displayed in the prediction game.
Email address: A valid email address is required and will be stored. It is also important for communication with participants. In case of support request.
Password: When registering, you choose a password. This is used exclusively for login and stored in encrypted form.

Which data do we collect?

Below is an overview of the data we may collect:
Non-identifiable information that you provide during the registration process or that is collected through the use of our services (“non-personal data”). Non‑personal data does not allow conclusions about the identity of the person from whom it was collected. Non‑personal data includes primarily technical and aggregated usage information.  

Individually identifiable information, i.e., any information that can be used to identify you or that could identify you with reasonable effort (“personal data”). Personal data that we collect through our services may include information requested from time to time such as names, email addresses, addresses, phone numbers, IP addresses, and more. When we combine personal and non‑personal data, the combined data is treated as personal data for as long as they remain in combination.

How do we collect data?

Below are the main methods we use to collect data:
We collect data when you use our services. When you visit our digital assets and use our services, we may collect, record, and store usage sessions and related data.
We collect data that you provide to us directly, for example, when you contact us through a communication channel (e.g., an email with a comment or feedback).
We collect data that you provide to us when you log in via a third‑party provider such as Google, Apple or Facebook.

Why do we collect this data?

We may use your data for the following purposes:
To provide and operate our services
To develop, customize, and improve our services
To respond to your feedback, inquiries, and requests, and to provide support
For internal, statistical, and research purposes
To enhance our data security and fraud prevention capabilities
To investigate violations and enforce our terms and policies and to comply with applicable laws, regulations, or orders

To whom do we disclose this data?

We may share your data with our service providers to operate our services (e.g., third‑party hosting providers). We may also disclose your data under the following circumstances:
(i) To investigate, detect, prevent, or act against illegal activities or misconduct;
(ii) To establish or exercise our rights of defense;
(iii) To protect our rights, property, or personal safety, or the safety of our users or the public;
(iv) In the event of a change of control of our company or one of our affiliates (e.g., merger, acquisition, or sale of substantially all assets);
(v) To collect, store, and/or manage your data via authorized third‑party providers (e.g., cloud service providers), if appropriate for business purposes;

Cookies and similar technologies:
We only use strictly necessary cookies that are essential for the operation of our website and app (e.g., to keep you logged in). We do not use any cookies for advertising or analytical purposes.

Where do we store the data?

>> Non‑personal data <<
Please note that our company and trusted partners and service providers are located worldwide. For the purposes described in this privacy policy, we store and process all non‑personal data in various jurisdictions.
>> User‑collected personal data <<
Personal data is primarily stored and processed on secure servers within the European Economic Area (EEA), such as in Germany or Ireland. However, due to our use of service providers such as Stripe for payment processing, certain data may be transferred to and stored in the United States. We ensure that such transfers are protected by appropriate safeguards, such as the Data Privacy Framework or Standard Contractual Clauses, to maintain a level of protection equivalent to the GDPR.

How long do we retain the data?

We retain collected data as long as necessary to provide our services, comply with legal and contractual obligations, resolve disputes, and enforce agreements. We may correct, complete, or delete inaccurate or incomplete data at our discretion.

How do we protect the data?

The hosting provider of our digital assets provides us with the online platform that enables us to offer our services. Your data may be stored through the hosting provider’s data storage, databases, and general applications. They store your data on secure servers behind a firewall and provide secure HTTPS access to most areas of their services. Despite the measures taken by us and our hosting provider, we cannot guarantee absolute protection and security of the data you provide, upload, or otherwise share. Please use secure passwords and avoid sharing confidential information that could cause significant or lasting harm if disclosed. Since email and instant messaging are not considered secure communication channels, please avoid sending confidential information through these channels.

How do we handle minors?

The minimum age to use the platform is 18 years. Persons under the age of 18 may only provide personal data to us with the consent of a parent or guardian in accordance with Art. 8 GDPR. We do not knowingly collect or process personal data from minors.

We use your personal data only for the purposes outlined in this privacy policy and only when we believe that:
The use of your personal data is required to perform or enter into a contract (e.g., to provide services or customer/technical support)
The use of your personal data is necessary to comply with legal obligations
The use of your personal data is necessary to support our legitimate business interests (while respecting your privacy rights)

As an EU resident, you may:
Request confirmation of whether personal data about you is being processed, and access stored personal data and additional information
Request receipt of personal data you provided in a structured, commonly used, machine‑readable format
Request correction of your stored personal data
Request deletion of your personal data
Object to the processing of your personal data
Request restriction of processing
File a complaint with a supervisory authority

These rights may be subject to limitations based on our legitimate interests and legal requirements. When providing services, we may transfer data cross‑border to affiliates or third parties from your jurisdiction to others worldwide. By using the services, you agree to such transfers outside the EEA. If you reside in the EEA, your data will only be transferred outside the EEA if adequate protection levels are ensured. We take appropriate steps to maintain contractual safeguards with third parties to minimize risks and ensure legal compliance.

>> California Consumer Privacy Act (CCPA) <<
Rights If you use the services as a California resident, you may be entitled to request access to and deletion of your data under the CCPA.

>> The website does not sell users’ personal data. <<
Our website does not sell users’ personal data for CCPA purposes.

Updates or changes to the privacy policy

We may revise this privacy policy at our discretion. The version posted on the website is always the current one (see “Status” above). Please review this policy regularly. For significant changes, we will post a notice on our website. Continued use of the services after updates constitutes acceptance of the revised policy. For general questions about our services or the data we collect, please contact us:
Nionoki GmbH, Theaterstrasse 4, 4051 Basel (Switzerland) support@nionoki.com

Disclaimer

The information provided here does not constitute legal advice and should not be relied upon as such. Legal requirements may vary between jurisdictions. As stated in our terms of use, you are responsible for ensuring your compliance with applicable laws. We strongly recommend seeking professional legal advice to understand the specific requirements that apply to you.

In case of discrepancies, the German version shall prevail.

(Effective: May 06, 2026)

nionoki.com is operated by
Nionoki GmbH
Theaterstr. 4, 4051 Basel, Switzerland
Company registration number CHE-156.725.860
About usFunctionsRulesFAQCollaboration
AppTerms and ConditionsPrivacy PolicyLegal Framework