Privacy Policy
Effective Date: 28/05/2024 · Last Updated: 28/05/2024
This Privacy Policy explains how Kosmica Labs (“Kosmica Labs,” “we,” “us,” or “our”) collects, uses, stores, shares, and protects personal data when you use our websites, mobile applications, games, software products, AI tools, quantum-safe/security experiments, prototypes, custom software, and related services.
Kosmica Labs is a personal product studio building software products across games, AI tools, intelligence systems, quantum-safe experiments, utilities, and other future-facing software.
This Privacy Policy applies to:
Our website and landing pages;
Mobile applications and games published by Kosmica Labs;
Web applications, tools, demos, prototypes, and experiments;
AI-assisted software tools and intelligence systems;
Quantum-safe, encryption, privacy, or security-related products;
Custom software, client projects, and related support services;
Communications with us, including email, forms, support messages, and social media interactions.
Some Kosmica Labs products may have additional privacy notices, in-app disclosures, Data Safety information, or product-specific terms. If a product-specific notice conflicts with this Privacy Policy, the product-specific notice will apply to that product.
1. Who We Are
Kosmica Labs is operated by:
Kosmica Labs
Operated by: Athanasios Kostikas
Location: Greece, European Union
Email: info@excell.ink
Website: https://excell.ink
For most consumer-facing products, Kosmica Labs acts as the data controller, meaning we decide why and how personal data is processed.
For some custom software, client projects, enterprise systems, or B2B services, we may act as a data processor on behalf of a client. In those cases, the client is usually the data controller, and our processing is governed by a separate agreement or Data Processing Agreement.
2. Summary
We collect only the personal data needed to provide, secure, improve, and operate our products.
Depending on the product you use, we may collect:
Contact information, such as name and email address;
Account information, if a product includes login or user profiles;
Device and technical data, such as IP address, device type, operating system, app version, crash logs, and diagnostic data;
Mobile app identifiers, such as installation IDs, advertising IDs, push notification tokens, or similar identifiers;
Gameplay and app usage data, such as progress, scores, coins, achievements, settings, sessions, interactions, and in-app events;
Analytics data about how our products are used;
Payment and subscription-related information, usually processed by app stores or payment providers;
User-generated content, files, prompts, text, images, uploaded documents, or other materials you choose to submit;
Security-related data, such as login activity, audit logs, fraud prevention signals, and encryption-related metadata;
Communication data, such as messages you send to us for support or business inquiries.
We may use third-party service providers for hosting, analytics, crash reporting, payments, advertising, cloud infrastructure, app distribution, email, and security.
We do not sell your personal data for money. However, some advertising or analytics partners may process device identifiers or usage data to provide ads, measure performance, prevent fraud, and improve services, depending on the product and your privacy choices.
3. Personal Data We Collect
The data we collect depends on the product, app, or service you use.
3.1 Data You Provide Directly
You may provide personal data when you:
Contact us by email or through a form;
Subscribe to updates or newsletters;
Create an account;
Use a product that allows saving progress, files, settings, or projects;
Upload files, images, documents, prompts, or other content;
Request support;
Purchase a subscription, digital product, or in-app item;
Participate in beta tests, surveys, feedback sessions, or product experiments;
Enter into a custom software or professional services relationship with us.
This may include:
Name;
Email address;
Company name;
Job title;
Billing or payment-related details;
Support messages;
Feedback;
Uploaded files or content;
AI prompts and generated outputs;
Project details for custom software work;
Any other information you choose to provide.
3.2 Data Collected Automatically
When you use our websites, apps, games, or tools, we may automatically collect:
IP address;
Device type;
Device model;
Browser type;
Operating system;
App version;
Language settings;
Time zone;
Session duration;
Pages or screens viewed;
Buttons, features, or interactions used;
Referring URLs;
Approximate location inferred from IP address;
Crash reports;
Performance logs;
Error messages;
Diagnostic data;
Security logs;
Cookie identifiers;
App instance IDs;
Advertising IDs, where applicable;
Push notification tokens, where applicable.
3.3 Mobile App and Game Data
For mobile apps and games, we may collect:
Gameplay progress;
Level completion;
Scores;
Virtual currency, coins, points, or rewards;
In-game purchases or subscription status;
Achievements;
Game settings;
Device performance;
Crash logs;
Ad views and ad interactions;
Rewarded ad events;
App install source;
Session frequency and session length;
User preferences;
Leaderboard or ranking information, if enabled;
Multiplayer, social, or community interactions, if a product includes them.
If a game or app uses ads, ad networks may collect or receive data such as device identifiers, advertising IDs, IP address, app activity, approximate location, ad views, ad clicks, and fraud-prevention signals.
3.4 AI Tool Data
If you use AI tools, agents, analysis systems, or productivity products from Kosmica Labs, we may process:
Prompts you submit;
Uploaded documents, files, images, or text;
Generated outputs;
User instructions;
Workspace/project information;
Feedback on AI responses;
Logs needed to maintain, debug, and improve the product;
Usage patterns, such as selected features or model settings.
Unless clearly stated otherwise, you should not submit highly sensitive personal data, confidential business secrets, health data, financial data, legal case details, government secrets, passwords, private keys, or other high-risk information into experimental AI tools.
3.5 Quantum-Safe, Encryption, and Security Product Data
For quantum-safe, encryption, privacy, or security-related products, we may process:
Uploaded files or encrypted content;
File names, file sizes, file types, and timestamps;
Public keys;
Encryption-related metadata;
Expiration settings;
Access tokens or secure link identifiers;
Download or access logs;
Security audit logs;
Abuse-prevention data;
Device and network information;
Diagnostic information needed to verify product functionality.
Where a product uses encryption, post-quantum cryptography, or quantum-safe concepts, the specific security design will be described in that product’s documentation. Not every Kosmica Labs product uses the same security architecture. References to “quantum-safe,” “post-quantum,” or “encryption” apply only to the specific product or feature where they are explicitly described.
You should never send us private cryptographic keys, seed phrases, wallet recovery phrases, passwords, or other secret credentials unless a product explicitly requires it and clearly explains how that information is handled.
3.6 Location Data
Most Kosmica Labs products do not require precise location data.
Some current or future apps may request location access if location is necessary for a feature, such as maps, geolocation, local gameplay, area capture, or location-based utilities. If a product requests precise location, it will ask for permission through your device settings or an in-app prompt.
You can disable location access at any time through your device settings, but some features may stop working.
3.7 Payment and Purchase Data
If you buy an app, subscription, in-app purchase, digital product, or service, payment may be processed by third-party platforms such as Google Play, Apple App Store, Stripe, PayPal, or other payment providers.
We usually do not receive your full payment card details. We may receive limited transaction information such as:
Purchase status;
Subscription status;
Product purchased;
Transaction ID;
App store receipt data;
Billing country;
Refund or cancellation status.
Payment providers process your payment data according to their own privacy policies.
3.8 Cookies and Similar Technologies
Our websites and web apps may use cookies, local storage, pixels, SDKs, and similar technologies to:
Keep services working;
Remember preferences;
Improve performance;
Understand usage;
Measure marketing or traffic sources;
Prevent abuse;
Provide analytics;
Support advertising, where applicable.
Where required by law, we will ask for your consent before using non-essential cookies or similar tracking technologies.
You can control cookies through your browser settings. Blocking cookies may affect some features.
4. How We Use Personal Data
We may use personal data for the following purposes:
4.1 To Provide Our Products and Services
We use data to:
Operate websites, apps, games, tools, and services;
Create and manage accounts;
Save progress, settings, files, or preferences;
Provide requested features;
Deliver downloads, links, reports, or outputs;
Process purchases and subscriptions;
Provide customer support;
Send service-related messages.
4.2 To Improve and Develop Products
We use data to:
Understand how users interact with our products;
Improve gameplay, user experience, design, performance, and features;
Debug errors and crashes;
Test new features;
Measure product performance;
Prioritize product development;
Improve AI tools, systems, and workflows.
4.3 To Secure Our Services
We use data to:
Detect, prevent, and respond to fraud, abuse, spam, attacks, unauthorized access, and security incidents;
Verify system integrity;
Monitor service performance;
Protect users and our infrastructure;
Maintain audit logs;
Enforce our terms and policies.
4.4 To Provide Ads and Monetization Features
Some free mobile apps or games may show ads, including banner ads, interstitial ads, rewarded ads, or other formats.
Advertising partners may use data to:
Show ads;
Limit ad frequency;
Measure ad performance;
Detect ad fraud;
Provide rewarded ad functionality;
Personalize ads, where allowed and consented to;
Report aggregated campaign results.
Where required, we will ask for consent before using personalized ads or tracking technologies. You may also be able to limit ad personalization through your device settings.
4.5 To Communicate With You
We may use contact details to:
Respond to messages;
Provide support;
Send important service notices;
Send security alerts;
Send product updates;
Send marketing messages, if you opted in or where legally allowed.
You can unsubscribe from marketing emails at any time.
4.6 For Custom Software and Client Work
For custom software, consulting, development, or client projects, we may process personal data to:
Communicate with clients;
Manage project requirements;
Build, test, deploy, and maintain software;
Provide technical support;
Handle contracts, invoices, and payments;
Protect confidential information;
Comply with legal and contractual obligations.
Where we process personal data on behalf of a client, we will follow the client’s documented instructions and any applicable Data Processing Agreement.
4.7 To Comply With Legal Obligations
We may process data to:
Comply with tax, accounting, consumer protection, data protection, and other legal obligations;
Respond to lawful requests;
Exercise or defend legal claims;
Maintain required business records;
Enforce our terms.
5. Legal Bases for Processing Personal Data
If you are in the European Economic Area, the United Kingdom, or another region with similar rules, we rely on the following legal bases:
Purpose Legal Basis
Providing apps, games, tools, accounts, and services Performance of a contract
Responding to support requests or inquiries Performance of a contract or legitimate interests
Processing purchases, subscriptions, and billing Performance of a contract and legal obligations
Analytics, diagnostics, and product improvement Legitimate interests or consent where required
Crash reporting and security logs Legitimate interests
Fraud prevention and abuse prevention Legitimate interests
Personalized ads and non-essential tracking Consent where required
Non-personalized ads and ad fraud prevention Legitimate interests or consent where required
Marketing emails Consent or legitimate interests, depending on the context
Custom software and client services Performance of a contract, legitimate interests, or legal obligations
Legal compliance and record keeping Legal obligations
Protecting our rights and enforcing terms Legitimate interests
Processing sensitive data, if ever required Explicit consent or another lawful basis allowed by law
Where we rely on consent, you can withdraw your consent at any time. Withdrawal of consent does not affect processing that happened before consent was withdrawn.
6. Advertising, Analytics, and Third-Party SDKs
Some Kosmica Labs apps, games, websites, or tools may use third-party services such as:
App stores and distribution platforms;
Cloud hosting providers;
Analytics providers;
Crash reporting providers;
Advertising networks;
Ad mediation platforms;
Payment processors;
Email providers;
Authentication providers;
AI infrastructure providers;
Security and monitoring tools.
Examples may include services such as Google Play Services, Firebase, Google Analytics, Google AdMob, AppLovin MAX, Unity Ads, ironSource, Apple services, Stripe, GitHub, Vercel, AWS, Cloudflare, OpenAI, Anthropic, or similar providers, depending on the product.
The exact providers used may vary by product. Product-specific notices or app store Data Safety sections may provide additional details.
Third-party providers may process data under their own privacy policies. We encourage you to review their privacy practices.
7. Google Play, App Stores, and Data Safety
For apps distributed through Google Play or other app stores, the app listing may include a Data Safety, Privacy Nutrition Label, or similar disclosure.
Those app store disclosures summarize data practices for that specific app. This Privacy Policy provides a broader explanation of our data practices across Kosmica Labs products.
If there is a difference between this Privacy Policy and an app-specific disclosure, the app-specific disclosure should be treated as the more specific explanation for that app.
Depending on the app, we may disclose in the app store listing whether the app collects or shares:
Device identifiers;
App activity;
App interactions;
Crash logs;
Diagnostics;
Approximate location;
User IDs;
Purchases;
Gameplay data;
Advertising data;
Uploaded content;
Contact information.
We aim to keep app store disclosures accurate and consistent with actual app behavior.
8. Children’s Privacy
Kosmica Labs products are generally intended for users aged 13 or older, unless a specific product clearly states otherwise.
We do not knowingly collect personal data from children under the age required by applicable law without appropriate consent.
If a Kosmica Labs product is designed for children, families, or mixed audiences, we will apply additional protections, which may include:
Age-appropriate privacy notices;
Limited data collection;
Parental consent where required;
Restricted advertising practices;
Use of child-appropriate SDKs where required;
No behavioral advertising to children where prohibited;
Additional app store compliance steps.
If you believe that a child has provided us with personal data without proper consent, contact us at [privacy@excell.ink]. We will take reasonable steps to delete the data where required.
9. User-Generated Content, Files, and Uploaded Materials
Some products may allow you to upload, create, process, encrypt, analyze, or share content, including files, text, images, documents, prompts, game data, or other materials.
You are responsible for ensuring that you have the right to upload and process any content you submit.
You should not upload:
Illegal content;
Malware or harmful files;
Personal data of others without a lawful basis;
Confidential information you are not authorized to share;
Passwords, private keys, wallet seed phrases, or authentication secrets;
Highly sensitive data unless the product is specifically designed for that purpose and you understand the risks.
For file-sharing, encryption, or quantum-safe experiments, we may process uploaded files only as needed to provide the feature, such as encrypting, storing, transmitting, deleting, or making files available through secure links.
File retention periods may vary by product. Some files may be automatically deleted after a set period, while others may remain until you delete them or your account is deleted.
10. AI-Specific Notice
Some Kosmica Labs tools may use artificial intelligence systems or third-party AI providers to process prompts, text, files, images, documents, or other inputs.
Depending on the product, AI-related data may be used to:
Generate responses;
Summarize content;
Analyze documents;
Extract information;
Classify data;
Assist reasoning or decision-making;
Improve product quality;
Debug or monitor performance;
Prevent abuse.
Unless a product clearly states otherwise, experimental AI tools should not be treated as suitable for highly sensitive, regulated, confidential, legal, medical, financial, or safety-critical information.
AI outputs may be incomplete, inaccurate, or unsuitable for certain decisions. You are responsible for reviewing outputs before relying on them.
If a product uses third-party AI providers, your inputs and outputs may be processed by those providers according to contractual terms and privacy protections.
11. Security and Encryption
We use reasonable technical and organizational measures to protect personal data. These may include:
Encryption in transit;
Encryption at rest where appropriate;
Access controls;
Authentication controls;
Logging and monitoring;
Secure development practices;
Cloud security controls;
Backups;
Least-privilege access;
Internal data minimization;
Vendor review where appropriate.
No system is 100% secure. We cannot guarantee absolute security.
For products that include quantum-safe, post-quantum, or encryption features, those features are product-specific. They do not mean that every Kosmica Labs product uses the same level of encryption, nor do they guarantee complete protection against all current or future threats.
12. How We Share Personal Data
We may share personal data with:
12.1 Service Providers
We may share data with trusted providers who help us operate our products, such as:
Hosting providers;
Cloud infrastructure providers;
Analytics providers;
Crash reporting tools;
Payment processors;
App stores;
Advertising partners;
Email providers;
Customer support tools;
Security and monitoring services;
AI infrastructure providers;
Development and deployment platforms.
These providers may only process data as needed to provide their services, subject to applicable contracts and legal requirements.
12.2 Advertising and Analytics Partners
For apps or websites that use ads or analytics, we may share or allow access to device identifiers, app activity, ad interactions, crash data, approximate location, and technical information.
Where required, we will obtain consent before using personalized ads or similar tracking technologies.
12.3 Business Clients
For custom software, enterprise services, or client projects, we may share data with the relevant client where necessary to perform the contract or provide the service.
12.4 Legal and Safety Reasons
We may disclose data if we believe it is necessary to:
Comply with law;
Respond to lawful requests;
Protect our rights;
Protect users;
Prevent fraud, abuse, or security incidents;
Enforce our terms;
Defend against legal claims.
12.5 Business Transfers
If Kosmica Labs is involved in a merger, acquisition, sale of assets, restructuring, or similar transaction, personal data may be transferred as part of that transaction, subject to appropriate safeguards.
13. International Data Transfers
Kosmica Labs may use service providers located in countries outside your country of residence, including outside the European Economic Area.
Where required, we use appropriate safeguards for international transfers, such as:
Standard Contractual Clauses;
Adequacy decisions;
Data Processing Agreements;
Contractual and technical safeguards;
Security measures appropriate to the type of data.
14. Data Retention
We keep personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or allowed by law.
Retention periods may vary depending on the product and data type.
Data Type Typical Retention
Contact messages As long as needed to respond and maintain records
Account data Until account deletion or inactivity-based deletion
Support records As long as needed for support, security, and legal records
Gameplay data As long as needed to provide game progress, leaderboards, rewards, or analytics
Analytics data Usually retained in aggregated or limited form
Crash logs and diagnostics As long as needed to debug, secure, and improve products
Payment records As required for tax, accounting, fraud prevention, and legal compliance
Uploaded files Product-specific; may be deleted automatically or retained until user deletion
AI prompts and outputs Product-specific; retained only as needed unless otherwise disclosed
Security logs As long as needed for security, abuse prevention, and legal purposes
Custom software project records As required by contract, support needs, and legal obligations
When data is no longer needed, we delete it, anonymize it, or securely retain it only where legally necessary.
15. Your Privacy Rights
Depending on your location, you may have rights over your personal data.
If you are in the European Economic Area, United Kingdom, or a similar jurisdiction, your rights may include:
The right to access your personal data;
The right to correct inaccurate or incomplete data;
The right to request deletion of your data;
The right to restrict processing;
The right to object to processing;
The right to data portability;
The right to withdraw consent at any time;
The right to lodge a complaint with a data protection authority.
To exercise your rights, contact us at:
[privacy@excell.ink]
We may need to verify your identity before responding. We will respond within the timeframe required by applicable law.
If you are located in Greece or the European Union, you may also have the right to contact your local data protection authority, including the Hellenic Data Protection Authority or another competent supervisory authority.
16. Your Choices and Controls
You may control your privacy in several ways:
Account Settings
If a product includes an account, you may be able to update or delete certain information through account settings.
Device Permissions
You can control app permissions such as location, camera, microphone, notifications, storage, and tracking through your device settings.
Advertising Choices
You may be able to limit ad personalization through:
Android advertising settings;
iOS tracking settings;
In-app consent prompts;
Ad network opt-out tools;
Browser privacy settings.
Cookies
You can manage cookies through your browser settings or consent banner, where available.
Marketing
You can unsubscribe from marketing emails by using the unsubscribe link or contacting us.
Push Notifications
You can disable push notifications through your device settings.
17. Automated Decision-Making and Profiling
Kosmica Labs does not generally use personal data for decisions that produce legal or similarly significant effects through fully automated processing.
Some products may use automated systems to:
Recommend content;
Detect abuse;
Rank gameplay results;
Personalize app experiences;
Improve AI outputs;
Identify suspicious activity;
Measure engagement;
Show ads or limit ad frequency.
Where legally required, we will provide additional information and choices related to profiling or automated processing.
18. Sensitive Personal Data
We do not intentionally collect sensitive personal data unless a specific product or service clearly requires it and provides additional notice.
Sensitive data may include information about health, biometrics, precise location, political opinions, religion, sexual orientation, criminal convictions, or similar categories under applicable law.
Please do not submit sensitive personal data unless the product specifically asks for it and explains why it is needed.
19. Custom Software, Client Data, and Confidentiality
For custom software projects, prototypes, enterprise tools, or client engagements, Kosmica Labs may process business information, technical documentation, project data, credentials provided for development environments, test data, user data, or other materials supplied by a client.
Where appropriate, this processing will be governed by separate agreements, such as:
Master Services Agreement;
Statement of Work;
Non-Disclosure Agreement;
Data Processing Agreement;
Security or confidentiality addendum.
Clients are responsible for ensuring they have a lawful basis to provide personal data to Kosmica Labs.
Kosmica Labs will process client data only as needed to deliver the agreed services, unless otherwise required by law.
20. Third-Party Links and Services
Our products may contain links to third-party websites, app stores, repositories, tools, APIs, SDKs, or services.
We are not responsible for the privacy practices of third parties. Their privacy policies apply to their services.
21. Open Source, GitHub, and Developer Tools
Some Kosmica Labs projects may include open-source components, public repositories, demos, or developer tools.
If you interact with us through platforms such as GitHub, Discord, X/Twitter, LinkedIn, Product Hunt, app stores, or similar platforms, those platforms may process your data under their own privacy policies.
Do not include secrets, access tokens, passwords, private keys, confidential information, or personal data in public issues, repositories, comments, discussions, or pull requests.
22. Beta Tests, Experiments, and Prototypes
Kosmica Labs may release experimental products, prototypes, MVPs, alpha tests, beta tests, or early-access software.
Experimental products may change frequently and may collect diagnostic, usage, feedback, and performance data to help us understand whether the product works and how it should improve.
We will aim to clearly identify experimental products where appropriate.
You should avoid submitting sensitive, confidential, or mission-critical data into prototypes unless we explicitly state that the product is designed to handle such data.
23. Data Minimization
We aim to collect only the data that is reasonably necessary for each product or feature.
Where possible, we use:
Aggregated data;
Anonymized data;
Pseudonymized identifiers;
Local processing;
Short retention periods;
Optional permissions;
Limited access controls.
24. Do Not Track
Some browsers offer "Do Not Track" signals. There is currently no consistent industry standard for responding to these signals. We may not respond to Do Not Track signals unless legally required.
Where required by applicable law, we will honor legally recognized browser-based opt-out mechanisms.
25. Changes to This Privacy Policy
We may update this Privacy Policy from time to time.
If we make material changes, we may notify you by:
Updating the "Last Updated" date;
Posting a notice on our website;
Showing an in-app notice;
Sending an email, where appropriate.
Your continued use of our products after changes become effective means you accept the updated Privacy Policy, where legally allowed.
26. Contact Us
If you have questions, requests, or concerns about this Privacy Policy or our data practices, contact us at:
Kosmica Labs
Email: [privacy@excell.ink]
Website: [https://excell.ink]
Location: [Greece / European Union / Insert full business address if required]
For data protection requests, please include:
Your name;
The product or app you used;
The email address associated with your request, if applicable;
A clear description of your request;
Any relevant account, transaction, or support reference.
We will respond in accordance with applicable law.
27. Product-Specific Notes
Because Kosmica Labs builds different types of products, the following notes may apply depending on the product.
Mobile Games
Mobile games may process gameplay data, device data, crash logs, ad interactions, purchase status, and analytics. Games may use third-party ads, rewarded ads, and analytics SDKs.
AI Tools
AI tools may process prompts, uploaded files, generated outputs, feedback, and usage logs. Do not submit sensitive or confidential information unless the specific product is designed for it.
Quantum-Safe and Encryption Tools
Quantum-safe or encryption tools may process uploaded files, public keys, encrypted data, secure link metadata, access logs, and security diagnostics. Product-specific documentation will explain the relevant cryptographic design.
Utilities and Micro-Tools
Simple utilities may process uploaded files or inputs temporarily to provide the requested function. Where possible, files may be processed locally, temporarily, or deleted after processing.
Custom Software
For client projects, Kosmica Labs may process project data, business contact details, technical information, and client-provided data under a separate agreement.
Websites and Landing Pages
Websites may process cookies, analytics data, contact forms, newsletter subscriptions, traffic data, and basic security logs.