Privacy Policy
Last updated:
1. Introduction
SkinTracker ("we", "our", or "us") operates the SkinTracker mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App.
By using SkinTracker, you agree to the collection and use of information in accordance with this policy.
2. Who We Are
SkinTracker is operated by:
OneHire sp. z o.o. (NIP: 7712914680), based in Poland.
Contact: skinstrackrapp@gmail.com
3. Age Requirement
SkinTracker is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are under 13, please do not use the App. If we become aware that we have collected personal data from a child under 13 without parental consent, we will delete it promptly.
4. Information We Collect
4.1 Information You Provide
Steam ID - you provide your Steam ID to link your CS2 inventory to the App. We use this solely to fetch your public skin inventory data via the Steam API.
4.2 Information Collected Automatically
Google Sign-In data - when you sign in with Google, we receive your Google account identifier, email address, and display name via Firebase Authentication.
Firebase Authentication data - a unique user ID is created and stored to manage your account and associate your portfolio data with your account.
Subscription status - we record whether your account is on the free or premium plan, to control access to premium features.
4.3 Diagnostic and Analytics Data
Firebase Crashlytics — automatically collects crash reports and diagnostic data (device model, OS version, app version, stack traces) to help us identify and fix bugs. This data does not identify you personally.
Firebase Analytics — collects anonymized usage data such as screen views and feature interactions to help us understand how the App is used and improve the user experience. IP addresses are anonymized.
5. How We Use Your Information
We use the collected information to:
Provide and maintain the App and its features
Authenticate you and manage your account
Fetch and display your CS2 skin inventory and price history
Determine your subscription tier and unlock premium features
Detect and fix crashes and technical issues
Analyze usage patterns to improve the App
Respond to your support requests
6. Legal Basis for Processing (GDPR)
For users in the European Economic Area (EEA), including Poland, we process your data on the following legal bases:
Performance of a contract — processing necessary to provide the App's core functionality (account management, inventory display)
Legitimate interests — crash reporting and analytics to maintain app quality and security
Consent — where you have provided explicit consent (e.g., optional analytics)
7. Data Sharing and Third Parties
We do not sell your personal data. We share data only with the following third-party services necessary to operate the App:
Service | Purpose | Privacy Policy |
|---|---|---|
Google Firebase (Auth, Firestore, Crashlytics, Analytics) | Authentication, database, crash reporting, analytics | |
Steam (Valve Corporation) | Fetching public CS2 inventory data | |
Apple App Store | In-app purchase processing (iOS) | |
Google Play | In-app purchase processing (Android) |
Purchases are processed entirely by Apple or Google. We do not receive or store your payment card details.
8. Data Retention
Account data is retained for as long as your account is active. If you delete your account, your data is deleted within 30 days.
Crash and analytics data is retained according to the default retention settings of Firebase Crashlytics and Firebase Analytics (typically 90 days for crash data, up to 14 months for analytics).
9. Your Rights (GDPR)
If you are located in the EEA, you have the following rights regarding your personal data:
Access — request a copy of the data we hold about you
Rectification — request correction of inaccurate data
Erasure — request deletion of your personal data ("right to be forgotten")
Restriction — request that we limit how we use your data
Portability — request your data in a machine-readable format
Objection — object to processing based on legitimate interests
To exercise any of these rights, contact us at skinstrackrapp@gmail.com. We will respond within 30 days.
You also have the right to lodge a complaint with the Polish supervisory authority: Urząd Ochrony Danych Osobowych (UODO), ul. Stawki 2, 00-193 Warsaw, Poland - uodo.gov.pl.
10. Data Security
We implement appropriate technical measures to protect your data, including encrypted data transmission (HTTPS/TLS) and Firebase's built-in security rules. However, no method of transmission over the internet is 100% secure.
11. International Data Transfers
Firebase services are operated by Google and may process data on servers located outside of Poland or the EEA. Google is certified under the EU-U.S. Data Privacy Framework and uses Standard Contractual Clauses to ensure adequate protection for such transfers.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the "Last updated" date at the top of this page. Continued use of the App after any changes constitutes acceptance of the revised policy.
13. Contact Us
For any questions or requests regarding this Privacy Policy, contact us at:
OneHire sp. z o.o. (NIP: 7712914680), Poland
