Privacy Policy
1. Introduction
Mugen Studio Inc. ("Company," "we," "us," or "our") values the privacy and protection of personal information of users of the mobile application "komoriba" (こもりば) and its associated websites and services (collectively, the "Service").
This Privacy Policy ("Policy") describes the types of information we collect, how we use and manage that information, how it may be shared with third parties, and the rights available to users.
In the event of any discrepancy between the Japanese and English versions of this Policy, the Japanese version shall prevail.
2. Information We Collect
2.1 Account Information
- Identifiers: A user ID automatically generated upon first launch of the application (assigned via Firebase Authentication). Registration of an email address or other personal information is not required.
- External Account Linking: If you link your Account to a Google account or Apple ID, we receive an identifier from the linked service (such as an external account ID). We do not obtain passwords from linked services.
2.2 Service Usage Information
- Crystal Ledger: History of Crystal earnings and spending, balances (including Free and Paid Crystal classifications)
- Mokumoku Session Records: Session start and end times, duration, and number of blocked apps
- Content Information: Purchased or acquired Komoriba Content, sharing history
- Inbox: Receipt and read status of announcements from the Service
2.3 Billing and Subscription Information
- Subscription Status: Enrollment status, entitlements (benefit permissions), subscription start date, renewal status
- Purchase History: Transaction IDs and timestamps for consumable purchases (Crystal packs) and subscription purchases
Note: Credit card numbers and other payment method details are managed by the Store (e.g., Apple App Store) and payment processors. We do not directly collect or store this information.
2.4 Device and Technical Information
- Push Notification Tokens: Device tokens used to deliver push notifications via the Apple Push Notification service (APNs)
- Screen Time-Related Information: In connection with the focus session feature, we collect the number of apps the user has designated for blocking. We do not collect the specific names of blocked apps or detailed Screen Time usage statistics.
2.5 Analytics Information
- Firebase Analytics: We collect anonymized usage data such as screen transitions, feature usage frequency, and session information. This data is used for service improvement and usage trend analysis.
3. How We Use Your Information
We use the collected information for the following purposes:
- Providing and Operating the Service: Account management, Mokumoku Session functionality, Crystal management, content delivery
- Billing and Subscription Management: Purchase confirmation and processing, granting Subscription benefits, preventing duplicate transactions
- Sending Notifications: Delivering service-related announcements and important notices via push notifications
- Service Improvement and Analysis: Analyzing usage patterns, improving features, developing new functionality
- Fraud Prevention: Detecting and preventing unauthorized Crystal acquisition, unauthorized access, and other fraudulent activity
- Customer Support: Responding to user inquiries
- Legal Compliance: Complying with applicable laws and regulations
4. Sharing Information with Third Parties
We do not share your personal information with third parties except in the following circumstances:
4.1 Service Providers
We use the following third-party services to operate the Service. Information is shared with these providers only to the extent necessary for their services.
| Service | Provider | Purpose | Key Information Shared |
|---|---|---|---|
| Firebase Authentication | Google LLC | User authentication | User ID, authentication tokens |
| Firebase Analytics | Google LLC | Usage analysis | Anonymized usage data |
| RevenueCat | RevenueCat, Inc. | Billing and subscription management | User ID, purchase and subscription information |
| Google Cloud Platform | Google LLC | Backend infrastructure | General service data |
| Cloudflare | Cloudflare, Inc. | Website delivery and CDN | Access logs |
| Apple Push Notification service | Apple Inc. | Push notification delivery | Device tokens |
4.2 Other Disclosures
- Legal Requirements: When required by court orders, legal obligations, or lawful requests from law enforcement
- Protection of Rights: When necessary to protect the life, person, or property of the Company, users, or third parties
- Business Transfers: In the event of a merger, acquisition, or other business succession (we will require the successor to assume the obligations under this Policy)
5. International Data Transfers
The Service's backend infrastructure is primarily located in Japan (Google Cloud Platform, Tokyo region). However, certain third-party services (such as Firebase Authentication and Cloudflare) operate on global infrastructure, and your information may be processed on servers located outside of Japan.
We endeavor to ensure that appropriate security measures are in place when information is transferred internationally.
6. Data Security
- We implement reasonable technical and organizational security measures to prevent unauthorized access, loss, alteration, or leakage of collected information.
- Communications are protected by encryption (HTTPS/TLS).
- When an Account is based on anonymous authentication tied to a device, we do not hold additional identifying information (such as name or address), and we are generally unable to directly identify a specific individual.
7. Data Retention
- We retain user information for as long as it is necessary to provide the Service.
- Even if access to an Account is lost due to app deletion or other reasons, data on our servers may be retained for a certain period. We will endeavor to delete unnecessary data after a reasonable period.
- Information required to be retained under applicable laws will be kept for the period prescribed by such laws.
8. Your Rights
8.1 Rights Under Japanese Data Protection Law
Users residing in Japan have the right to request disclosure, correction, deletion, or suspension of use of their personal information held by the Company, in accordance with the Act on the Protection of Personal Information. Please contact us using the information at the end of this Policy to make such requests.
8.2 Push Notification Management
You can control push notification settings (on/off) through your device settings.
9. Children's Privacy
- The Service does not impose age restrictions. However, minors should use the Service with the consent of a parent or legal guardian.
- The Service is based on anonymous authentication and does not require the provision of personally identifiable information such as names or email addresses. As such, we do not typically collect information that can identify a child personally. However, linking an external account or making purchases (Paid Crystals, Subscriptions) should be done under the supervision and with the consent of a parent or legal guardian.
- If you are a parent or guardian and have concerns about your child's use of the Service, please contact us using the information at the end of this Policy.
10. Changes to This Policy
- We may update this Policy from time to time in response to changes in applicable laws, changes to the Service, or other circumstances.
- For significant changes, we will provide advance notice through in-app notifications, push notifications, or postings on our website.
- The updated Policy will take effect upon being posted within the Service or on our website.
11. Contact Us
For questions or requests regarding this Policy, please contact:
- Operator: Mugen Studio Inc. (無限スタジオ株式会社)
- Address: 2F-C, Shibuya Dogenzaka Tokyu Building, 1-10-8 Dogenzaka, Shibuya-ku, Tokyo, Japan
- Email: komoriba@mugen-studio.com
Supplementary Provisions
- This Policy shall take effect on March 23, 2026.