Privacy Policy
Last updated: May 15, 2026
This Privacy Policy explains how Who Did It? handles information when you use the web version or mobile app of the game.
Who Did It? is a mystery social deduction party game where players can create rooms, join games, receive roles, discuss clues, and vote to find the criminals.
1. Information We Collect
The game may process limited information needed for gameplay, including:
- Player display names entered by users.
- Room codes and temporary room data.
- Game state, roles, votes, clues, and results during a room game.
- Gemini API key if you choose to enter your own key.
- Basic technical information needed for hosting, security, analytics, ads, or service operation.
2. Gemini API Key
If you choose to use AI-generated stories, you may enter your own Gemini API key inside the game settings.
Your API key is stored locally on your device or browser using local storage. It is used only to request AI-generated stories from Gemini. If you do not enter an API key, the game uses local offline stories instead.
3. Room Data
When using room mode, temporary room data may be stored in Firebase Realtime Database. This may include room code, player names, game progress, votes, and role assignments.
Room data is designed to be temporary. Rooms expire after a limited time, and expired rooms are cleaned automatically when the app or website is used.
4. Offline Stories
If no Gemini API key is available, or if the AI service cannot be reached, the game may use local offline stories stored inside the app or website.
5. Advertising and Cookies
We may use Google AdSense or other advertising services to display ads on the web version of Who Did It?.
Third-party vendors, including Google, may use cookies to serve ads based on a user's prior visits to this website or other websites.
Google's use of advertising cookies enables it and its partners to serve ads to users based on their visit to our site and/or other sites on the Internet.
Users may opt out of personalized advertising by visiting Google's Ads Settings.
6. Third-Party Services
The game may use third-party services, including but not limited to:
- Firebase for hosting and temporary room data.
- Google Gemini API for AI-generated stories when the user provides an API key.
- Google AdSense for web advertising if enabled.
- Google AdMob and RevenueCat in the Android app version, where applicable.
7. Data Sharing
We do not sell personal information. Limited data may be processed by third-party services only as needed to operate the game, provide AI stories, host room data, process purchases, or display ads.
8. Data Retention
Room data is temporary and is intended to expire automatically. Some local settings, such as language preference, light mode, saved API keys, or local story progress, may remain stored on the user's device or browser until the user clears them.
9. Children's Privacy
Who Did It? is intended as a social party game. Users should follow the age requirements of the platforms and services they use. We do not knowingly collect personal information from children.
10. Contact
If you have questions about this Privacy Policy, you can contact us at: