Privacy Policy

GDPR + CCPA + COPPA. Children’s privacy protected. Adsterra disclosed.

Privacy Policy

Last updated: May 2026 · Effective: May 1, 2026

ASK.ME Games (“we”, “the Site”) respects your privacy — especially the privacy of children. This Privacy Policy describes what data we collect, why, with whom it is shared, the rights you have under applicable law, and the specific framework that applies to children. The policy complies with the EU GDPR (Regulation 2016/679), the UK Data Protection Act 2018, the Italian implementation through D.Lgs. 196/2003 as amended, the U.S. Children’s Online Privacy Protection Act (COPPA), the California Consumer Privacy Act as amended by the CPRA, and is supplemented by the Children’s Privacy Notice that addresses minors specifically.

1. Data controller

The data controller for personal data processed through askme.rest is Giovanni Picaro. The contact for privacy matters is privacy [at] askme [punto] rest.

2. What we collect and why

Categories of personal data processed:

  • Server logs — IP address, browser user agent, requested URL, referrer, timestamp. Retained for 30 days for security, fraud prevention, and operational purposes. Legal basis: legitimate interest under GDPR Art. 6(1)(f).
  • Cookie consent state — record of your consent decisions for the cookie categories described in our Cookie Policy. Legal basis: legal obligation under ePrivacy Directive / GDPR Art. 6(1)(c).
  • Email correspondence — messages sent to our published email addresses, retained for the time needed to respond and any record-keeping. Legal basis: legitimate interest, consent where applicable.
  • Aggregate analytics (with consent) — anonymized usage data: page views, time on page, country-level location, device type. We do not collect personal-identifying data tied to individual visitors at the analytics level.
  • Advertising data (with consent) — cookies and identifiers used by Adsterra; see Section 3.
  • In-game data — the games on the Site are operated by their developers; any data those games collect (high scores, progress, in-game preferences) is governed by the developer’s own privacy framework, not ours.

3. Advertising partner: Adsterra

The Site displays advertising delivered exclusively by Adsterra. Adsterra is a third-party ad network that uses cookies and similar technologies to deliver advertising. Specifically:

  • Adsterra and its sub-vendors set cookies for ad delivery, frequency capping, and (with consent) personalization.
  • Visitors can manage advertising consent through the consent management platform deployed on the Site.
  • Adsterra’s privacy policy is available at adsterra.com/privacy-policy.
  • For sites with potential under-13 audiences, Adsterra provides COPPA-compliant ad-unit options that do not engage in behavioral targeting; we use these where applicable. See Children’s Privacy.

We do not run AdSense or Mediavine on this Site. Adsterra is the only third-party display-advertising network used.

4. Children — COPPA and GDPR Art. 8

The Site is a general-audience site that includes minors among its visitors. Specific protections:

  • The Site does not knowingly collect personal information from children under 13 (the COPPA threshold under U.S. law).
  • The Site does not knowingly collect personal information from children under 16 in EU jurisdictions where the higher GDPR Art. 8 age applies (Italy applies 14, but we apply the more conservative 16 by default for EU traffic).
  • Where ad-unit selection is geographically appropriate, we use COPPA-compliant ad inventory from Adsterra that does not perform behavioral targeting on the user.
  • We do not require account registration for casual play.
  • Parents who become aware that a child has provided personal data through the Site can email privacy [at] askme [punto] rest for prompt deletion.

Detailed framework on Children’s Privacy.

5. Cookies and similar technologies

The full inventory and consent framework is in our Cookie Policy. Categories used: strictly necessary, analytics, advertising. Categories beyond strictly necessary require consent.

6. Sharing personal data

Visitor personal data is shared only with:

  • Service providers necessary for operation (hosting provider, content-delivery network) under appropriate data-protection agreements.
  • Adsterra as our advertising network, subject to consent and the framework above.
  • Game developers in connection with game-specific data (high scores, in-game progress) handled by the developer’s own infrastructure.
  • Law-enforcement authorities under valid legal process. We resist over-broad demands and apply applicable mutual-legal-assistance frameworks for cross-border requests.
  • Professional advisors (legal counsel, security professionals) where necessary and under confidentiality.

We do not sell visitor data.

7. International transfers

Some service providers (CDN, anti-DDoS, certain analytics, Adsterra and its sub-vendors) process data outside the EEA. Where such transfers occur, they are subject to GDPR Art. 46 safeguards (Standard Contractual Clauses, the EU-U.S. Data Privacy Framework where applicable).

8. Your rights under GDPR

Within the EEA and the UK, you have:

  • Right of access (Art. 15 GDPR).
  • Right to rectification (Art. 16).
  • Right to erasure (Art. 17).
  • Right to restriction of processing (Art. 18).
  • Right to data portability (Art. 20).
  • Right to object (Art. 21).
  • Right to withdraw consent at any time, where consent is the legal basis.
  • Right to lodge a complaint with a supervisory authority — the Italian Garante per la protezione dei dati personali, the UK ICO, or your national authority.

To exercise any of these rights, email privacy [at] askme [punto] rest. We respond within 30 days (extendable to 60 days under Art. 12(3) for complex requests).

9. Your rights under CCPA / CPRA

California residents have rights under the CCPA / CPRA: right to know, right to delete, right to correct, right to opt out of “sale” or “sharing” of personal information, right to limit use of sensitive personal information, right to non-discrimination. To exercise these rights, email privacy [at] askme [punto] rest. We honor the Global Privacy Control (GPC) signal as an opt-out of “sale” or “sharing”.

10. Data retention summary

CategoryRetention
Server logs30 days
Cookie consent state12 months
Email correspondence24 months typical
Aggregate analytics14 months
Advertising dataPer Adsterra retention rules
In-game dataPer developer’s privacy framework

11. Security

The Site uses HTTPS with TLS encryption. Hosting is provided by a commercial hosting provider with industry-standard security controls. We do not process payment information through the Site.

12. Updates

This Privacy Policy is reviewed at least annually and revised as needed. The “Last updated” date reflects the most recent revision. Material changes are accompanied by a refreshed consent prompt where applicable.

13. Contact

For privacy questions, GDPR / CCPA / COPPA requests, or general data-protection inquiries, contact privacy [at] askme [punto] rest.

Related pages: Children’s Privacy · Cookie Policy · Terms of Service · Affiliate Disclosure · Contact Us

Who we are

Suggested text: Our website address is: https://askme.rest.

Comments

Suggested text: When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

Suggested text: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

Suggested text: If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Suggested text: Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

Suggested text: If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

Suggested text: If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

Suggested text: If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Suggested text: Visitor comments may be checked through an automated spam detection service.