Legal
Privacy Policy
Effective Date: May 16, 2026
This Privacy Policy explains how MobAI Inc. collects, uses, shares, and protects information when you use mobai-game.com, MobAI account services, MoonShort, and related OAuth or API services.
1. Information We Collect
Google sign-in information
When you sign in with Google, we receive information permitted by your consent, such as your Google account identifier, email address, email verification status, display name, and profile image. We use this information to create and secure your MobAI account.
Account and session information
We store MobAI user IDs, linked identity provider IDs, session records, authentication cookies, token metadata, OAuth client consent records, and security timestamps.
OAuth application information
When a MOBAI application asks to use your MobAI account, we store the client application, requested scopes, granted scopes, consent time, access token metadata, refresh token metadata, and revocation state.
Usage and technical information
We may collect IP address, user agent, device information, request logs, error logs, and approximate interaction timing to operate, secure, debug, and improve the services.
2. How We Use Information
- Authenticate you and maintain secure sessions.
- Provide Google sign-in and MobAI OAuth/OIDC services to connected MOBAI applications.
- Show account information and authorized application status.
- Prevent abuse, fraud, unauthorized access, and service misuse.
- Operate, monitor, debug, and improve MobAI services.
- Comply with legal obligations and enforce our Terms.
3. Cookies and Tokens
We use secure, HttpOnly cookies to maintain your MobAI session. OAuth access tokens and refresh tokens are used to authorize connected MOBAI applications. Client-side JavaScript cannot read HttpOnly session cookies.
4. Sharing
We do not sell personal information. We may share information with connected MOBAI applications you authorize, infrastructure providers that help operate the services, legal authorities when required, and professional advisors under confidentiality obligations.
5. Google Data
MobAI uses Google account data only for authentication, account identification, account display, fraud prevention, and account support. We do not use Google user data for advertising and do not sell Google user data.
6. Data Retention
We keep account information while your account is active or as needed to provide the services. Session and token records expire according to their configured lifetimes. We may retain limited logs where needed for security, compliance, or dispute resolution.
7. Your Choices
You may sign out of your MobAI account, revoke access for connected applications where available, and request account assistance by contacting us. You can also manage Google account permissions in your Google account settings.
8. Security
We use technical and organizational safeguards such as HTTPS, secure cookies, scoped tokens, database access controls, and secret management. No system is perfectly secure, and we cannot guarantee absolute security.
9. Children
The services are not directed to children under 13 or the minimum age required in your jurisdiction. If we learn that we collected information from a child without required consent, we will take appropriate steps to delete it.
10. International Use
MobAI is operated by a Delaware company and may process information in countries where we or our service providers operate. By using the services, you understand that information may be processed outside your jurisdiction.
11. Changes
We may update this Privacy Policy by posting a revised version and updating the effective date. Material changes will be communicated where required by law.
12. Contact
MobAI Inc.
Email: legal@mobai.dev