Privacy Policy

What We Access

PSN Go accesses your PlayStation Network account data through Sony's official API using OAuth 2.0 authentication. This includes:

• Your Online ID and avatar
• Trophy and game data (titles, earned trophies, timestamps, earn rates)
• Friends list and their public profile data

You authorize this access when you sign in with your PSN account. We only access data that Sony's API makes available for your account.

Authentication Security

PSN Go uses ASWebAuthenticationSession, Apple's dedicated secure sign-in API, to handle PlayStation Network authentication. This is not a custom WebView. Key protections:

• Isolated browser process: Sign-in happens in a separate OS-level browser that PSN Go cannot inspect, inject scripts into, or read input from. Your username and password are entered directly on Sony's website. The app never sees them.
• No credential storage: PSN Go never receives, handles, or stores your PSN username or password. We only receive a one-time authorization code that is exchanged for API tokens.
• Scoped tokens: The access token and refresh token issued by Sony can only read trophy and profile data. They cannot change your password, make purchases, send messages, or modify your account in any way.
• Hardware-encrypted storage: Tokens are stored in the iOS Keychain, Apple's hardware-backed encrypted vault. The same technology that secures Face ID data and saved passwords.
• Automatic expiration: Access tokens expire in approximately 1 hour. Refresh tokens renew each time they're used, but expire after approximately 60 days of inactivity.

PSN Go does not use WKWebView, UIWebView, or any custom browser component for authentication. The sign-in flow is identical in security to "Sign in with Apple" and other iOS OAuth integrations.

How Data Is Stored

All data is stored locally on your device:

• Game and trophy data is stored in SwiftData (on-device database)
• Authentication tokens are stored in the iOS Keychain (encrypted, hardware-backed)
• Settings and preferences are stored in UserDefaults on your device

PSN Go does not operate any servers, databases, or cloud infrastructure of any kind. Your data never leaves your device except when communicating directly with Sony's PlayStation Network API. There is no "PSN Go backend". The app talks directly to Sony and stores everything locally.

Purchases

PSN Go Pro is a one-time purchase handled entirely by Apple's StoreKit framework. We never receive, process, or store any payment information. All purchase management (refunds, Family Sharing, restoring purchases) is handled through your Apple ID.

What We Don't Collect

PSN Go does not collect, transmit, or store:

• Analytics or usage data
• Crash reports
• Advertising identifiers
• Location data
• Device fingerprints
• Any third-party SDK data
• Tracking pixels or cookies

There are zero third-party SDKs in PSN Go. No Firebase, no Amplitude, no Facebook SDK, no ad networks. Nothing.

Data Sharing

We do not sell, rent, trade, or share your personal data with anyone. Period.

Data Deletion

You are in full control of your data:

• Sign out removes all app data from your device, including cached games, trophies, profile data, and authentication tokens
• Clear cache (in Settings) removes synced PSN data (trophies, games, profile) while preserving your local settings and preferences
• Delete the app removes everything: all data, tokens, settings, and preferences are permanently erased

Since we don't operate servers, there is no remote data to delete.

Children

PSN Go requires a PlayStation Network account to function. Sony's own age requirements and parental controls apply to PSN account creation. We do not knowingly collect data from children under 13.

Changes to This Policy

If we make material changes to this privacy policy, we will update the effective date at the top of this page. Continued use of PSN Go after changes constitutes acceptance of the updated policy.

Contact

For privacy-related inquiries, contact us at psn-go-privacy@lavailabs.com.