Privacy
We respect our users' privacy. This is why we do not ask for real names or email addresses. Currently we do not access or store any information that could be used to identify a mobile device except for the RSA key pair that we generate on first use and is only used for Ploxium-enabled applications. However, this may change as we implement multiplayer features that may require additional information to operate (like push notification). We will keep this text updated.
Because we know that many people use the same password for multiple things (perhaps including things of much greater importance than Ploxium) we salt and hash passwords that are set on profiles. That way, even if our database is compromised user passwords should still be relatively safe. They could still be cracked. The difficulty of that cracking would depend on how easily guessed the password is. Regardless, it is good practice to use different passwords for each thing you do online.