← Back to ScoreZap

Privacy Policy

Last updated: May 29, 2026

1. Information We Collect

ScoreZap ("we", "our", "us") collects the following information when you use our app:

• Account Information: Name, email address when you register.
• Authentication Data: Login credentials (passwords are hashed and never stored in plain text). If you sign in with Google or Apple, we receive your name and email from those providers.
• Team & Game Data: Teams you create or follow, games, scores, and events you record.
• Device Information: Push notification tokens for delivering notifications. Device platform (iOS/Android/Web).
• Usage Data: App interactions for improving the service. We use Sentry for anonymised crash reporting (stack traces only, no personal data attached). We do not use third-party product analytics SDKs.
• Advertising Data (non-premium users only): If you are not a premium subscriber and you grant permission via Apple's App Tracking Transparency prompt on iOS, Google AdMob may receive your device's advertising identifier (IDFA) to deliver personalised ads. If you deny the prompt (or are on Android/web), AdMob serves only contextual, non-personalised ads. You can change this permission at any time in iOS Settings > Privacy & Security > Tracking.

2. How We Use Your Information

We use your information to:

• Provide and operate the ScoreZap service
• Send push notifications about games and team updates (configurable)
• Authenticate your identity and secure your account
• Improve the app experience
• Communicate service updates

3. Data Storage & Security

Your data is stored securely using Supabase (hosted on AWS infrastructure). We implement:

• Row Level Security (RLS) on all database tables
• JWT-based authentication
• Email verification for account activation
• HTTPS encryption for all data in transit
• Encrypted storage for sensitive data at rest

4. Third-Party Services

We use the following third-party services:

• Supabase: Database, authentication, and real-time features (supabase.com)
• Google Sign-In: Optional OAuth authentication (policies.google.com)
• Apple Sign-In: Optional OAuth authentication (apple.com/legal/privacy)
• Expo Push Notifications: Delivering push notifications (expo.dev)
• Resend: Transactional emails for account verification and password reset (resend.com)
• RevenueCat: Subscription management for premium tier (revenuecat.com)
• Google AdMob: Ad delivery for non-premium users (policies.google.com/technologies/ads). May use IDFA to personalise ads if iOS App Tracking Transparency permission is granted.
• Sentry: Anonymised crash reporting (sentry.io)

We do not sell your personal data to third parties. We do not use third-party analytics SDKs to track product usage or marketing attribution.

5. Data Retention

• Active accounts: Data retained while your account is active.
• Deleted accounts: When you delete your account, your personal data is purged immediately. This includes your profile, team memberships, push tokens, and notification preferences.
• Game data: Scoring records for teams you owned are anonymised and retained for historical reference.
• Notification logs: Retained for operational purposes and deleted when associated games are removed.

6. Your Rights

You have the right to:

• Access: View all your personal data within the app.
• Correction: Update your profile information at any time.
• Deletion: Delete your account and all associated data from Profile > Edit Profile > Delete Account.
• Notification Control: Manage push notification preferences per team or disable all notifications.

For users in the EU/EEA, these rights are provided under the General Data Protection Regulation (GDPR). For users in Australia, these rights are provided under the Australian Privacy Principles (APPs).

7. Children's Privacy

ScoreZap is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the app or by email. Continued use of the app after changes constitutes acceptance of the updated policy.

9. Contact Us

If you have questions about this Privacy Policy or your data, please contact us through the app's Contact Us form or email us at contact@smethco.com.