Privacy Policy & GDPR Compliance

Last updated: May 26, 2026
Your Privacy Matters

We are committed to protecting your personal data and respecting your privacy rights in accordance with the General Data Protection Regulation (GDPR) and UK data protection laws.

Table of Contents
  1. Data Controller
  2. What Data We Collect
  3. Legal Basis for Processing
  4. How We Use Your Data
  5. Data Sharing
  1. Data Retention
  2. Your Rights
  3. Data Security
  4. Cookies
  5. Contact Us

1. Data Controller

Data Controller: Poker League Standings System

Contact: For any privacy-related queries, please contact us through the contact information below.

We are the data controller responsible for your personal data collected and processed through this poker league management system.

2. What Data We Collect

Personal Information:
  • Account Data: Username, email address, first name, last name
  • Profile Data: Optional profile picture, contact preferences
  • Game Performance Data: Tournament results, finishing positions, winnings, rebuys, add-ons
  • Financial Data: Entry fees paid, prize money won, profit/loss calculations
  • League Participation: League memberships, roles (player, committee member, creator)
Technical Data:
  • Login Information: Last login times, session data
  • System Data: IP addresses (for security), browser information, device type
  • Usage Data: Pages visited, features used, time spent on site

4. How We Use Your Data

League Management
  • Track game participation
  • Calculate league standings
  • Manage tournament results
  • Process prize distributions
Statistics & Analytics
  • Generate performance reports
  • Calculate profit/loss data
  • Create historical records
  • Provide ranking systems
System Operations
  • Account authentication
  • Security monitoring
  • System maintenance
  • Technical support

5. Data Sharing

We Do Not Sell Your Data

We never sell, rent, or trade your personal information to third parties for commercial purposes.

Limited Sharing Scenarios:
  • Within Leagues: Your game results and standings are visible to other league members
  • Public Leaderboards: If you participate in public leagues, your results may be publicly visible
  • Legal Requirements: We may disclose data if required by law or legal process
  • Security Purposes: To protect against fraud, abuse, or security threats
Note: You can control your privacy settings in your profile to limit data visibility to other users.

6. Data Retention

Data Type Retention Period Reason
Account Information Until account deletion Account functionality
Game Results 7 years after league completion Historical records, dispute resolution
Financial Records 7 years Legal and tax requirements
Login/Security Logs 2 years Security and fraud prevention
Deleted Account Data 30 days Recovery period, then permanently deleted

7. Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

Right of Access

Request a copy of your personal data we hold

Right of Rectification

Correct any inaccurate or incomplete data

Right of Erasure

Request deletion of your personal data

Note: Some data may be retained for legal obligations
Right of Portability

Export your data in a machine-readable format

Right to Restrict Processing

Limit how we use your data under certain circumstances

Right to Object

Object to processing based on legitimate interests

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information below. We will respond within 30 days.

Requirements: We may need to verify your identity before processing your request.

8. Data Security

Technical Measures
  • Encrypted data transmission (HTTPS)
  • Secure password hashing
  • Regular security updates
  • Access logging and monitoring
Organizational Measures
  • Limited access to personal data
  • Staff training on data protection
  • Regular security assessments
  • Incident response procedures
Your Security
  • Use strong, unique passwords
  • Log out from shared devices
  • Report suspicious activity
  • Keep your email secure
Data Breach Notification: If a data breach occurs that poses a high risk to your rights and freedoms, we will notify you within 72 hours as required by GDPR.

9. Cookies and Tracking

Essential Cookies:
  • Session Cookies: Required for login and basic functionality
  • CSRF Protection: Security tokens to prevent cross-site attacks
  • Preferences: Remember your settings and preferences
Optional Cookies:
  • Analytics: Help us understand how the site is used (with your consent)
  • Performance: Optimize site speed and functionality
Cookie Control: You can manage your cookie preferences in your browser settings. However, disabling essential cookies may affect site functionality.

10. Contact Us

Privacy Questions

For any questions about this privacy policy or your data rights:

  • Email: privacy@example.com
  • Response Time: Within 30 days
  • Data Protection Officer: Available upon request
Complaints

If you're not satisfied with our response, you can complain to:

  • UK: Information Commissioner's Office (ICO)
  • Website: ico.org.uk
  • Phone: 0303 123 1113
Policy Updates

We may update this privacy policy from time to time. When we do, we will:

  • Update the "Last updated" date at the top of this page
  • Notify active users via email for significant changes
  • Post a notice on the website for 30 days

We encourage you to review this policy periodically to stay informed about how we protect your data.