Legal
Privacy Policy
Last updated: April 30, 2026
This Privacy Policy explains how Poker Tigers ("Poker Tigers," "we," "us," or "our") collects, uses, discloses, stores, and protects information when you access or use our website, including the public pages and the web application available through this site (collectively, the "Service"). It also explains your rights and choices regarding your personal information.
We designed this Policy to describe our current data practices in clear terms. By using the Service, you acknowledge that your information may be processed as described in this Privacy Policy. If you do not agree with this Policy, do not use the Service.
1. Scope and Controller Information
This Privacy Policy applies to information processed through Poker Tigers websites, app screens, support channels, and related features that link to this Policy. Unless a different legal notice states otherwise, Poker Tigers is the controller of the personal information described here, meaning we determine the purposes and means of processing.
This Policy does not apply to third-party services that you may access through our Service (for example, external payment pages or external websites reached through links). Those third parties process information under their own terms and policies.
2. Information We Collect
We collect information you provide directly, information generated through use of the Service, and limited information from integrated third-party services.
2.1 Information You Provide Directly
Depending on how you use Poker Tigers, you may provide:
Account information, such as email address, username, and password credentials when you create an account or sign in.
Training and analysis content, including hand history text and related notes that you choose to import, create, or save in drills, reports, starred hands, and practice records.
Billing-related identifiers, such as the email address used when initiating subscription checkout.
Messages or requests you send to us through support or other contact channels.
2.2 Information Collected Automatically
When you use the Service, we and our service providers may automatically collect certain technical and usage information, including:
Device and connection data, such as IP address, browser type, operating system, language, referrer, and timestamps.
Service activity data, such as pages viewed, feature interactions, session events, and request metadata needed to provide, secure, and improve the Service.
Authentication session information, such as session tokens maintained to recognize signed-in users and apply access controls.
2.3 Information from Third Parties
Payment providers: when you subscribe, our payment provider (Stripe) processes payment card and billing details directly. We receive limited subscription and transaction metadata (for example subscription status, Stripe customer/subscription IDs, billing interval, currency, and non-sensitive checkout details) needed to manage your subscription.
Identity providers: if you sign in using supported identity tokens, we may receive account identifiers and profile fields necessary for authentication and account management.
Advertising/measurement services: pages may load third-party scripts, including Google AdSense, that may collect online identifiers and browsing signals according to those providers' policies.
3. How We Use Information
We use personal information for legitimate business and operational purposes, including to:
Provide and operate the Service, including account creation, login, session handling, and feature delivery.
Store and display your user content (for example drills, imported hands, reports, progress, and interactions).
Process subscriptions and subscription lifecycle events, including checkout confirmation and status updates.
Maintain security, integrity, abuse prevention, troubleshooting, and fraud detection.
Analyze usage trends, understand product performance, and improve product quality and reliability.
Comply with legal obligations and enforce our legal rights, terms, and policies.
Communicate with you about service updates, security notices, legal notices, and support requests.
4. Legal Bases for Processing (EEA/UK Context)
If data protection law in your jurisdiction requires a legal basis, we rely on one or more of the following:
Contract: processing necessary to provide the Service you request, such as account access, session management, and storing your in-app content.
Legitimate interests: improving, securing, and administering the Service, preventing misuse, and understanding usage patterns where those interests are not overridden by your rights.
Legal obligations: retaining or disclosing information where required by law, regulation, court order, or government request.
Consent: where legally required (for example certain non-essential cookies/advertising technologies), we request and rely on consent that you can withdraw subject to local law.
5. Cookies, Local Storage, and Similar Technologies
We use cookies, local storage, and similar browser technologies to operate the Service and remember key preferences.
Essential technologies: used for basic site functionality, security, account session continuity, and remembering preferences necessary for user experience.
Functional storage: may be used to remember settings and in-app state, including authentication or entry data needed for the app to function as expected in your browser session.
Analytics and performance tools: may be used to measure page behavior, detect technical issues, and improve content and usability.
Advertising technologies: third-party advertising scripts (such as Google AdSense) may use cookies or similar identifiers to deliver and measure ads, subject to the third party's own policy and controls.
Browser controls: most browsers let you manage or delete cookies/local storage. If you disable certain technologies, parts of the Service may not work properly.
6. Payments and Billing
Subscription checkout is facilitated through Stripe. We do not store complete payment card numbers in our application servers. Stripe acts as an independent provider and may process payment data according to its privacy notice and applicable law.
To support billing operations, we may store limited subscription records such as:
Email tied to the subscription.
Plan, billing interval, amount, and currency metadata.
Stripe customer and subscription identifiers.
Subscription status details (for example trialing, active, canceled, or updated period data).
We use this information to provision paid access, verify checkout sessions, prevent billing mismatch, and support account-level subscription management.
7. Authentication and Account Security
Poker Tigers uses account credentials and session tokens to authenticate users and protect restricted functionality. Passwords are stored in hashed form rather than plain text. Session and identity tokens are used to authorize API requests and prevent unauthorized access.
No method of internet transmission or electronic storage is fully secure. While we apply reasonable technical and organizational safeguards, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your credentials and promptly notifying us if you suspect unauthorized account use.
8. User Content and Training Data You Upload
Features may allow you to upload or input poker hand histories, notes, labels, filters, and study artifacts. Please upload only information you are authorized to share. Avoid including sensitive personal information in free-text fields unless necessary.
We process this content to provide core product functionality, such as import, analysis, drill generation, reporting, and progress tracking. We may also use aggregated and de-identified usage patterns to improve product performance and user experience.
9. How We Share Information
We do not sell personal information for money. We may disclose information in the following circumstances:
Service providers and processors: hosting, infrastructure, analytics, customer support, authentication, and payment partners that process data under contractual safeguards.
Payment and fraud prevention providers: to complete transactions and manage subscription events.
Legal and compliance contexts: to comply with legal process, enforce terms, protect rights/safety, or respond to lawful requests.
Business transfers: in connection with merger, acquisition, financing, restructuring, bankruptcy, or sale of assets, subject to legal requirements.
With your direction or consent: where you ask us to share information or authorize an integration.
10. International Data Transfers
Depending on your location and where service providers operate, information may be processed in countries other than your own. Where required, we use recognized safeguards (for example contractual protections) for cross-border transfers.
11. Data Retention
We retain personal information for as long as reasonably necessary for the purposes in this Policy, including providing the Service, maintaining records, resolving disputes, enforcing agreements, and complying with legal obligations.
Retention periods vary by data type and context. For example:
Account information is retained while your account remains active and for a limited period thereafter as needed.
Subscription records may be retained for financial, accounting, and compliance needs.
Technical logs and diagnostic records may be retained for security and service reliability purposes.
When we no longer need personal information, we take reasonable steps to delete or de-identify it, unless continued retention is required by law.
12. Your Privacy Rights and Choices
Depending on your jurisdiction, you may have rights regarding personal information, such as the rights to access, correct, delete, port, or object/restrict certain processing. You may also have rights related to consent withdrawal and marketing preferences.
You may request to review, correct, or delete certain account information by contacting us. We may require reasonable verification before fulfilling requests. Some data may be retained where legally required or where necessary for legitimate business purposes.
If you use browser-based controls to block cookies or clear local storage, your preferences and certain saved state may reset.
12.1 California Privacy Disclosures
If you are a California resident, you may have rights under California privacy law, including rights to know, access, correct, delete, and limit certain uses of sensitive personal information where applicable. You may also have rights related to sharing of personal information for cross-context behavioral advertising.
We do not sell personal information for monetary consideration. Some third-party advertising or analytics integrations may be interpreted as "sharing" under certain laws. You can use cookie controls and browser settings to manage these technologies, subject to technical limitations.
You may designate an authorized agent to submit requests on your behalf where legally permitted. We may request proof of authorization and identity verification before processing such requests.
13. Children's Privacy
The Service is not directed to children under 13 (or the equivalent minimum age in your jurisdiction), and we do not knowingly collect personal information from children without appropriate legal basis. If you believe a child has provided personal information, contact us so we can review and take appropriate action.
14. Third-Party Services and Links
The Service may contain links or integrations with third-party websites and services, including payment processors and ad networks. We are not responsible for the privacy, security, or content practices of those third parties. Review their policies before providing information.
15. Security Measures
We implement measures designed to protect personal information against accidental or unlawful loss, misuse, unauthorized access, alteration, or disclosure. These measures include access controls, authentication safeguards, transport-level protections where feasible, and operational practices to reduce risk.
Despite these efforts, no security program is perfect. You acknowledge that internet-based systems involve inherent risk.
16. Do Not Track and Global Privacy Controls
Some browsers provide "Do Not Track" or similar signals. There is no universally accepted standard for interpreting these signals across all services and technologies. Where legally required, we apply jurisdiction-specific privacy controls and consent mechanisms. Where supported, we will make reasonable efforts to honor valid preference signals as required by law.
17. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in legal requirements, operational practices, or service functionality. When we make material changes, we will update the "Last updated" date and, where appropriate, provide additional notice through the Service or other communications.
Your continued use of the Service after an updated Policy becomes effective means the updated terms apply to your use, subject to applicable law.
18. Contact Us
For privacy questions, requests, or complaints, contact Poker Tigers through our official support channel or account contact method published on the website. To help us process your request efficiently, include:
Your name and contact email.
The nature of your request (access, correction, deletion, objection, or other).
Any details that help us identify the relevant account or records.
We will respond within applicable legal timelines. If you are not satisfied with our response, you may have the right to lodge a complaint with your local data protection authority.
19. Practical Summary
In practical terms, Poker Tigers needs limited personal information to run user accounts, store your study data, secure the platform, and manage subscriptions. We do not sell your personal data for money. We use service providers such as Stripe to handle specialized functions, and we may include third-party advertising technologies on some pages. You can request access, correction, or deletion of your data and use browser controls for cookies and local storage.