Privacy Policy

1. Introduction

Welcome to Pro-Am Playbook ("we," "us," or "our"). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services (collectively, the "Service").

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Account Information

When you register for an account, we collect:

• Email address — used for authentication, account recovery, and essential communications
• Username and display name — used to identify you within the Service
• Password — securely hashed and stored; we never store or have access to your plaintext password
• Profile image — if you choose to upload one

2.2 User-Generated Content

We store content you create through the Service, including basketball play diagrams, playbook data, player positions, actions, and associated metadata (play names, descriptions, and categories).

2.3 Session and Security Data

When you sign in, we automatically collect certain information for security and fraud prevention:

• IP address — used for rate limiting, abuse prevention, and security monitoring
• User agent — browser and device information used for session management
• Session tokens — used to keep you signed in securely

2.4 Automatically Collected Information

When you use the Service, we may automatically collect standard server log information including request URLs, referrer URLs, timestamps, and HTTP status codes.

3. How We Use Your Information

We use your information for the following purposes:

• Provide and maintain the Service — including account creation, authentication, and content storage
• Security and abuse prevention — rate limiting, fraud detection, and protecting against unauthorized access
• Improve the Service — diagnosing bugs, analyzing usage patterns, and enhancing features
• Communications — sending essential account-related notifications (e.g., password resets, security alerts)
• Legal compliance — complying with applicable laws, regulations, and legal processes

4. How We Share Your Information

We do not sell your personal information. We may share your data with:

• Service providers — third-party companies that help us operate the Service, including:
  • Convex — our database and backend infrastructure provider
• Community features — plays you publish to the community section are visible to all users, including your username and display name
• Legal requirements — if required by law, regulation, or legal process, or to protect the rights, property, or safety of us or others
• Business transfers — in connection with a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity

5. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

• Password hashing using industry-standard algorithms
• HTTPS encryption for all data in transit
• Rate limiting to prevent brute-force attacks
• Secure session management with token-based authentication
• Input validation and sanitization

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. We may also retain data as necessary to comply with legal obligations, resolve disputes, and enforce agreements. When you delete your account, we will delete or anonymize your personal data within a reasonable timeframe, except where retention is required by law.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

• Access — request a copy of the personal data we hold about you
• Correction — request correction of inaccurate data
• Deletion — request deletion of your personal data
• Data portability — request your data in a structured, machine-readable format
• Objection — object to certain processing of your data
• Withdraw consent — where processing is based on consent, withdraw it at any time

To exercise any of these rights, please contact us using the information provided below.

8. Cookies and Local Storage

We use essential cookies and browser local storage to maintain your authentication session and store user preferences (such as theme settings). These are strictly necessary for the Service to function and cannot be disabled. We do not use advertising or third-party tracking cookies.

9. Children's Privacy

The Service is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will take steps to delete that information promptly. If you believe a child under 13 has provided us with personal data, please contact us.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using the Service, you consent to the transfer of your data to these countries. We take steps to ensure your data receives an adequate level of protection wherever it is processed.

11. Third-Party Links

The Service may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at:

Email: proamplaybook@gmail.com