Who we are

==============

Effective date: 5 April 2026

Football Apptitude ("we", "us", "our") operates the Football Apptitude mobile application (the "App") on Android (Google Play) and iOS (Apple App Store). This Privacy Policy explains what information is collected, how it is used, and your choices regarding that information.

1. Information We Collect

-------------------------

Account credentials: To use the App you must sign in with a username and password. Account registration takes place on an external website, not within the App. No personally identifiable information (name, email address, phone number, physical address) is collected or stored by the App.

Session tokens: Upon successful login, a temporary access token is issued by our server and stored securely on your device using Android EncryptedSharedPreferences or iOS Keychain, depending on your platform. This token is used solely to authenticate data requests and expires automatically after a set period.

User-generated content: Prediction notepad entries and bet request drafts that you create within the App are stored locally on your device only. This data is not transmitted to our servers or any third party.

Subscription and payment information: Access to the App requires a paid subscription (£5/month), which is managed entirely through our website hosted on Squarespace. All payment processing is handled by Squarespace and its payment providers (e.g. Stripe). We do not collect, store, or have access to your payment card details, billing address, or any financial information. The only information transferred from the subscription process to our database (Google BigQuery) is your chosen username and password — no email address or other personal data is stored in our systems.

Subscription status: We monitor whether your subscription is active in order to grant or revoke access to the App. Your subscription status (active or inactive) is checked when you log in and may be checked periodically during use. This check is performed against our database and does not involve sharing your information with any additional third parties.

2. How We Use Your Information

------------------------------

- To authenticate you and maintain your session.

- To retrieve football statistical data on your behalf.

- To generate prediction and analytics results within the App.

We do not sell, rent, or share your information with third parties for marketing purposes.

3. Custom Lineup Predictions — Data Transmitted and Stored

----------------------------------------------------------

When you request a custom lineup prediction, the following data is transmitted from the App to our prediction server (Google Cloud Run) over HTTPS:

- Fixture details: home team, away team, league, and season.

- Your selected starting XI for each team: player names and positions (e.g. "Salah", "Forward").

- A unique request ID (randomly generated, not linked to your identity).

- Your session token (for authentication only — not stored by the prediction server).

The prediction server processes this data, generates statistical predictions (match result probabilities, expected goals, over/under markets, player performance estimates, etc.), and returns the results to the App.

The prediction results, along with the fixture details and lineup selections, are written to a Google BigQuery table for analytical and service-improvement purposes. This record includes:

- Fixture and lineup information (team names, player names, positions).

- All generated prediction values (probabilities, expected stats, market lines).

- A request ID and timestamp.

No personally identifiable information (name, email, payment details) is included in the prediction request or the stored record. The prediction results are also cached locally on your device so you can review them without re-requesting.

4. Third-Party Services

-----------------------

The App uses the following third-party services, each of which may collect limited technical data in accordance with their own privacy policies:

- Google Firebase – may collect device identifiers, crash reports, and basic app usage analytics (e.g. app opens, screen views) automatically.

‍ ‍https://firebase.google.com/support/privacy

- Google BigQuery – used to retrieve football data. No personal data is included in these requests.

‍ ‍https://cloud.google.com/terms/cloud-privacy-notice

- Google Cloud Run – used to process prediction requests. No personal data is included beyond the session token.

‍ ‍https://cloud.google.com/terms/cloud-privacy-notice

- Squarespace – hosts our website and processes subscription payments. Squarespace and its payment providers may collect your email address, payment details, and billing information as part of the checkout process. This data is held by Squarespace and is not transferred to us.

‍ ‍https://www.squarespace.com/privacy

5. Permissions

--------------

Android:

- Internet – required to sign in, fetch football data, and retrieve predictions.

- Network State – used to check device connectivity before making network requests.

iOS:

- Network access – required to sign in, fetch football data, and retrieve predictions.

The App does not request access to your camera, microphone, contacts, photos, location, or any other sensitive device features on either platform.

6. Data Security

----------------

- All network communication is transmitted over HTTPS.

- On Android, authentication tokens are stored in EncryptedSharedPreferences. On iOS, they are stored in the system Keychain. Both expire automatically.

- Locally stored data (notepad entries, bet requests) is accessible only to the App and is not backed up to external servers.

7. Subscription Management

--------------------------

- Your subscription is managed through our Squarespace website. You can cancel, upgrade, or modify your subscription at any time via your account on the website.

- Squarespace handles all billing, invoicing, and payment processing. We do not have access to your payment details.

- If your subscription lapses, your App access will be revoked, but any locally stored data on your device will remain until you uninstall the App or clear its data.

8. Data Retention and Deletion

------------------------------

- Session tokens expire automatically and are removed on expiry or logout.

- Locally stored notepad and bet request data is deleted when you clear the App's data in device settings or uninstall the App.

- Your username and password stored in our database can be deleted upon request. To request deletion of your account, please contact us using the details below.

- Payment and billing records held by Squarespace are subject to Squarespace's own retention policies.

9. Beta Testing Mailing List

-----------------------------

We may collect your email address through our Squarespace website if you voluntarily sign up to participate in beta testing of the App. Your email address will be used solely to contact you about the beta test programme (e.g. access instructions, known issues, feedback requests). It will not be used for marketing, newsletters, or any other purpose. Your email address will be permanently deleted once the beta testing period concludes. You may request removal from the mailing list at any time by contacting us at the address listed below.

10. Children's Privacy

---------------------

The App is not directed anyone under the age of 18 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect information from children. If you believe a child has provided information through the App, please contact us and we will take steps to delete it.

11. Tracking and App Tracking Transparency (iOS)

-------------------------------------------------

The App does not track you across other companies' apps or websites. We do not use advertising identifiers (IDFA) and do not participate in ad networks. If prompted by Apple's App Tracking Transparency framework, you may safely deny tracking — the App does not request or rely on this permission.

12. Apple App Store and Google Play Disclosures

-----------------------------------------------

In accordance with Apple's App Privacy requirements and Google Play's Data Safety section:

- Data collected: username and password (for authentication only).

- Data not collected: name, email address, phone number, physical address, payment information, precise location, browsing history, contacts, photos, or health data.

- Data linked to you: none. Your username is not linked to your real-world identity.

- Data used for tracking: none.

- Third-party data collection: Firebase may collect device identifiers and crash/analytics data automatically. Squarespace collects payment information independently during checkout.

13. Gambling and Betting Disclaimer

-----------------------------------

The App provides football statistical analysis and prediction tools only. It does not facilitate, process, or handle any betting transactions or payments. The "Bet Request" feature generates text that users may choose to share externally at their own discretion. The App is not a gambling service.

14. Changes to This Policy

---------------------------

We may update this Privacy Policy from time to time. Any changes will be reflected on this page with an updated effective date. Continued use of the App after changes constitutes acceptance of the revised policy.

15. Contact Us

--------------

If you have any questions about this Privacy Policy or wish to request account deletion, please contact us at:

admin@footballapptitude.com