FieldTips

Privacy Policy

Last updated: April 2026

1. Who we are

FieldTips (“we”, “us”, “our”) is an AI-powered football predictions platform. Our registered email for data-related inquiries is [email protected].

2. What data we collect

  • Account data: email address, authentication method (Google or magic link), and subscription status.
  • Usage data: pages visited, predictions viewed, date/time of visits, device type, and browser.
  • Payment data: processed entirely by Stripe. We never store card numbers or banking details.
  • Telegram: if you opt into alerts, we store your Telegram chat ID to deliver notifications.
  • Cookies: strictly necessary session cookies for authentication. No third-party analytics or advertising cookies are set on the public site.

3. How we use your data

  • To authenticate you and manage your subscription.
  • To deliver Telegram prediction alerts if you have opted in.
  • To improve our models and product experience using anonymised usage analytics.
  • To send transactional emails (magic links, subscription receipts). We do not send marketing emails without explicit consent.

4. Legal basis (GDPR)

We process your data under the following legal bases:
  • Contract: account and subscription management.
  • Legitimate interests: anonymous analytics to improve the product.
  • Consent: Telegram alerts (opt-in only).

5. Data sharing

We do not sell your data. We share data only with:
  • Supabase — database and authentication hosting (EU servers available).
  • Stripe — payment processing (PCI-DSS compliant).
  • Hetzner Online GmbH — server hosting (EU data centre, Nuremberg, Germany).
  • Cloudflare — DNS, CDN, and DDoS protection. Cloudflare may set technical cookies needed to serve the site; see their privacy policy.
  • Sentry — error monitoring with anonymised IP addresses; scrubs personal data.

6. Data retention

Account data is retained as long as your account is active. After deletion, data is purged within 30 days. Anonymised analytics are retained for 12 months.

7. Your rights

Under GDPR you have the right to access, correct, export, or delete your personal data at any time. To exercise any right, email [email protected]. We respond within 30 days.

8. Cookies

We use strictly necessary session cookies for authentication (Supabase Auth) and a small locale preference cookie. We do not use third-party analytics or advertising cookies on the public site. You can disable cookies in your browser settings.

9. Changes to this policy

We may update this policy. Material changes will be notified via email or an in-app banner. The “last updated” date at the top of this page always reflects the current version.

10. Contact

For privacy questions: [email protected]