Privacy Policy
Last Updated: March 22, 2026
1. Introduction
Welcome to StatTact ("we," "our," or "us"). StatTact is a football prediction mobile application that allows users to make predictions on football matches and compete with others. We are committed to protecting your privacy and handling your personal data responsibly.
This Privacy Policy explains what information we collect, how we use it, how we share it, and what choices you have regarding your data. By using StatTact, you agree to the collection and use of information in accordance with this policy.
If you have any questions about this policy, please contact us at support@stattact.com.
2. Information We Collect
2.1 Account Information
When you create a StatTact account, we collect:
- Email address — used for authentication, account recovery, and essential communications
- Display name / username — chosen by you for identification within the app
- Profile picture (optional) — if you choose to upload one
- Password — stored in hashed form; we never store plaintext passwords
- Authentication tokens — session and refresh tokens used to keep you signed in, plus provider auth metadata if you choose Google Sign-In
2.2 Prediction and Gameplay Data
- Predictions — your match predictions, including selected outcomes, scores, and timestamps
- Points and rankings — your accumulated points, leaderboard positions, and competition history
- Leagues and groups — any private or public leagues you create or join
- Achievement data — badges, streaks, and milestones earned
2.3 Device Information
- Device type and model
- Operating system and version
- App version
- Anonymized device identifiers
- Language, locale, and time zone settings
2.4 Usage and Analytics Data
We collect anonymized usage data to improve the app, including feature usage patterns, session data, interaction data, performance metrics, and crash reports.
2.5 Purchase Information
If you subscribe to premium features, we collect subscription status, type, and transaction identifiers. We do not collect or store payment card details, bank account information, or billing address.
3. How We Use Your Data
- Authenticating your identity and managing your account
- Processing and storing your predictions, points, and rankings
- Managing leagues, groups, and competitions
- Improving features and user experience through analytics
- Sending push notifications (with your consent)
- Detecting and preventing fraud and abuse
- Complying with applicable laws
4. Data Storage and Security
Your data is stored on Supabase (running on AWS infrastructure). All data is encrypted in transit (TLS 1.2+) and at rest (AES-256). We use PostgreSQL Row-Level Security policies so users can only access their own data.
5. Third-Party Services
We use the following third-party services: Supabase (backend), Firebase (notifications, analytics, crash reporting), Expo (app builds, OTA updates), Apple App Store, Google Play Store, and Google Sign-In when you choose that login option. Each operates under their own privacy policies.
6. Your Rights
Depending on your jurisdiction, you may have rights to access, correct, delete, and export your personal data. You can manage most data directly in the app or contact support@stattact.com.
We comply with GDPR (EEA), CCPA (California), and other applicable privacy regulations. We do not sell your personal information to third parties.
7. Data Retention
| Data Type | Retention Period |
|---|---|
| Account information | Until account deletion |
| Predictions and gameplay | Until account deletion |
| Analytics data | 24 months (anonymized) |
| Crash reports | 12 months |
| Purchase records | As required by law |
8. Children's Privacy
StatTact is not intended for children under 13. We do not knowingly collect personal information from children under 13, in compliance with COPPA.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated through the app or by email. Continued use after changes constitutes acceptance.
10. Contact Us
Email: support@stattact.com
Website: https://stattact.com
Security: security@stattact.com