Privacy Policy

1. What We Collect

• Account data: Email, display name, username, date of birth
• Profile data: Bio, avatar, favorite sports/teams (optional)
• Activity data: Fantasy league activity, community posts, game engagement
• Device data: Push notification tokens, platform (iOS/Android/web)

2. What We Don't Collect

• We don't track your location or GPS
• We don't sell your data to advertisers
• We don't use your data for behavioral profiling
• We don't share your data with third parties for their marketing

3. How We Use Your Data

• To run your fantasy leagues and display scores
• To personalize your feed and recommendations
• To send you notifications you opted into
• To enforce our community guidelines and keep Prima safe
• To improve Prima (aggregate analytics, never individual tracking)

4. Youth Privacy (COPPA)

Users under 13 require verified parental consent before their account is activated. Users 13-17 have restricted features (no DMs, stricter content moderation). Parents can request data deletion at any time.

5. Your Rights

• Access: Download all your data anytime from Settings
• Delete: Delete your account and all associated data
• Correct: Edit your profile and preferences anytime
• Opt out: Control all notification categories individually

6. Data Storage & Security

Your data is stored on Supabase (PostgreSQL) with encryption at rest and in transit. Authentication uses industry-standard JWT tokens. We use Sentry for error monitoring (no PII in error reports).

7. Third-Party Services

• Supabase: Authentication and database
• Stripe: Payment processing (we never see your full card number)
• Sentry: Error monitoring
• PostHog: Product analytics (aggregate, privacy-first)