Back to home

Privacy Policy

Effective date: April 21, 2026

This Privacy Policy explains how CourtSensei ("we", "us") collects, uses, and shares personal data when you use the Service. We aim to be concise and honest.

1. Who is the data controller

The CourtSensei team is the data controller for personal data processed through the Service. For any privacy-related request, contact us at privacy@courtsensei.com.

2. What we collect

  • Account data — email, password (hashed by Supabase), full name, and profile details you provide during onboarding (role, team level, country).
  • Content — plays, drills, playbooks, practice plans, videos, clips, bookmarks, notes, scouting reports, and any files you upload.
  • Usage data — basic logs such as timestamps, IP addresses, user agent, and pages visited, used for security, debugging, and abuse prevention.
  • Cookies — strictly necessary cookies for authentication and session management. We do not use advertising or cross-site tracking cookies.

3. Why we use it (legal bases under GDPR)

  • To provide the Service — hosting your content, authenticating you, letting you share playlists (performance of contract).
  • To secure the Service — rate limiting, abuse detection, fraud prevention (legitimate interest).
  • To communicate with you — transactional emails (account confirmation, password reset, service notices). Marketing emails only with your consent.
  • To comply with law — responding to legal requests where required.

4. Who we share it with

We rely on a small number of sub-processors to operate the Service:

  • Supabase — database, authentication, and file storage.
  • Vercel — application hosting and edge network.
  • YouTube / Vimeo — embedded video players when you link to content hosted there. Those providers receive requests from your browser when you play a video.

We do not sell personal data. We do not share your content with other users unless you explicitly enable a sharing feature (e.g. public share link for a clip playlist).

5. International transfers

Our providers may process data outside your country of residence, including in the United States. Where applicable, transfers are covered by Standard Contractual Clauses or equivalent legal mechanisms.

6. How long we keep it

  • Account and content — for as long as your account is active. If you delete your account, we delete or anonymize your personal data within 30 days, except where we are legally required to keep it (e.g. tax, fraud records).
  • Logs — typically retained for up to 90 days.
  • Backups — may persist up to 30 days after deletion before being overwritten.

7. Your rights

Under GDPR and similar laws you have the right to:

  • Access the personal data we hold about you;
  • Request correction or deletion;
  • Restrict or object to processing;
  • Request portability in a machine-readable format;
  • Withdraw consent at any time, where consent is the legal basis;
  • Lodge a complaint with a data protection authority.

To exercise these rights, email privacy@courtsensei.com. We will respond within 30 days.

8. Security

We use industry-standard measures including TLS in transit, encryption at rest, row-level security, rate limiting, and access controls. No system is perfectly secure; please use a strong unique password and keep your credentials private. If you suspect a breach, contact us immediately.

9. Children

The Service is not intended for children under 16. Do not create an account on behalf of a minor. Contact us if you believe a child has provided us personal data and we will delete it.

10. Changes to this policy

We may update this Privacy Policy. Material changes will be announced via email or in-app notice at least 14 days before they take effect.

11. Contact

For any privacy question or request, email privacy@courtsensei.com.

TermsPrivacyHome© 2026 CourtSensei