Privacy Policy

We collect information that you provide directly to us, as well as information that is generated automatically when you use our platform.

Information You Provide

• Account information: When you register, we collect your name, email address, and password (stored in hashed form).
• Payment information: When you subscribe to a paid plan, payment is processed through Stripe. We do not store your full credit card number on our servers. We retain only the last four digits and card type for your reference.
• Profile data: Optional information you provide such as display name, avatar, and poker experience level.
• AI Coach conversations: If you use Coach Ace, we store your chat messages and coaching responses to maintain conversation history and improve the coaching experience.
• Communications: Messages you send us through the contact form or email.

Information Collected Automatically

• Usage data: Training activity, quiz results, drill performance, equity calculations, and progress metrics.
• Device and browser data: IP address, browser type and version, operating system, device type, and screen resolution.
• Log data: Server logs including access times, pages viewed, and referring URLs.

We use the information we collect to:

• Provide, maintain, and improve our services
• Personalize your training experience, including adaptive drill difficulty and recommended learning paths
• Process payments and manage your subscription
• Track and display your progress, statistics, and leaderboard ranking
• Send you service-related communications (account confirmations, billing receipts, security alerts)
• Send marketing communications (only with your consent; you can opt out at any time)
• Analyze usage patterns to improve our platform and develop new features
• Detect, prevent, and address fraud, abuse, and technical issues

We do not sell your personal information. We may share your data only in the following circumstances:

• Service providers: We share data with trusted third parties who help us operate our platform. These providers are contractually obligated to protect your data and process it only as instructed:
  • Stripe -- Payment processing. Stripe receives your billing information to process subscription payments securely. See Stripe's Privacy Policy.
  • Resend -- Transactional email delivery. Resend processes your email address to deliver account notifications such as registration confirmations, password resets, and billing receipts.
  • Google Gemini (AI Coach) -- If you subscribe to the Coach Ace add-on, your chat messages are sent to Google's Gemini API for AI-powered coaching responses. We do not send your account credentials or payment information to Google. Chat data is processed in accordance with Google's API Terms.
• Legal requirements: We may disclose information if required by law, regulation, legal process, or governmental request.
• Business transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction. We will notify you of any such change.
• With your consent: We may share information for any other purpose with your explicit consent.

We use cookies and similar technologies to enhance your experience:

• Essential cookies: Required for authentication, session management, and security. These cannot be disabled.
• Analytics cookies: Help us understand how users interact with our platform so we can improve it. You can opt out of analytics tracking in your account settings.
• Preference cookies: Remember your settings (e.g., theme preferences, training configuration).

You can manage cookie preferences through your browser settings. Note that disabling essential cookies may prevent you from using certain features.

We implement industry-standard security measures to protect your information, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Secure password hashing using bcrypt
• Regular security audits and vulnerability assessments
• Access controls limiting employee access to personal data on a need-to-know basis

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we commit to promptly notifying affected users in the event of a data breach.

We retain your personal data only for as long as necessary to fulfill the purposes described in this policy:

• Account data: Retained for the duration of your account. When you delete your account, personal data is removed within 30 days, except where retention is required by law.
• Training and usage data: Quiz results, drill performance, and progress statistics are retained while your account is active. You may request export or deletion at any time.
• Payment records: Transaction records are retained for a minimum of 7 years as required for tax and financial reporting compliance.
• AI Coach conversations: Chat history with Coach Ace is retained while your account is active. You can delete individual conversations or all chat history at any time.
• Server logs: Automatically collected log data is retained for up to 90 days for security and debugging purposes.

Depending on your jurisdiction, you may have the following rights regarding your personal data under regulations such as the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA):

• Right of access: Request a copy of the personal data we hold about you. You can also view and download your training data directly from your account settings using our data export feature.
• Right to rectification: Request correction of inaccurate or incomplete data.
• Right to erasure: Request deletion of your account and associated data. Note that some data may be retained as required by law or for legitimate business purposes.
• Right to data portability: Request a machine-readable export of your training data, statistics, and account information. Our GDPR-compliant data export is available in your account settings.
• Right to restrict processing: Request that we limit processing of your data in certain circumstances.
• Right to object: Object to processing of your data based on legitimate interests or for direct marketing purposes.
• Right to opt out of sale (CCPA): We do not sell your personal information. If this changes, we will provide a "Do Not Sell My Personal Information" option.
• Non-discrimination: We will not discriminate against you for exercising any of your privacy rights.

To exercise any of these rights, use the data export and account deletion features in your account settings, or contact us at [email protected]. We will respond to your request within 30 days (or sooner where required by law). If you are in the EU, you also have the right to lodge a complaint with your local data protection authority.

MyPokerCoach is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children under 13 in compliance with the Children's Online Privacy Protection Act (COPPA). Users between 13 and 18 should use the Service only with parental or guardian consent. If we become aware that we have collected data from a child under 13, we will take steps to delete that information promptly. If you believe a child has provided us with personal data, please contact us at [email protected].

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the "Last updated" date at the top of this page and, for significant changes, by sending an email notification to the address associated with your account. We encourage you to review this policy periodically.

If you have questions or concerns about this Privacy Policy or our data practices, please contact us: