Back to home

Privacy policy

Last updated

WK/EK Pool Manager ("we", "us", "our") respects your privacy. This privacy policy describes what data we collect, why we do so, and how we protect this data. We process personal data in accordance with the General Data Protection Regulation (GDPR).

1. What data do we collect?

Account data (via Manus OAuth)

When creating an account, we receive your name and email address via the Manus OAuth login system. We do not store passwords.

Usage data

We store your predictions, pool memberships and point standings. This data is necessary for the functioning of the service.

Payment data

Payments are processed by Stripe. We only receive a payment confirmation and a reference number. We do not store credit card numbers, bank account numbers or other financial data.

What we do NOT collect

  • βœ• No tracking cookies or advertising cookies
  • βœ• No location data
  • βœ• No device information (except what is necessary for the website)
  • βœ• No data shared with third parties for marketing purposes

2. For what purposes do we use your data?

DataPurpose
NameDisplay in pools and rankings
Email addressLogin, account recovery, essential notifications
PredictionsCalculate points and rankings
Payment referenceActivating pool after payment

3. Cookies and local storage

We only use necessary cookies for the login system (session cookies). We also use localStorage in your browser to save your preferences (such as filters and theme settings). This data never leaves your device.

We do not use Google Analytics, Facebook Pixel, or other tracking services.

4. Sharing with third parties

We do not share your personal data with third parties, except:

  • β€’Stripe β€” for processing payments. Stripe has its own privacy policy: stripe.com/privacy
  • β€’Manus β€” for authentication (login). Your name and email are shared via Manus OAuth.

5. Retention period

We retain your data for as long as your account is active. After deleting your account, your personal data will be deleted within 30 days. Anonymized statistics (such as total scores per pool) may be retained.

6. Your rights (GDPR)

Under the GDPR, you have the following rights:

  • βœ“ Access β€” you can request what data we hold about you
  • βœ“ Rectification β€” you can have incorrect data corrected
  • βœ“ Erasure β€” you can request that your data be deleted
  • βœ“ Data portability β€” you can request your data in a readable format
  • βœ“ Objection β€” you can object to the processing of your data

Please contact us via the email address below to submit a request.

8. Security

We take the security of your data seriously and have implemented appropriate technical and organizational measures:

  • πŸ”’ All communication uses SSL/TLS (HTTPS) encryption
  • πŸ”’ Data is stored in a secured cloud database with encryption at rest
  • πŸ”’ Passwords are not stored β€” we use OAuth (Google, Apple, email link)
  • πŸ”’ Payments are processed by Stripe (PCI DSS Level 1 certified)
  • πŸ”’ Sessions are secured with JWT tokens and expire automatically
  • πŸ”’ Regular security updates and monitoring of our infrastructure

7. Contact

For questions about this privacy policy or to exercise your rights, please contact us via:

[email protected]

You also have the right to lodge a complaint with the Dutch Data Protection Authority: autoriteitpersoonsgegevens.nl

Choose your language

Select the language you want to use the app in. You can always change this later in your settings.