Privacy Policy

1. Information We Collect

When you create a SubsFC account, we collect:

• Name and email address
• Password (stored as a secure hash — we never store plaintext passwords)
• Optional profile information: phone number, playing positions, gender, location
• Game participation data: games joined, availability, and preferences

2. Third-Party Integrations

SubsFC offers optional integrations with third-party services. When you connect an integration, we store OAuth tokens necessary to maintain the connection. Specifically:

• Google Calendar: If you connect Google Calendar, we access only your calendar data to create, update, and delete SubsFC game events in a dedicated "SubsFC" calendar. We do not read or modify any other calendars or events.
• TeamCowboy: If you connect TeamCowboy, we import game schedules and team data to match you with available games.

You can disconnect any integration at any time from your profile settings. Disconnecting removes all stored tokens and stops data sharing with that service.

3. How We Use Your Information

• To match you with available soccer games based on your preferences and location
• To notify you about game invitations, confirmations, and updates
• To sync confirmed games to your connected calendar
• To improve our service through aggregated, anonymized analytics

4. Data Sharing

We do not sell, rent, or share your personal information with third parties for marketing purposes. We share data only:

• With game organizers (your name and confirmed status for games you join)
• With third-party services you explicitly connect (Google Calendar, etc.)
• When required by law or to protect our legal rights
• Anonymized and/or summarized non-personally-identifiable data may be shared for analytics or reporting purposes

5. Data Storage & Security

Your data is stored on secure servers hosted on Microsoft Azure. We use encryption in transit (HTTPS/TLS) and at rest. Access to production systems is restricted to authorized personnel only.

6. Data Retention & Deletion

You may delete your account at any time from your profile settings. Upon deletion, we remove your personal data within 30 days. Anonymized, aggregated data may be retained for analytics purposes.

7. Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking cookies or advertising pixels.

8. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or in-app notification. Continued use of SubsFC after changes constitutes acceptance of the updated policy.

9. Contact

Questions about this privacy policy? Contact us at support@subsfc.com.