Effective date: DRAFT
This policy explains what TeeSnipe collects, how we use it, and your choices. We aim to collect only what we need to run the Service.
Your email and password (hashed); your golf club login (stored encrypted); the booking requests and recurrences you create; the outcome of each booking attempt; and, for paid plans, a non-sensitive billing reference and history.
Club logins are encrypted at rest with envelope encryption and are decrypted only inside the booking worker, in memory, at the moment a booking runs — never in the web or API tier, and never written to logs.
To operate the Service: authenticate you, book tee times at the times you schedule, notify you of outcomes, process subscriptions, and keep the Service secure. We do not sell your personal data.
We share the minimum necessary with providers that help us run TeeSnipe — a payment processor (Stripe) for subscriptions, an email provider for transactional mail, and cloud hosting/key-management. Your booking is performed against your own club’s website using your credentials.
We keep your data while your account is active. You can delete your account at any time from Settings, which erases your user-owned data (including stored credentials) and cancels any active subscription. Some non-personal operational records may be retained as required by law or for security.
You can access, correct, export, or delete your data from your account, or by contacting privacy@teesnipe.example. We’ll respond as required by applicable law.