Privacy Policy

We Got Game, Inc., a subsidiary of Tanis Technologies, Inc. ("We Got Game," "we," "our," or "us") operates wegotgm.com and hoops.wegotgm.com (the "Services"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Services.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

• Email address
• Full name (optional)
• Phone number (if provided for phone authentication)
• Password (encrypted and never stored in plain text)

1.2 Authentication Data

We support multiple authentication methods:

• Email/Password: Your email and encrypted password
• Google OAuth: Your Google account email, name, and profile picture (provided by Google)
• Phone Authentication (Planned): Phone number and verification codes (temporary, deleted after verification)

1.3 Usage Data

We collect information about how you interact with our Services:

• Basketball court searches and favorites
• Location preferences (city, borough, zip code)
• Saved court preferences and filters
• Browser type, device information, and IP address
• Pages visited and time spent on our Services

1.4 Location Data

• We collect approximate location data (city-level) to show nearby basketball courts
• We do NOT collect precise GPS coordinates unless you explicitly grant permission
• Location data is used solely for court recommendations and is not shared with third parties for marketing purposes

1.5 Cookies and Local Storage

We use cookies and browser local storage to:

• Maintain your login session
• Remember your preferences (e.g., favorite courts, borough filters)
• Analyze usage patterns to improve our Services
• Provide personalized court recommendations

2. How We Use Your Information

We use the information we collect to:

• Provide Services: Display basketball courts, save favorites, and provide personalized recommendations
• Maintain Accounts: Manage your account, authentication, and preferences
• Improve Services: Analyze usage patterns to enhance user experience and add new features
• Communicate: Send account-related notifications (e.g., password resets, account changes)
• Security: Detect and prevent fraud, abuse, and unauthorized access
• Legal Compliance: Comply with applicable laws and regulations

We do NOT:

• Sell your personal information to third parties
• Use your information for targeted advertising
• Share your data with third parties except as described in this policy

3. Data Storage and Security

3.1 Database

• All user data is stored in Supabase PostgreSQL databases with encryption at rest
• Database connections use SSL/TLS encryption in transit
• Row Level Security (RLS) policies ensure users can only access their own data
• Automated backups are performed daily

3.2 Authentication

• Passwords are hashed using industry-standard bcrypt algorithms
• OAuth tokens are securely managed by Supabase Auth
• Sessions expire after inactivity for security

3.3 Infrastructure

• Services are hosted on AWS (Amazon Web Services) in the US East region
• Data centers meet SOC 2, ISO 27001, and other security standards
• CloudFront CDN provides secure, distributed content delivery

4. Data Sharing and Third-Party Services

4.1 Parent Company Access

Tanis Technologies, Inc., our parent company, has access to user data for the following purposes:

• Technical Support: Troubleshooting issues and providing customer support
• Infrastructure Management: Managing servers, databases, and cloud resources
• Analytics: Analyzing usage patterns to improve the Services
• Security: Monitoring for security threats and ensuring platform integrity

Tanis Technologies is bound by the same privacy commitments outlined in this policy and does not use your data for any other purposes.

4.2 Google Services

• Google OAuth: For social sign-in (governed by Google's Privacy Policy)
• Google Maps API: For displaying court locations (governed by Google Maps Platform Terms)
• Google reCAPTCHA: For bot prevention during signup (governed by Google's Privacy Policy)

4.3 Supabase

Backend Services: Database, authentication, and APIs (governed by Supabase Privacy Policy)

4.4 AWS (Amazon Web Services)

• CloudFront CDN: Content delivery for court images
• ECS Fargate: Application hosting
• Route53: DNS management

(Governed by AWS Privacy Notice)

4.5 Twilio (Planned)

SMS Verification: Phone number verification and passwordless login (governed by Twilio Privacy Policy)

5. Cookies and Tracking Technologies

5.1 Essential Cookies

• Authentication Cookies: Required to maintain your login session
• Preference Cookies: Remember your settings (e.g., favorite courts, filters)

5.2 Analytics Cookies

• We may use analytics cookies to understand how users interact with our Services
• You can opt out of analytics tracking in your browser settings

5.3 Third-Party Cookies

• Google OAuth, Google Maps, and reCAPTCHA may set cookies as described in their respective privacy policies
• These cookies are necessary for the Services to function properly

6. Your Rights and Choices

6.1 Access and Update

• You can access and update your account information in your profile settings
• You can view all saved favorite courts in your dashboard

6.2 Data Deletion

• You can request account deletion through your account settings
• Account deletion initiates a 30-day cooling-off period
• After 30 days, all personal data is permanently deleted
• Anonymized usage statistics may be retained for service improvement

6.3 Data Portability

• You can request a copy of your data by contacting privacy@tanistechno.com
• We will provide your data in a machine-readable format (JSON or CSV)

6.4 Opt-Out

• You can opt out of email communications by clicking "unsubscribe" in any email
• You cannot opt out of essential account-related communications (e.g., security alerts)

6.5 Cookie Management

• You can disable cookies in your browser settings
• Note: Disabling cookies may limit functionality of the Services

7. Children's Privacy

We Got Game is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected information from a child under 13, we will take steps to delete that information promptly.

8. California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

• Know what personal information we collect, use, and disclose
• Request deletion of your personal information
• Opt out of the sale of personal information (note: we do not sell personal information)
• Non-discrimination for exercising your privacy rights

To exercise these rights, contact us at privacy@tanistechno.com.

9. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the right to:

• Access, correct, or delete your personal data
• Object to or restrict processing of your data
• Data portability
• Withdraw consent at any time

Data Controller: We Got Game, Inc. is the data controller for your personal information.

To exercise these rights, contact us at privacy@tanistechno.com.

10. Data Retention

We retain your personal information for as long as your account is active or as needed to provide Services. Specific retention periods:

• Account Data: Retained until account deletion (30-day cooling-off period)
• Usage Logs: Retained for 90 days for security and debugging
• Authentication Tokens: Expired after inactivity (1 hour for access tokens, 30 days for refresh tokens)
• Anonymized Analytics: Retained indefinitely for service improvement

11. International Data Transfers

Your information may be transferred to and processed in the United States and other countries where our service providers operate. By using our Services, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection laws.

We Got Game, Inc. and Tanis Technologies, Inc. are both based in the United States.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the updated policy on this page with a new "Last Updated" date
• Sending an email notification to your registered email address (for significant changes)
• Displaying a notice on our website

Your continued use of the Services after changes become effective constitutes acceptance of the updated Privacy Policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

• Privacy Requests: privacy@tanistechno.com
• Technical Support: sre@tanistechno.com
• Mail: We Got Game, Inc., c/o Tanis Technologies, Inc., [Business Address]

For data protection inquiries, please include "Privacy Request" in the subject line.