Privacy Policy

1. Introduction

Welcome to Prodict. We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered football match analysis platform.

This Privacy Policy complies with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Information We Collect

2.1 Information You Provide

2.2 Information Collected Automatically

2.3 Information from Third Parties

3. How We Use Your Information

3.1 To Provide and Improve the Service

• Account Management: Create and maintain your account
• Service Delivery: Provide AI-powered match analysis and predictions
• Personalization: Customize your experience based on preferences and usage
• Communication: Send service-related notifications, updates, and announcements

3.2 To Improve Our Service

• Analyze usage patterns to improve features
• Train and refine our AI prediction algorithms (using anonymized data only)
• Monitor service performance and fix bugs
• Conduct research and development

3.3 For Security and Legal Compliance

• Detect and prevent fraud, abuse, and security incidents
• Enforce our Terms of Service
• Comply with legal obligations and respond to legal requests
• Protect our rights, property, and safety

3.4 For Marketing (With Your Consent)

• Send promotional emails about new features or special offers
• Personalize marketing communications based on your interests
• You can opt out of marketing emails at any time

4. Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

• Contract Performance: To provide the Service you have signed up for
• Legitimate Interests: To improve our Service, prevent fraud, and ensure security
• Legal Obligation: To comply with laws, regulations, and legal processes
• Consent: For marketing communications (you can withdraw consent anytime)

5. Data Sharing and Disclosure

We do NOT sell your personal data. We share your information only in the following circumstances:

5.1 Service Providers

We share data with trusted third-party service providers who help us operate the Service:

5.2 Legal Requirements

We may disclose your information if required by law or in response to:

• Court orders or subpoenas
• Government or regulatory requests
• Legal processes and investigations
• Protection of our rights, property, or safety

5.3 Business Transfers

If Prodict is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your data is transferred and becomes subject to a different privacy policy.

5.4 With Your Consent

We may share information for purposes not described in this Policy with your explicit consent.

6. Data Retention

6.1 Account Data

We retain your account information as long as your account is active or as needed to provide you services.

6.2 After Account Deletion

• Most personal data is deleted within 30 days of account deletion
• Some data may be retained for legal or security purposes:
• Fraud prevention data (as required by law)
• Aggregated, anonymized analytics data (indefinitely)

6.3 Marketing Data

If you opt out of marketing emails, we retain your email address to honor your opt-out preference.

7. Data Security

We implement industry-standard security measures to protect your data:

Technical Measures:

• Encryption in transit (TLS/SSL) and at rest
• Secure authentication protocols
• Regular security audits and vulnerability testing
• Access controls and authentication requirements
• Automated backup systems

Organizational Measures:

• Employee training on data protection
• Confidentiality agreements with staff and contractors
• Limited access to personal data (need-to-know basis)
• Incident response procedures

8. Your Rights and Choices

8.1 GDPR Rights (EU/EEA Users)

You have the following rights under GDPR:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing based on legitimate interests or for marketing
• Right to Withdraw Consent: Withdraw consent for processing at any time
• Right to Lodge a Complaint: File a complaint with your local data protection authority

To exercise these rights, contact us at [email protected]

8.2 Account Settings

You can:

• Update your profile information in account settings
• Change your email preferences
• Delete your account (this will delete most personal data)

8.3 Marketing Opt-Out

• Click "Unsubscribe" in any marketing email
• Update email preferences in your account settings
• Contact us at [email protected]

8.4 Cookie Management

You can control cookies through your browser settings. Note that disabling cookies may affect Service functionality.

9. Cookies and Tracking Technologies

9.1 What Are Cookies?

Cookies are small text files stored on your device that help us provide and improve the Service.

9.2 Types of Cookies We Use

9.3 Cookie Consent

We obtain your consent before using non-essential cookies. You can manage cookie preferences through your browser settings.

9.4 Do Not Track

We currently do not respond to "Do Not Track" browser signals, but you can control cookies through browser settings.

Analiz ve metrikler

We use Umami (self-hosted, cookie-less) for anonymous site-wide traffic measurement, and an internal event log for logged-in users to improve product features. IP addresses are never stored — only a hash that rotates daily — so historical data cannot be linked back to your IP. You can request erasure of your account's events at any time.

10. International Data Transfers

10.1 Data Location

Your data may be transferred to and processed in countries outside your country of residence, including:

• United States (Clerk authentication services)
• Cloud infrastructure locations

10.2 EU-US Data Transfers

For transfers from the EU/EEA to the United States, we rely on:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Service providers' data protection frameworks
• Appropriate safeguards as required by GDPR

10.3 Your Rights

Regardless of where your data is processed, you retain all rights described in this Privacy Policy.

11. Children's Privacy

Prodict is NOT intended for users under 18 years old. We do not knowingly collect personal data from children.

If you believe we have collected data from a child under 18:

• Contact us immediately at [email protected]
• We will promptly delete such data

Parents/guardians: Please monitor your children's internet usage and ensure they do not use Prodict.

12. Third-Party Links

The Service may contain links to third-party websites, including:

• Bookmakers and betting sites
• Social media platforms
• Partner services

We are NOT responsible for the privacy practices of third-party sites. Please review their privacy policies before providing any information.

13. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

13.1 Right to Know

• What personal information we collect
• Sources of information
• Purposes for collection
• Third parties we share with

13.2 Right to Delete

Request deletion of your personal information (subject to certain exceptions).

13.3 Right to Opt-Out of Sale

We do NOT sell personal information, so there is nothing to opt out of.

13.4 Right to Non-Discrimination

We will not discriminate against you for exercising your privacy rights.

To exercise California rights, contact us at [email protected]. We will verify your identity before processing requests.

14. Changes to This Privacy Policy

14.1 Updates

We may update this Privacy Policy from time to time to reflect:

• Changes in our practices
• Changes in applicable laws
• New features or services

14.2 Notification

We will notify you of material changes by:

• Posting the updated Policy with a new "Last Updated" date
• Sending an email notification (for significant changes)
• Displaying a notice on the Service

14.3 Your Acceptance

Continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.

15. Contact Us

15.1 Privacy Questions

For questions about this Privacy Policy or our data practices:

15.2 Response Time

We aim to respond to all privacy requests within:

• GDPR requests: 30 days (may be extended to 60 days for complex requests)
• CCPA requests: 45 days
• General inquiries: 7 business days

16. Complaints and Enforcement

16.1 EU/EEA Users

If you believe we have not complied with GDPR, you may lodge a complaint with your local supervisory authority.

16.2 UK Users

UK users can contact the Information Commissioner's Office (ICO):

• Website: https://ico.org.uk
• Helpline: 0303 123 1113

16.3 US Users

You may file a complaint with the Federal Trade Commission (FTC):

• Website: https://www.ftc.gov/complaint

Summary of Key Points