Privacy Policy

01 Information We Collect

Information you provide:

• Account details: name, email address, display name, profile photo.
• Authentication data: hashed passwords (Argon2id) for email/password accounts, or OAuth tokens from Google/Facebook.
• Payment information: processed securely by Stripe. We do not store credit card numbers.
• Game and tournament data: scores, match results, player ratings, club memberships.
• Communications: messages you send to us via email or support channels.

Information collected automatically:

• Device and browser information (user agent, screen size, operating system).
• IP address and approximate location.
• Usage data: pages visited, features used, timestamps, referral sources.
• Cookies and similar technologies for session management and authentication.

02 How We Use Your Information

• Provide, operate, and maintain the Service.
• Authenticate your identity and manage your account.
• Process payments and manage subscriptions via Stripe.
• Calculate player ratings, statistics, and match history.
• Facilitate real-time score tracking and tournament brackets.
• Send transactional emails (account verification, password resets, subscription receipts).
• Improve and optimize the Service based on usage patterns.
• Detect and prevent fraud, abuse, or violations of our Terms of Service.

03 Information Sharing

We do not sell your personal information. We may share information with:

• Other users: Your display name, profile photo, ratings, and game history are visible to other players in your clubs and tournaments.
• Service providers: Stripe (payments), Google and Facebook (authentication), and hosting providers who help us operate the Service.
• Legal requirements: When required by law, subpoena, or legal process, or to protect the rights, safety, or property of dinked.in or others.
• Business transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

04 Cookies & Tracking

We use the following types of cookies:

• Essential cookies: Session cookies for authentication and CSRF protection. These are required for the Service to function.
• Functional cookies: Remember your preferences and settings.

We do not use third-party advertising cookies or tracking pixels. You can configure your browser to reject cookies, but some features of the Service may not work properly.

05 Data Security

We implement industry-standard security measures to protect your information:

• Passwords are hashed using Argon2id (never stored in plaintext).
• Sessions use HTTP-only secure cookies.
• All data is transmitted over HTTPS/TLS encryption.
• CSRF protection on all form submissions.
• Rate limiting on authentication endpoints.

No method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

06 Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal information within 30 days, except where retention is required by law or for legitimate business purposes (e.g., fraud prevention, dispute resolution).

Game scores and tournament results may be retained in anonymized form for statistical purposes.

07 Your Rights

Depending on your jurisdiction, you may have the right to:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate information.
• Deletion: Request deletion of your personal information.
• Portability: Request your data in a portable format.
• Opt-out: Opt out of non-essential communications.

To exercise these rights, contact us at support@dinkedin.com. We will respond within 30 days.

08 California Privacy Rights

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with additional rights regarding your personal information:

• The right to know what personal information we collect, use, and disclose.
• The right to request deletion of your personal information.
• The right to opt out of the sale of personal information. We do not sell personal information.
• The right to non-discrimination for exercising your privacy rights.

09 Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected information from a child under 13, we will delete it promptly. If you believe a child under 13 has provided us with personal information, please contact us.

10 Third-Party Services

The Service integrates with third-party services that have their own privacy policies:

• Google: OAuth authentication. See Google's Privacy Policy.
• Facebook: OAuth authentication. See Facebook's Privacy Policy.
• Stripe: Payment processing. See Stripe's Privacy Policy.

11 Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Service and updating the effective date above. Your continued use of the Service after changes are posted constitutes your acceptance of the revised policy.

12 Contact Us