Privacy Policy

Last updated: 2026-02-27

1. Introduction

Poker Sense (“we,” “us,” or “our”) respects your privacy and is committed to protecting your personal information. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

This policy applies to all users of the Poker Sense application and website at pokersense.app.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address — used for authentication (one-time codes) and essential communications
  • Display name — optional, used within the application

We use passwordless authentication. We do not collect or store passwords.

2.2 OAuth Data

If you sign in via Google or Apple OAuth, we receive:

  • Your email address
  • Your name (as provided by the OAuth provider)
  • A unique provider identifier

We do not receive or store your OAuth provider password or access tokens beyond what is needed for authentication.

2.3 Training Data

When you use the Service, we collect:

  • Training decisions — the poker hands you play, the actions you choose, and the GTO feedback for each hand
  • Session data — when you train, how many hands per session, and your configuration preferences
  • Progress metrics — accuracy rates, EV loss trends, and identified leak patterns

This data is essential to the core functionality of the Service: tracking your progress and providing personalized feedback.

2.4 AI Coaching Conversations

When you use the “Ask Why” coaching feature, your conversation is sent to our AI provider (Anthropic’s Claude API) for processing. This includes:

  • The poker hand context (cards, board, positions, stack sizes)
  • Your conversation messages and the AI responses
  • Token usage for billing and rate limiting

We retain coaching conversation data to provide conversation history within a session. We do not use your coaching conversations to train AI models.

2.5 Usage Data

We automatically collect:

  • Device type and browser information
  • IP address (used for security and rate limiting, not stored long-term)
  • Pages visited and feature usage patterns
  • Error logs and performance data

3. How We Use Your Information

We use your information to:

  • Provide the Service — authenticate your account, deliver training hands, generate AI coaching responses, track your progress
  • Improve the Service — analyze aggregate usage patterns to improve features and fix issues
  • Communicate with you — send authentication codes, service updates, and (optionally) training tips
  • Enforce our Terms — detect violations such as automated access or real-time use during live play
  • Process payments — coordinate with our payment processor for subscription billing

We do NOT:

  • Sell your personal information to third parties
  • Use your training data for advertising
  • Share individual user data with other users
  • Use your coaching conversations to train AI models

4. Third-Party Services

We use the following third-party services:

ServicePurposeData Shared
Anthropic (Claude API)AI coaching conversationsHand context, conversation messages
Payment processorSubscription billingEmail, payment information (handled by processor)
Email delivery serviceAuthentication codes, notificationsEmail address
Hosting provider (AWS)InfrastructureAll data (encrypted at rest and in transit)

Each third-party service is subject to its own privacy policy. We select providers with strong privacy and security practices.

5. Data Security

We protect your data with:

  • Encryption at rest — sensitive data (authentication codes, OAuth tokens) is encrypted with AES-256-GCM before storage
  • Encryption in transit — all data is transmitted over HTTPS/TLS
  • Passwordless authentication — eliminates the risk of password breaches
  • Access controls — internal access to user data is restricted to authorized personnel
  • UUID v7 identifiers — user IDs are non-sequential, preventing enumeration attacks

6. Data Retention

  • Account data — retained while your account is active; deleted upon account deletion request
  • Training data — retained while your account is active to provide progress tracking; deleted upon account deletion
  • Coaching conversations — retained for the duration of the training session; conversation history is not stored indefinitely
  • Usage logs — retained for up to 90 days for security and debugging purposes
  • Payment records — retained as required by applicable tax and financial regulations

7. Your Rights

You have the right to:

  • Access your data — request a copy of the personal information we hold about you
  • Delete your account — request deletion of your account and associated data
  • Export your data — request an export of your training history and progress data
  • Opt out of communications — unsubscribe from optional emails (authentication emails cannot be opted out of)
  • Correct your data — update your email address or display name at any time

To exercise these rights, contact us at privacy@pokersense.app. We will respond within 30 days.

8. California Privacy Rights (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with additional rights regarding your personal information:

  • Right to know — you may request that we disclose what personal information we collect, use, and share about you
  • Right to delete — you may request deletion of your personal information, subject to certain exceptions
  • Right to opt-out of sale — we do not sell your personal information to third parties. We have never sold personal information and have no plans to do so.
  • Right to non-discrimination — we will not discriminate against you for exercising your CCPA rights

To exercise any of these rights, contact us at privacy@pokersense.app.

9. Children’s Privacy

Poker Sense is not intended for use by anyone under 18 years of age. We do not knowingly collect personal information from individuals under 18. If we become aware that we have collected data from a minor, we will delete it promptly.

10. Cookies and Tracking

The Poker Sense application uses:

  • Essential cookies — required for authentication and session management
  • No advertising cookies — we do not use advertising trackers
  • No third-party analytics cookies — if we add analytics, we will use a privacy-respecting provider that does not use cookies

11. International Data Transfers

Our servers are located in the United States. If you access the Service from outside the US, your data will be transferred to and processed in the US. By using the Service, you consent to this transfer.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised “Last Updated” date. Material changes may also be communicated via email.

13. Contact

For privacy-related questions or requests:

Email: privacy@pokersense.app