Effective 2026-04-22
Privacy Policy
This Privacy Policy explains how 42 TAPS INC ("PadiQ", "we", "us") collects, uses, and shares personal data when you use the PadiQmobile application, web properties, and related services (the "Service"). By using the Service you agree to the practices described here.
1. Who we are
42 TAPS INC, registered in Delaware, USA, is the data controller for your personal data processed through the Service. For the B2B club portal, clubs act as independent controllers for their own member data; a separate Data Processing Addendum governs that relationship.
Contact: hello@padiq.app
Data protection inquiries: privacy@padiq.app
2. EU / UK representative
For users located in the European Economic Area, the United Kingdom, or Switzerland, our representative appointed under Article 27 GDPR / UK GDPR is:
[EU Representative — to be appointed]
[EU address — to be appointed]
eu-rep@padiq.app
3. Data we collect
Account data
- Email address and (optionally) phone number used to sign in.
- Display name, profile photo, country, spoken languages.
- Authentication tokens, session identifiers, device identifiers.
Player profile
- Self-reported padel level, playing style, preferred side, availability, coaching interest, club memberships.
- Derived matchmaking attributes (technical level, playing style cluster, six compatibility subscores) computed from your answers.
- Invites sent and received, match history, in-app messages.
Usage & device data
- IP address, device model, operating system version, app version, crash logs, and performance metrics.
- Approximate location derived from IP. Precise location is used only when you grant permission (e.g. to search nearby clubs).
- Product events: screens opened, onboarding completion, paywall views.
Payment data
Subscriptions are processed by Apple. We never see your card details. We receive a transaction identifier and subscription status from Apple to grant or revoke premium access, and minimal billing metadata required to handle refunds and comply with tax law.
Sensitive personal information
Where you share precise location, we treat it as sensitive personal information under California law. We do not infer or process race, religion, health status, sexual orientation, or other special categories listed in GDPR Article 9 from your use of the Service. You may exercise the right to limit our use of sensitive PI — see Section 11 below.
4. How we use data
- Authenticate you and protect your account.
- Match you with compatible partners using the PadiQ scoring engine (skill, style, communication, coaching, side, logistics).
- Deliver invites, chat messages, and push notifications you opt into.
- Diagnose crashes and improve quality.
- Detect abuse, spam, and safety violations.
- Comply with legal obligations and enforce our Terms.
5. Automated decision-making
Our matchmaking engine is an automated scoring process: it ranks potential partners by a deterministic algorithm and presents a ranked list. It does not produce legal or similarly significant effects on you within the meaning of Article 22 GDPR. You remain in full control of whom to invite, accept, or reject. Every match includes an explanation of the score so you can challenge or disregard it. If you believe a score is based on incorrect data, contact us to request correction or human review.
6. Legal bases (GDPR)
- Contract — to provide the Service you asked for (matching, messaging, subscriptions).
- Legitimate interest — fraud prevention, aggregate product analytics, core security telemetry.
- Consent — push notifications, precise location, marketing emails. You can withdraw consent at any time.
- Legal obligation — responding to lawful requests from authorities, tax record retention.
7. Sharing
With other users
Your public profile (display name, photo, self-reported level, country, club memberships) is shown to other players so matching and chat can function. You control which optional fields are visible.
With service providers (processors)
We share personal data only with processors acting on our instructions and bound by a data-processing agreement. Current processors include Apple Inc. (US — App Store billing, APNs, Sign in with Apple), Sentry (US — crash reporting), GrowthBook (US — feature flags), Cloudflare (US — edge delivery and hosting), and hosting/email infrastructure providers in the EU and the US.
With authorities
When required by valid legal process, to protect users, to enforce our Terms, or to defend our legal rights.
We do not sell your personal data and we do not share it for cross-context behavioral advertising.
8. International transfers
Our infrastructure runs in the EU and the US. When data leaves the EEA, the UK, or Switzerland we rely on the EU Commission’s Standard Contractual Clauses (and the UK International Data Transfer Addendum or Swiss FDPIC equivalent), supplemented by a transfer-impact assessment.
9. Retention
- Account data — kept while your account is active.
- Match and chat history — kept while your account is active. On deletion, chat content is erased from production stores within 30 days; anonymized aggregates may remain.
- Crash logs and telemetry — 90 days.
- Product event logs — 24 months.
- Billing records — as required by tax law (typically 7 years).
10. Your rights
Depending on where you live (GDPR, UK GDPR, California CCPA / CPRA, Virginia VCDPA, Colorado CPA, and similar laws), you may have the right to access, correct, delete, or export your data, object to or restrict processing, withdraw consent, and lodge a complaint with your local supervisory authority. Submit requests in-app (Settings → Privacy → Data Request) or by email to hello@padiq.app. We respond within 30 days.
11. When you delete your account
You can delete your account at any time from Settings → Account → Delete account, or by emailing hello@padiq.app. Your profile, photos, and personal identifiers are erased from production stores within 30 days; billing and safety records are retained per Section 9.
12. Children
PadiQ is not directed to children under 13 (or under 16 in the EEA). If you believe a child has created an account, contact us and we will delete it.
13. Security
We use TLS for data in transit, encryption at rest for sensitive fields, and the iOS Keychain to store authentication tokens on device. No system is perfectly secure; in the event of a breach that affects you we will notify you in line with applicable law.
14. Changes
When this policy changes materially we will notify you in the app and update the effective date at the top. Continued use after the update constitutes acceptance.
15. Contact
42 TAPS INC · Delaware, USA
General: hello@padiq.app
Data protection: privacy@padiq.app
Copyright notices: dmca@padiq.app