Privacy Policy

We only collect data that is necessary to make the app work. Below is a complete list of every category of data we hold.

Your actual game data — player names, buy-in amounts, stack sizes, and settlement results — is stored only on your device using iOS secure storage (Keychain and UserDefaults). This data never leaves your phone and is never sent to our servers.

Your account credentials (session token) are stored in the iOS Keychain — the most secure storage available on iPhone, protected by your device passcode and Face ID / Touch ID.

• Authenticate you and maintain your session securely.
• Display your @handle and payment handles to other players at the same table so they can pay you after a game.
• Generate one-tap deep links to Venmo, Cash App, and Zelle with the correct amount pre-filled.
• Count anonymous game creation events to understand product usage and improve the app.
• Enforce free-tier limits (5 games/month) and Pro plan entitlements.
• Prevent abuse via IP-based rate limiting on sign-in, sign-up, and waitlist submissions. IP addresses are not retained beyond 30 days.
• Contact you when the escrow payout feature launches, if you opted into the waitlist.

We do not use your data for advertising, profiling, or any automated decision-making that affects you in a meaningful way.

PokerPay does not process payments. We do not hold funds, operate a money-transmission service, or store credit card or bank account numbers.

Settlement works by generating a deep link (e.g. venmo://paycharge?...) that opens your existing Venmo, Cash App, or Zelle app. All payment processing happens entirely within those third-party apps under their own terms and privacy policies.

Pro plan subscriptions are billed and managed entirely by Apple through the App Store. PokerPay never sees your payment card details.

We share your data with the following service providers only, and only to the extent needed to operate the app:

We do not sell your data. We do not share your data with advertisers, data brokers, or analytics platforms. We will share data with law enforcement only if required by a valid legal order.

We take security seriously and have implemented the following protections:

• TLS everywhere — all traffic between the app and our servers is encrypted in transit.
• SSL certificate pinning — the iOS app validates our server certificate on every request, blocking MITM attacks even on untrusted Wi-Fi networks.
• Keychain storage — your session token is stored in the iOS Keychain, not in plain UserDefaults.
• Hashed passwords — passwords are hashed using bcrypt by Supabase Auth before storage. We never see your plaintext password.
• Handle-based login — our authentication uses a server-side @handle mapping so your email address is never transmitted from your device during sign-in.
• Row Level Security — all database tables use Supabase Row Level Security policies so users can only access their own data.
• Rate limiting — sign-in, sign-up, and waitlist endpoints are rate-limited server-side to prevent brute-force attacks.

We retain your account data for as long as your account is active. Specific retention periods:

• Profile data (handle, email, payment handles) — kept until you delete your account.
• Game events (anonymous creation timestamps) — kept for 12 months, then purged.
• Rate-limit logs (IP address + event type) — kept for 30 days, then purged.
• Waitlist submissions — kept until escrow launches or you request removal.
• Game data — stored on your device only; deleted when you uninstall the app or delete your account.

You can permanently delete your account at any time from Account → Delete Account inside the app. Deletion removes your profile row, auth record, and all associated server-side data immediately and irreversibly. Device-local game data is removed when you uninstall the app.

Regardless of where you are located, you have the following rights regarding your data:

• Access — request a copy of the personal data we hold about you.
• Correction — update your profile data at any time from within the app.
• Deletion — delete your account in-app, or email us and we will delete it within 30 days.
• Portability — request an export of your data in a machine-readable format.
• Objection — object to any processing you believe is unlawful.
• Waitlist removal — reply to any waitlist email with "unsubscribe" and we will remove you immediately.

To exercise any of these rights, email privacy@pokerpay.app. We will respond within 30 days.

PokerPay is intended for users aged 17 and older (matching Apple's App Store rating). We do not knowingly collect personal data from anyone under the age of 13. If we become aware that a child under 13 has provided personal data, we will delete it immediately. If you believe a child has created an account, please contact us at privacy@pokerpay.app.

Apple requires apps to disclose their data practices in a standardized format on the App Store product page. Below is PokerPay's complete disclosure, mapped to Apple's categories.

Data linked to you

Data NOT collected

Game data (player names, buy-in amounts, stack sizes, settlement results) is processed entirely on your device and never transmitted to our servers. It is not collected under Apple's definition.

If you have any questions about this policy or how we handle your data, reach out:

This policy may be updated from time to time. If we make material changes, we will update the effective date at the top of this page. Continued use of the app after changes constitutes acceptance of the revised policy.