Privacy Policy
Last updated: 2026-05-12
This Privacy Policy explains how V1b3C0d3 OU collects, uses, stores, and shares personal data when you use the TrAIcker iOS and watchOS applications and the traicker.ai website.
We act as the data controller for the personal data we process about you. For privacy questions or to exercise your rights, contact us at support@vibecodetech.com.
1. Data we collect
Creating a TrAIcker account is optional. The free scoring features work fully offline without an account, and in that mode all match data — scores, point history, statistics, session metadata — stays on your device. We collect no personal data from you in offline-only use.
An account is only required for features that need a server to work (cloud sync, multiplayer, sharing). The data categories below apply only when you opt in to those features.
1.1 Account data (only if you create an account)
- Email address and a hashed password.
- Display name and avatar (optional).
- Sign-in method: email and password, or one-time code (magic link) delivered by email.
1.2 Match and gameplay data
Match data (sport, scoring rules, players, point-by-point history, timing, derived statistics) is generated and stored only on your device by default. It only reaches our backend if you have an account and have explicitly enabled cloud sync, joined a multiplayer room, or chosen to share a match with another TrAIcker user.
Coaching tips are generated on your iPhone by Apple Intelligence. The data used for coaching does not leave your device, regardless of whether you have an account.
1.3 Device permissions
The iOS app requests Local Network access only, used to discover nearby devices for multiplayer scoring when an internet connection is unavailable. We do not request HealthKit, Location, Motion, Speech, or Contacts data, and the app does not rely on those frameworks.
1.4 Subscription data
Apple Inc. is the merchant of record for every TrAIcker subscription. Apple processes your payment, generates invoices, calculates and remits taxes, and handles refunds. We do not collect, see, or store your payment-card details.
From Apple we only receive the subscription entitlement — a flag that says “this Apple ID has an active Player or Advanced subscription”. We use that flag solely to unlock the corresponding features in the app. We do not generate invoices, receipts, or accounting records on our side; for billing history, refer to your Apple ID purchase history at reportaproblem.apple.com.
1.5 Diagnostic data
We do not embed third-party analytics, crash reporters, or attribution SDKs. Apple may collect aggregated, anonymised crash and performance data on our behalf via App Store Connect, subject to Apple’s own privacy controls.
2. Why we use your data (legal bases under GDPR Art. 6)
| Purpose | Legal basis |
|---|---|
| Provide the core scoring, matching, and statistics features. | Performance of a contract (Art. 6(1)(b)). |
| Authenticate you and protect your account. | Performance of a contract; legitimate interest (Art. 6(1)(b), 6(1)(f)). |
| Recognise an active subscription via the entitlement flag Apple provides. (Apple is the merchant of record and handles billing, refunds, and tax obligations under its own policies.) | Performance of a contract (Art. 6(1)(b)). |
| Improve service stability and detect abuse. | Legitimate interest (Art. 6(1)(f)). |
3. Sub-processors
We rely on the following sub-processors:
| Provider | Role | Hosting region |
|---|---|---|
| Supabase Inc. | Authentication, Postgres database, realtime, edge functions, and storage for non-video user content. | European Union |
| Apple Inc. | App distribution, in-app purchase processing (merchant of record), and push notifications. | Global (Apple data centres) |
AI coaching uses Apple Intelligence on-device and is therefore not a sub-processor relationship — your match data does not leave your iPhone for coaching purposes.
4. International data transfers
Personal data we control is stored by Supabase in the European Union. Apple operates global infrastructure for app distribution, purchases, and push notifications under its own privacy commitments. Where any transfer of personal data outside the European Economic Area takes place, we rely on the European Commission’s Standard Contractual Clauses and applicable supplementary measures (encryption in transit, access controls).
5. Retention
- If you never created an account — there is nothing on our side to retain or delete. All your data is on your device, and uninstalling the app removes it.
- Account data — for as long as your account is active. Once you confirm a deletion request, your account profile, match history, statistics, and any user-uploaded content are deleted from our backend; nothing is retained on our side.
- Match and gameplay data — for as long as your account is active, or until you delete individual matches in the app.
- Billing / invoicing records — held by Apple Inc., the merchant of record, under Apple’s own retention policies. We do not generate, receive, or store invoices.
- Backend logs — up to 30 days for stability and abuse-detection purposes; not joined to your identity after deletion.
6. Your rights
Under GDPR you have the right to access, rectify, erase, restrict, object to, and port your personal data, and to lodge a complaint with your local supervisory authority (in Estonia: the Data Protection Inspectorate, Andmekaitse Inspektsioon). Under the California Consumer Privacy Act you additionally have the right to know, delete, and opt out of any sale of personal data — we do not sell personal data.
To exercise any of these rights, email support@vibecodetech.com. To delete your account directly, open the TrAIcker app on your iPhone and tap Settings → Delete account; the app revokes your session and removes your data immediately. See the Delete account page for the full in-app walkthrough.
7. Children
TrAIcker is rated 4+ in the App Store, meaning the in-app content is suitable for users of all ages, including children aged 4 and over.
However, creating a TrAIcker account is subject to the minimum age of digital consent in your country: 13 in most jurisdictions, and 14, 15, or 16 in the EU member states that have raised the GDPR Article 8 threshold (for example, 14 in Spain and Italy, 16 in Germany, the Netherlands, and Luxembourg). Children below the applicable threshold should only use the Service under the supervision of a parent or legal guardian, on the guardian’s account.
We do not knowingly collect personal data from children below the applicable consent age. If you believe we may hold such data, contact us at support@vibecodetech.com and we will delete it promptly.
8. Security
We use TLS for all transit, encryption at rest where supported by our sub-processors, scoped database row-level security in Supabase, and the iOS Keychain for credentials on-device. No system is perfectly secure; if we detect a breach affecting your data we will notify you and the relevant authority within the timelines required by law.
9. Changes to this policy
We will update this policy when our processing changes. The “Last updated” date at the top reflects the current version. Material changes will be communicated in-app or by email.
10. Contact
V1b3C0d3 OU
Pae tn 25-47, Lasnamae linnaosa, 11414 Tallinn, Estonia
Estonian Commercial Register code: 17395882
Email: support@vibecodetech.com