SwimSparkHome

Privacy Policy

Last updated: [DATE]

This Privacy Policy explains how [Company Legal Name] (“SwimSpark”, “we”, “us”) collects, uses, and protects personal information when you use the SwimSpark platform. By using SwimSpark you agree to the practices described here.

1. Information we collect

  • Account & profile data: name, email, role, club/team affiliation, and authentication details.
  • Swimmer data, including data about children: swimmer names, dates of birth, group assignments, race times, performance/StrokeIQ analytics, and any medical or waiver information a parent or club provides during registration.
  • Payment data: registration and billing records. Card details are collected and processed directly by Stripe; we do not store full card numbers.
  • Usage & technical data: log data, device/browser information, and error diagnostics.

2. Children's information & parental consent

SwimSpark is used by swim clubs to manage members who are often minors. Swimmer accounts and registrations are created and authorized by a parent, legal guardian, or the swimmer's club. We rely on the club and the parent/guardian to provide appropriate consent for the collection and use of a minor's information. A parent or guardian may request access to, correction of, or deletion of their child's information at any time using the contact details below.

3. How we use information

  • Provide team management, registration, scheduling, messaging, and analytics features.
  • Process registration payments and installments.
  • Send transactional email (invitations, receipts, reminders, notifications).
  • Maintain security, prevent abuse, and debug errors.

4. Service providers we share data with

We share data only with providers that help us run the service:

  • Supabase — database, authentication, and file storage.
  • Stripe — payment processing (incl. Stripe Connect for clubs).
  • Resend — transactional email delivery.
  • Sentry — error and performance monitoring.
  • Cloudflare Turnstile — bot/abuse protection.
  • Vercel — application hosting.

We do not sell personal information. Publicly available competition results (e.g. Swimming Canada meet results) may be matched to swimmer profiles to provide historical time data.

5. Data retention

We retain personal information for as long as an account or club relationship is active, and afterward only as required for [retention period / legal, tax, and accounting obligations]. Deleted members are soft-deleted and purged according to our retention schedule.

6. Your rights

Depending on your jurisdiction (including under PIPEDA in Canada), you may have the right to access, correct, delete, or port your personal information, and to withdraw consent. To exercise these rights, contact us using the details below.

7. Security

We use industry-standard safeguards including encryption in transit, row-level access controls, and least-privilege service access. No system is perfectly secure; we work to protect your data and to notify affected users of material breaches as required by law.

8. Contact

[Company Legal Name], [mailing address], [jurisdiction]. For privacy questions or requests, contact [privacy@example.com].

Questions? Contact privacy@example.com