This Privacy Policy explains how Racquets Ltd collects, uses, shares, and protects information when you use the Racquets mobile application and related services (the “Service”).
1) Who we are
Racquets Ltd is the data controller for personal data processed through the Service.
2) Age requirements
The Service is a health & fitness app and is not intended for children under 13. If you are under 13, do not create an account or use the Service.
We may use the date of birth you provide (or that you choose to share via Apple Health, if available) to help determine eligibility and to provide age-appropriate experiences where required.
If we learn that we have collected personal data from a child under 13, we will take appropriate steps to delete that data. If you believe this has happened, contact us at support@racquets.io.
3) Information we collect
A. Account and identity data
When you create an account or sign in, we process:
- Name (if provided)
- Email address and/or account identifiers needed to authenticate you (e.g. Apple/Google sign-in identifiers)
- Authentication metadata (e.g. sign-in timestamps, security events)
Sign-in methods supported: Apple, Google, and email + password.
B. Date of birth
We process your date of birth to help operate the Service (for example, eligibility checks and age-related settings where required). If you connect Apple Health, a date of birth may also be made available via Apple Health depending on your device settings and the permissions you grant.
C. User-generated content you enter
We store the data you enter into the App, such as:
- Training logs, match scores, session details
- Notes, tags, opponents (and similar sports tracking content)
This data is stored on our servers so it can sync across your devices and be available when you sign in.
D. Health and fitness data (Apple Health)
If you choose to connect Apple Health, and you grant permission, we will import and process health and fitness data from Apple Health such as:
- Workouts (e.g. activity type, start/end time, duration, and other workout metrics available to us)
- Heart rate data associated with workouts (where available)
We store imported Apple Health data in our backend database so that it is available across devices and can be displayed as workout history and heart-rate-related insights within the App.
E. Support and communications
If you contact support, we may process:
- The content of your message
- Any information you choose to include (which may include personal data)
F. Technical and security data (collected automatically)
To operate and secure the Service, we may process:
- Device and app information (e.g. device model, OS version, app version, language)
- Log data (e.g. IP address, timestamps, request identifiers, error messages)
- Security signals (e.g. suspicious login detection)
4) What we do not collect (currently)
At the time of this policy:
- No photos, video, or audio uploads
- No location data
- No contacts/address book access
- No ads and no cross-app tracking (no IDFA)
- No analytics SDKs and no crash-reporting SDKs (currently)
- No payments/subscriptions yet
If we add any of the above in the future, we’ll update this policy and, where appropriate, ask for additional permissions/consent in-app.
5) How we use your information
We use information to:
- Provide the Service (create accounts, sync your sessions, display your history)
- Import and display Apple Health data you choose to share (workouts, heart rate), including charts/insights inside the App
- Authenticate and secure accounts (prevent fraud/abuse, protect the platform)
- Maintain and improve the Service (bug fixing, reliability, performance)
- Provide customer support
- Comply with legal obligations and enforce our terms
6) Legal bases for processing (UK GDPR)
Where UK GDPR applies, our legal bases typically include:
- Contract: to provide the Service you request (account, syncing, core features)
- Legitimate interests: to secure, maintain, and improve the Service (including support and abuse prevention)
Health data: Health information (such as heart rate and workout data from Apple Health) is treated as special category data. We process it when you choose to connect Apple Health and grant permission, and we use it to provide the health and fitness features of the App. You can withdraw permission at any time (see below).
7) Apple Health permissions and your choices
Connecting Apple Health is optional. You control what data is shared using Apple’s Health permissions on your device.
Disconnect / revoke access: You can stop future imports by removing Racquets’ access to Apple Health in iOS (or via the App’s settings if provided). Once access is revoked, we will stop importing new Apple Health data.
Delete previously imported data: You can delete your account in the App, which will remove your data from our systems (see “Data retention” below). If you want deletion of Apple Health-derived data without deleting your whole account, contact support@racquets.io.
8) How we share information
We do not sell your personal data.
We share information only as needed to run the Service, for example:
- Service providers (processors) who help us operate the Service, such as authentication and infrastructure providers.
- Legal/compliance: if required by law, court order, or to protect rights, safety, and security.
Current third-party providers:
- Amazon Web Services (AWS) (hosting and infrastructure)
- AWS Cognito (authentication)
As we add features (e.g., notifications, analytics, subscriptions), we may add providers. If we do, we will update this policy.
9) International data transfers
We are based in the UK, but our service providers may process data in other countries. When personal data is transferred internationally, we use appropriate safeguards required by applicable law (for example, contractual protections).
10) Data retention
We retain personal data only as long as necessary to provide the Service and for legitimate business purposes (security, fraud prevention, legal compliance).
Account deletion:
You can delete your account in the App. When you delete your account, we delete or anonymise personal data associated with your account within a reasonable period, and we may retain limited information where required for legal, security, or fraud-prevention purposes. Residual copies may remain in backups for a limited time before being overwritten.
11) Security
We use reasonable technical and organisational measures to protect personal data. No system is perfectly secure, but we work to protect your data from unauthorised access, alteration, or loss.
12) Your rights (UK users; worldwide availability)
If you are in the UK (and in many other jurisdictions), you may have rights including:
- Access to your data
- Correction of inaccurate data
- Deletion of your data
- Objection to processing or restriction in certain cases
- Data portability in certain cases
- Withdrawal of consent where processing is based on consent (for example, optional integrations)
To exercise rights, contact support@racquets.io. We may ask you to verify your identity before fulfilling a request.
If you are in the UK and have concerns, you can also contact the UK Information Commissioner’s Office (ICO).
13) Changes to this policy
We may update this policy from time to time. We will post the updated version at https://privacy.racquets.io/ and update the effective date. If changes are material, we may notify you in-app.