PadelCoach.AI

Privacy Notice

Last updated: 10 May 2026

1. Who is the controller

The data controller for personal data processed through PadelCoach AI is Serhii Petrenko, based in Poland ("we", "us"). Contact: [email protected].

2. What data we collect

  • Account data — email address, display name, hashed password (or OAuth identifier), account creation date.
  • Uploaded content — images and videos you upload for analysis, plus AI-generated analysis results linked to your account.
  • Usage data — number of analyses performed, plan tier, credit balance, IP address, browser/device type, basic logs for security and debugging.
  • Support correspondence — messages you send us via email.

Payment information (card details, billing address, tax ID) is collected directly by our payment provider Paddle and is not stored on our servers.

3. Why we use it (purposes & legal basis)

  • Provide the Service (account creation, analyses, history) — performance of the contract with you.
  • Process payments and manage subscriptions — performance of the contract; legal obligation (invoicing/tax).
  • Security, fraud prevention and abuse detection — legitimate interests.
  • Customer support — performance of the contract; legitimate interests.
  • Product improvement and aggregated analytics — legitimate interests.
  • Marketing emails (only if you opt in) — your consent, which you can withdraw at any time.

4. Who we share data with

  • Paddle.com — Merchant of Record, payment processing, subscription management, tax compliance and invoicing.
  • Hosting and infrastructure providers — to operate the database, file storage and serverless functions that run the Service.
  • AI providers — your uploaded media is sent to third-party AI model providers (e.g. Google, OpenAI) solely to generate the analysis. They process the data on our behalf as service providers.
  • Authorities — when required by law.
  • Professional advisers — accountants and legal advisers under confidentiality.

We do not sell your personal data.

5. International transfers

Some of our service providers are located outside the EEA (e.g. United States). Where this is the case, transfers rely on appropriate safeguards such as the EU Standard Contractual Clauses or an adequacy decision.

6. Retention

We keep account data and analyses for as long as your account is active. If you delete your account, account data and uploaded media are deleted within 30 days, except where we must retain certain records (e.g. payment/tax records) for legal reasons (typically up to 5 years).

7. Your rights (GDPR)

You have the right to: access your data, request correction or deletion, restrict or object to processing, request portability, and withdraw consent at any time. To exercise any right, email [email protected]. We will respond within one month. You also have the right to lodge a complaint with the Polish data protection authority (UODO) or your local supervisory authority.

8. Security

We use appropriate technical and organisational measures, including encryption in transit, access controls, and least-privilege database policies, to protect your data.

9. Cookies

We use only essential cookies and local storage required to keep you signed in and to remember basic preferences. We do not use third-party advertising cookies.

10. Changes

We may update this notice. Material changes will be communicated via the Service or by email.