Privacy Policy

We collect information you provide directly to us, including:

• Account Information: When you create an account, we collect your email address, name, and password.

• Profile Information: You may optionally provide additional information such as a profile photo.

• Group & Round Data: Information about golf groups you create or join, rounds you schedule, and your availability preferences.

• Calendar Data: If you connect your calendar (Outlook or Google), we access calendar events to sync your availability. We only read events within the date range you specify for syncing.

• Usage Information: We automatically collect information about how you use TeeSync, including pages visited, features used, and interactions with the service.

We use the information we collect to:

• Provide, maintain, and improve TeeSync's services • Create and manage your account • Facilitate golf group coordination and round scheduling • Sync your calendar availability (with your explicit permission) • Send you notifications about rounds, invitations, and group updates • Respond to your comments, questions, and requests • Monitor and analyse trends, usage, and activities • Detect, investigate, and prevent security incidents

We share your information in the following circumstances:

• With Group Members: Your name and availability are visible to members of groups you join. This is essential for TeeSync's core functionality.

• Service Providers: We work with third-party service providers who need access to your information to help us operate TeeSync (e.g., hosting, email delivery).

• Legal Requirements: We may disclose information if required by law or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

• Calendar Data: We do not share, transfer, or disclose your Google Calendar or Microsoft Outlook calendar data to any third parties. Calendar data is used solely to provide TeeSync's scheduling features.

We never sell your personal information to third parties.

TeeSync supports integration with Google Calendar and Microsoft Outlook. When you connect your calendar:

• What We Access: We read calendar events within your specified sync date range to determine your availability (busy/free times). For Google Calendar, we request the calendar.readonly and calendar.events scopes.

• What We Store: We store busy time blocks to calculate availability. We do not store the full details of your calendar events (titles, descriptions, attendees, or other sensitive information).

• What We Write: When you accept a golf round, we create a calendar event in your connected calendar so you have a reminder of your tee time. You can delete this event at any time.

• Permissions: You can disconnect your calendar at any time from Settings. This immediately revokes our access and deletes your stored calendar tokens and cached data.

• OAuth Security: We use industry-standard OAuth 2.0 for calendar connections. We never see or store your calendar account password.

• Real-Time Sync: If you enable real-time sync, we receive notifications when your calendar changes to keep your availability up to date. We only process the change notifications - we do not continuously monitor your calendar.

We take reasonable measures to protect your information:

• Encryption: Data is encrypted in transit using TLS/SSL and at rest using industry-standard encryption.

• Access Controls: We limit access to your personal information to employees and contractors who need it to operate, develop, or improve our services.

• OAuth Tokens: Calendar access tokens are stored securely and encrypted. Refresh tokens allow us to maintain your connection without storing your password.

• Regular Audits: We regularly review our security practices and update them as needed.

While we strive to protect your information, no method of transmission over the Internet is 100% secure.

You have several rights regarding your data:

• Access & Export: You can access your data through your TeeSync account. Contact us if you need a full data export.

• Correction: You can update your account information at any time through Settings.

• Deletion: You can permanently delete your account from Settings → Danger zone → Delete account. The deletion is immediate. Some information may be retained for legal or legitimate business purposes.

• Calendar Disconnection: You can disconnect your calendar integration at any time, which immediately revokes our access.

• Email Preferences: You can manage notification preferences in your account settings.

• Cookies: We use essential cookies for authentication. You can control cookies through your browser settings.

We retain your data only as long as necessary to provide our services:

• Retention Period: We retain your account data for as long as your account is active. Calendar sync data (busy time blocks) is refreshed with each sync and older data is automatically replaced.

• Account Deletion: When you delete your account, we permanently delete your personal information, group memberships, and stored calendar data within 30 days. Some anonymised usage data may be retained for analytics.

• Calendar Disconnection: When you disconnect your calendar, we immediately delete your stored access tokens and any cached calendar data. You can reconnect at any time.

• In-App Deletion: You can permanently delete your account at any time from Settings → Danger zone → Delete account. The deletion is immediate: your profile, group memberships, scheduled rounds, support tickets and other personal data are removed from our active systems straight away. Some anonymised usage data may be retained for analytics.

• Inactive Accounts: We may delete accounts that have been inactive for an extended period after providing notice.

TeeSync's use of Google Calendar data adheres to Google's API Services User Data Policy, including the Limited Use requirements:

• Limited Use: We only access Google Calendar data that is necessary to provide TeeSync's golf scheduling features. We do not use this data for any other purpose.

• No Advertising: We do not use Google Calendar data for advertising, marketing, or to build user profiles for advertising purposes.

• No Selling: We do not sell, rent, or share your Google Calendar data with third parties, except as required to provide the service (e.g., our secure hosting provider).

• No AI Training: We do not use Google Calendar data to train artificial intelligence or machine learning models.

• Security: We implement appropriate security measures to protect your Google Calendar data, including encryption in transit and at rest.

• Transparency: This privacy policy fully discloses how we access, use, store, and share Google Calendar data.

If you have questions about this Privacy Policy or our privacy practices, please get in touch. We aim to respond to all privacy-related enquiries within 30 days.