Privacy Policy

Last updated: April 2026

Introduction

Welcome to PilaPlay. PilaPlay is a football prediction game where users predict match outcomes and compete with friends on leaderboards. This Privacy Policy explains how we collect, use, and protect your personal data when you use our application. By using PilaPlay, you agree to the practices described in this policy.

Data We Collect

When you use PilaPlay, we collect the following personal data:

  • Email address – used for account registration and communication.
  • Username – used to identify you within the app and on leaderboards.
  • Password – stored securely as a hashed value; we never store plain-text passwords.
  • Predictions – the match outcome predictions you submit within the app.

How We Use Your Data

Your data is used exclusively to provide and improve the PilaPlay service:

  • Authentication – to verify your identity and keep your account secure.
  • Scoring – to calculate points based on your predictions.
  • Ranking – to determine your position on leaderboards.
  • Notifications – to inform you about upcoming matches and results.
  • Leaderboards – to display rankings among participants.
  • Badges – to reward achievements and milestones within the game.

Third-Party Services

PilaPlay uses third-party service providers for hosting, infrastructure, and database management. These parties process personal data solely on behalf of PilaPlay and in accordance with applicable privacy laws.

  • publicPages.privacyPolicy.thirdParty.aws
  • publicPages.privacyPolicy.thirdParty.mongoAtlas

Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):

  • Right of access – you may request a copy of the personal data we hold about you.
  • Right to rectification – you may request correction of inaccurate or incomplete data.
  • Right to erasure – you may request deletion of your personal data ('right to be forgotten').
  • Right to data portability – you may request your data in a structured, machine-readable format.
  • Right to object – you may object to certain types of processing, such as direct marketing.

To exercise any of these rights, please contact us at info@pilaplay.com.

Data Retention

We retain your personal data for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where we are required by law to retain it longer. Aggregated and anonymised data may be kept for statistical purposes indefinitely.

Security

We take the security of your data seriously and employ the following measures:

  • HTTPS – all data transmitted between your device and our servers is encrypted using TLS/HTTPS.
  • JWT (JSON Web Tokens) – used for secure, stateless authentication.
  • bcrypt – passwords are hashed with bcrypt before being stored.

Children's Privacy

PilaPlay is not directed at children under the age of 13. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

Cookies and Tracking

PilaPlay uses minimal cookies and local storage strictly necessary for authentication and user preferences (such as language settings). We do not use third-party advertising or analytics tracking cookies. No personal data is shared with advertisers.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the 'last updated' date at the top of this page. We encourage you to review this policy periodically. Continued use of PilaPlay after any changes constitutes your acceptance of the updated policy.

Contact Us

If you have any questions or concerns about this Privacy Policy or how your data is handled, please contact us at info@pilaplay.com.