This policy explains how PadelRoster collects, processes, and protects your personal data when you use our platform. We are committed to transparency and to your rights under the General Data Protection Regulation (GDPR).
Last updated: 13 April 2026
The data controller responsible for your personal data is:
PadelRosterIf you have questions about how we handle your data, you can reach us at the address above. We aim to respond to all data-related enquiries within 30 days.
We collect and process the following categories of personal data:
Name, email address, and hashed password that you provide when creating an account. If you sign up through a third-party provider, we receive your name and email from that provider.
Organization name, season settings, schedule rules, and membership roles (such as Admin, Core, or Reserve) that you or your organization administrator configure within PadelRoster.
Attendance status, match scores, player statistics, leaderboard positions, and session participation records generated through your use of the platform.
If you subscribe to a paid plan, payment processing is handled by Stripe. We store your Stripe customer ID and subscription status but do not store credit card numbers or full payment details on our servers.
IP address, browser type, device information, and access timestamps collected automatically when you use the platform. This data is used for security, rate limiting, and service reliability.
We process your personal data for the following purposes and legal bases under GDPR Article 6(1):
| Purpose | Legal basis |
|---|---|
| Providing and operating the PadelRoster platform | Performance of contract (Art. 6(1)(b)) |
| Account creation and authentication | Performance of contract (Art. 6(1)(b)) |
| Processing payments and managing subscriptions | Performance of contract (Art. 6(1)(b)) |
| Sending service-related notifications (e.g. substitute requests) | Legitimate interest (Art. 6(1)(f)) |
| Ensuring platform security and preventing abuse | Legitimate interest (Art. 6(1)(f)) |
| Improving the platform based on aggregated usage patterns | Legitimate interest (Art. 6(1)(f)) |
| Complying with legal obligations (e.g. bookkeeping) | Legal obligation (Art. 6(1)(c)) |
We share your personal data only when necessary to operate the platform or when required by law. The following categories of recipients may receive your data:
| Recipient | Purpose | Location |
|---|---|---|
| Hetzner Online GmbH | Cloud hosting and database infrastructure | Germany / Finland (EU) |
| Stripe, Inc. | Payment processing | United States (EU SCCs) |
| Postmark (ActiveCampaign) | Transactional email delivery | United States (EU SCCs) |
We do not sell your personal data. Data shared with subprocessors is limited to what is strictly necessary for them to perform their service.
Other members of your PadelRoster organization can see your name, membership role, attendance status, match scores, and statistics. Organization administrators have additional visibility into membership management. This sharing is inherent to the collaborative nature of the platform.
We retain your personal data only as long as necessary for the purposes described above:
Under GDPR, you have the following rights regarding your personal data. You can exercise these rights by contacting us at privacy@padelroster.com.
If you believe your rights have been violated, you have the right to lodge a complaint with the Danish Data Protection Agency (Datatilsynet) at datatilsynet.dk.
The PadelRoster application uses browser local storage to maintain your authentication session and user preferences. When you accept analytics consent, Google Analytics may set first-party measurement cookies on our domains to help us understand product adoption.
The marketing website (padelroster.com) shows a consent banner before analytics is loaded. If consent is declined, we do not load analytics for marketing-site measurement.
Our primary infrastructure is hosted within the European Union (Hetzner, Germany/Finland). Where data is transferred to subprocessors outside the EU (specifically Stripe and Postmark in the United States), we ensure appropriate safeguards are in place through EU Standard Contractual Clauses (SCCs) as approved by the European Commission.
PadelRoster is not directed at children under the age of 16. We do not knowingly collect personal data from children under 16. If you believe a child under 16 has provided us with personal data, please contact us at privacy@padelroster.com and we will delete the data promptly.
We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. When we make significant changes, we will notify you through the platform or by email. The "Last updated" date at the top of this page indicates the most recent revision.
For any questions, concerns, or requests related to this privacy policy or your personal data, please contact us:
Email: privacy@padelroster.com
General enquiries: hello@padelroster.com
We aim to respond to all privacy-related requests within 30 days. If your request is particularly complex, we may extend this period by an additional 60 days and will inform you of the extension.