Privacy Policy

Last updated: June 2026 (location update)

Introduction

Gustavo Paixao ("we", "our", "us") operates Palpite PRO, a mobile application and marketing website for sports prediction pools and leagues. This Privacy Policy explains what information we collect, how we use it, and your choices when you use our apps and related services.

Palpite PRO is an independent service and is not affiliated with, endorsed by, or sponsored by any sports league, federation, club, or event organizer. See our Terms of Service for more detail on third-party names and marks.

This policy should be read together with our Terms of Service and Cookie Policy. By using Palpite PRO, you acknowledge the practices described here.

Information we collect

Account and profile

  • Email address, display name, and authentication data when you sign in with email and password, Google, or Apple.
  • OAuth provider identifiers linked to your account (and Facebook if that sign-in option is enabled later).
  • Profile photo when you upload an avatar through the app.

App activity

  • League and pool membership, invitations, and join activity.
  • Match predictions, scores, standings, leaderboards, and trophies.
  • Competition-related statistics generated from your participation.

Location

If you turn on location sharing in the app, we collect your approximate location only — your city, region, and country. We never collect or store GPS coordinates, street addresses, or any other precise location data, and there is no way to enter your location manually.

We use this coarse location solely for anonymous, aggregated analytics to understand where our players are; it is never used for advertising targeting, content targeting, or feature gating, and it is not shared with third parties. Our lawful basis is your consent, granted through the device permission prompt. We retain this data only while location sharing is enabled: turning the toggle off in the app, or deleting your account, removes your stored city, region, and country.

Device and security

  • On production app builds, we may verify app integrity (for example Apple App Attest or Google Play Integrity) to reduce fraud and unauthorized API access.
  • IP address and related network metadata for rate limiting, abuse prevention, and security monitoring.
  • Data transmitted between the app and our servers is encrypted in transit using HTTPS.

On-device preferences

Language and appearance preferences are stored locally on your device and are not synced to our servers. Your push notification on/off preference is stored on our servers so we can honor your choice when delivering alerts.

Communications

We process email addresses when sending transactional messages such as account verification, password reset, and league or pool invitations.

Advertising and device identifiers

  • When you use the mobile app, Google AdMob and related SDKs may process device advertising identifiers (for example IDFA on iOS or GAID on Android) and similar device or app signals for ad delivery and measurement, subject to your consent and device settings.
  • On iOS we request App Tracking Transparency permission where required. On supported platforms we use Google's User Messaging Platform (UMP) for consent where applicable.
  • We do not use your email, display name, or prediction content for ad targeting.
  • Custom in-app banners served by our API may log impression and click events tied to your internal user ID for frequency caps. We do not sell this data to third parties.

Push notifications

  • When you enable push notifications in the mobile app Settings and grant permission on your device, we collect a device push token and platform (iOS or Android) to deliver alerts.
  • Push notifications are optional and controlled by an in-app master toggle and your device notification settings. We do not send marketing push campaigns in the current app version.
  • Google Firebase Cloud Messaging processes delivery on our behalf. We do not use push data for advertising profiling.

How we use information

  • Create, authenticate, and secure your account.
  • Provide leagues, pools, predictions, scoring, and leaderboards.
  • Send transactional email related to your account or competitions you join.
  • Prevent fraud, abuse, and unauthorized access to our API.
  • Maintain and improve service reliability using non-identifying diagnostic data.
  • Show advertising in the mobile app as described in the Advertising section below.
  • Deliver optional push notifications on your mobile device when you enable them in app Settings and grant device permission.

Legal basis for processing

Contract

We process account, pool, league, prediction, and scoring data as necessary to provide the service you request under our Terms of Service.

Legitimate interests

We process limited data for security, fraud prevention, and service reliability, using non-identifying logs where possible.

Consent

Where required, we rely on your consent — for example optional profile photos, advertising personalization subject to App Tracking Transparency and Google's User Messaging Platform, and any future optional marketing.

Legal obligation

We may process or retain information when required to comply with applicable law or valid legal requests.

Data retention

We retain information only as long as needed for the purposes described in this policy:

  • Account and profile data — while your account is active and for a short period while deletion is processed.
  • Authentication tokens — until they expire, you log out, or your account is deleted.
  • Predictions, scores, and standings — retained in anonymized form after account deletion to preserve competition integrity.
  • Server and application logs — typically up to 90 days on a rolling basis, unless a longer period is required to investigate a security incident.
  • Ad impression and click counters — retained for active campaign frequency caps, then aggregated or deleted.
  • Device push tokens — until you log out, disable push in app Settings, delete your account, or after prolonged inactivity (about 90 days).
  • Email verification and account-deletion codes — 15 minutes.

When you delete your account, we obfuscate personal identifiers as described in Retention and account deletion below.

Analytics and crash reporting

Analytics

Firebase Analytics records anonymous usage events such as which screens you view, which features you use, session duration, and basic app, device, operating system, language, and app-version information. Each install is associated with a randomly generated, anonymous app-instance identifier; we do not set a user identifier and do not collect your name, email, phone number, contacts, photos, messages, or precise location for analytics.

We rely on first-party analytics under our legitimate interest in operating, improving, and securing the service. On Android you can turn analytics and crash reporting off at any time in Settings → Privacy. On iOS, advertising-related measurement also depends on your App Tracking Transparency choice, as described in Advertising.

Crash reporting

Firebase Crashlytics collects anonymous crash and stability diagnostics — such as stack traces, device model, operating system version, and the app state at the time of a crash — so we can find and fix problems. These reports are not linked to your account and are retained for a limited period.

Real-time presence

To show how many people are using the app at a given moment, it writes a temporary, anonymous presence entry to Firebase Realtime Database while open and removes it when closed. This entry contains no personal information.

Advertising

The mobile app may show advertisements through Google AdMob and optional custom banners served by our API. AdMob may show first-party and third-party advertisements.

We do not use your email, display name, predictions, pool or league activity, or other account content to target ads. Non-personalized ads may be shown when you decline tracking or when consent limits personalization.

Third-party advertisers and ad networks may collect or receive their own data subject to their policies. See Google's advertising technologies policy at https://policies.google.com/technologies/ads.

Sharing and service providers

We do not sell your personal data. We share information only as needed to operate the service:

  • Mailgun for transactional email.
  • Cloudinary for profile photo hosting.
  • Google and Apple for sign-in services.
  • Google (AdMob) for advertising in the mobile app.
  • Google (Firebase Cloud Messaging) for delivering push notifications you opt into.
  • Google (Firebase Analytics and Crashlytics) for anonymous product analytics and crash reporting.
  • Google (Firebase Realtime Database) for the anonymous count of users currently online.

Other members of pools and leagues you join may see your display name, avatar, predictions, and standings according to each competition's rules.

Visibility to other users

Your display name and profile photo may appear on leaderboards, member lists, and competition views visible to other participants. Predictions and standings visibility depends on each pool or league's settings.

If you delete your account through the in-app flow, your display name on historical leaderboards and member views will show as "Unknown Account" instead of your previous name.

Retention and account deletion

We retain account and activity data while your account is active and as needed to operate competitions you participate in, consistent with the Data retention section above.

You can delete your account from the mobile app (Profile → Delete account). Account deletion is not available by email request.

When you delete your account:

  • Personal identifiers such as email and OAuth provider IDs will be obfuscated.
  • Your profile photo will be cleared from your account.
  • Your display name will be replaced with "Unknown Account" where it appears to other users.
  • De-identified account and activity records may be retained for leaderboard integrity and aggregate statistics.
  • Deletion will be permanent and your account cannot be recovered.

Logs and diagnostics

Our server and application logs are designed not to contain personally identifiable information. We do not intentionally log:

  • Email addresses or display names.
  • Authentication tokens, passwords, or verification codes.
  • Full invite email payloads or similar message content.

Logs may include internal user IDs, pool or league IDs, timestamps, error codes, and other technical data needed to diagnose issues and protect the service.

Your rights and choices

  • Access and update your display name and profile information in the app where those features are available.
  • Delete your account through the in-app flow (Profile → Delete account).
  • Manage advertising identifiers through your device operating system settings and in-app consent prompts where available.
  • Enable or disable push notifications in the app Settings and through your device notification permissions.
  • Choose your language on this marketing website; you can clear site cookies or local storage to reset locale preferences.
  • Turn location sharing on or off anytime in the app Settings, or revoke location permission on your device; turning it off deletes your stored city, region, and country.
  • Contact us with privacy questions using the details below. See Regional privacy rights for additional choices where applicable law provides them.

Regional privacy rights

Quebec (Law 25)

  • If you are in Quebec, you may have the right to access, rectify, and withdraw consent to the processing of your personal information, and to data portability where applicable.
  • You may contact us using the details below to exercise these rights.
  • You may lodge a complaint with the Commission d'accès à l'information du Québec (CAI).

European Economic Area (GDPR)

  • If you are in the European Economic Area, you may have the right of access, rectification, erasure, restriction, portability, and objection, as described in applicable law.
  • Our legal bases for processing are set out in Legal basis for processing above.
  • Where we transfer data outside the EEA, we rely on appropriate safeguards such as standard contractual clauses where required.
  • You may lodge a complaint with your local supervisory authority.

Brazil (LGPD)

  • If you are in Brazil, you may have the right to confirmation, access, correction, anonymization, blocking, deletion, portability, and information about sharing.
  • You may contact us using the details below to exercise these rights.
  • You may lodge a complaint with the Autoridade Nacional de Proteção de Dados (ANPD).

Other regions

If you are elsewhere, the choices in Your rights and choices apply. Contact us and we will respond to requests we can honor under applicable law.

Children

Palpite PRO is not directed at children under 13 years of age (or a higher minimum age where local law requires). We do not knowingly collect personal information from children. If you believe a child has provided us data, contact us using the details below.

International data transfers

We are based in Canada. Your information may be processed in Canada and in other countries where our service providers operate, including the United States and the European Union (for example Mailgun, Cloudinary, Google, and Apple). Those providers are used only to deliver the service described in this policy.

Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. Continued use of the service after changes take effect constitutes acceptance of the updated policy where permitted by law.

Contact

Questions about this Privacy Policy (not account deletion requests):

Palpite PRO
Email: —