Request partner access

Privacy Policy

Last updated: March 2026

1. Introduction

OpenPadel ("we", "us", "our") is operated by CodeIdea LLC. We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose and safeguard your information when you visit our website (openpadel.io) and use our services.

By accessing or using our services, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use our services.

2. Information We Collect

2.1 Information you provide directly

  • Contact information: Name, email address, organization name, job title, and phone number when you fill out a contact form, request partner access, or communicate with us.
  • Account information: If you create an account on our platform, we collect login credentials, organization details, and configuration preferences.
  • Communication data: Records and content of correspondence when you contact us via email, forms, or other channels.

2.2 Information collected automatically

  • Usage data: Pages visited, features used, time spent on pages, click patterns, and navigation paths.
  • Device information: Browser type, operating system, device type, screen resolution, and language preferences.
  • Network data: IP address, approximate geographic location (country/city level), and referring website.
  • Cookies and tracking technologies: We use essential cookies for site functionality and analytics cookies to understand usage patterns. See Section 7 for details.

2.3 Information from third parties

We may receive information about you from partner platforms, clubs, or federations that use our interoperability services, but only to the extent that such sharing has been explicitly authorized by the data controller and, where required, by you.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service delivery: To provide, maintain, and improve our interoperability platform and related services.
  • Communication: To respond to inquiries, send service updates, and provide technical support.
  • Partner management: To process partner access requests, manage integrations, and maintain business relationships.
  • Analytics: To understand how our website and services are used, identify trends, and improve user experience.
  • Security: To detect, prevent, and address technical issues, fraud, and security threats.
  • Legal compliance: To comply with applicable laws, regulations, and legal processes.

4. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

  • Consent: Where you have given explicit consent for specific processing activities (e.g., marketing communications).
  • Contract performance: Where processing is necessary to fulfill our contractual obligations to you or to take pre-contractual steps at your request.
  • Legitimate interests: Where processing is necessary for our legitimate business interests (e.g., improving our services, fraud prevention), provided these interests are not overridden by your rights.
  • Legal obligation: Where processing is required to comply with applicable legal requirements.

5. Data Sharing and Disclosure

We do not sell your personal data. We may share your information in the following circumstances:

  • Service providers: With trusted third-party providers who assist in operating our platform (e.g., cloud hosting, email delivery, analytics), bound by data processing agreements.
  • Partner ecosystem: With platforms, clubs, and federations in the OpenPadel ecosystem, but only with explicit authorization and within the scopes agreed upon.
  • Legal requirements: When required by law, regulation, legal process, or governmental request.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, with appropriate notice to affected users.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law. Specifically:

  • Account data: Retained for the duration of your active relationship with us, plus up to 12 months after account closure.
  • Contact form submissions: Retained for up to 24 months after the last interaction.
  • Analytics data: Aggregated and anonymized analytics data may be retained indefinitely.
  • Legal records: Data required for legal compliance may be retained for up to 7 years.

7. Cookies and Tracking

Our website uses cookies and similar technologies:

  • Essential cookies: Required for basic site functionality (session management, security). Cannot be disabled.
  • Analytics cookies: Help us understand usage patterns and improve our services. Can be opted out of.
  • Preference cookies: Remember your settings and preferences for a better experience.

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect site functionality.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit (TLS/SSL) and at rest.
  • Access controls and authentication for all systems.
  • Regular security assessments and vulnerability testing.
  • Signed webhooks and API authentication for all platform integrations.
  • Comprehensive audit logging of data access and configuration changes.
  • Incident response procedures with notification obligations.

9. Your Rights

Under GDPR and applicable privacy laws, you have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data ("right to be forgotten").
  • Restriction: Request restriction of processing in certain circumstances.
  • Portability: Receive your data in a structured, machine-readable format.
  • Objection: Object to processing based on legitimate interests or direct marketing.
  • Withdraw consent: Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at info@openpadel.io. We will respond within 30 days.

10. International Data Transfers

Your data may be processed in countries outside the European Economic Area (EEA). When this occurs, we ensure adequate protection through Standard Contractual Clauses (SCCs), adequacy decisions, or other legally approved transfer mechanisms.

11. Children's Privacy

Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us and we will promptly delete it.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on our website with a revised "Last updated" date. We encourage you to review this policy periodically.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection supervisory authority.