Privacy Policy
Effective May 26, 2026 · Last updated May 26, 2026
HuddleMaxx (“we,” “us,” “our”) helps football fans find the cheapest legal way to watch their teams. This policy explains what personal information we collect, why we collect it, how we use and share it, and your rights and choices.
1. What we collect
We collect the following categories of personal information:
| Category | Examples | Source |
|---|---|---|
| Account information | Email address | You, when you create an account |
| Preferences | Teams you follow, ZIP code | You, when you set up your plan |
| Plan data | Streaming plans we generate, choices you make | Created by the app based on your preferences |
| Usage data | Pages viewed, features used, device type, browser type, operating system | Collected automatically via Vercel Analytics |
What we do not collect:
- We do not collect or store payment card details. Subscription payments are processed entirely by Stripe; we never see your card number.
- We do not track your device’s GPS location. Your ZIP code is typed in by you.
- We do not collect biometric data, precise geolocation, or audio/video recordings.
2. How we use your information
We use your personal information for the following purposes:
- To provide our service — building and showing your personalized streaming plan based on your teams and ZIP code.
- To communicate with you — sending account-related emails (e.g., signup confirmation, password reset) and optional reminder emails you’ve opted into.
- To operate and improve HuddleMaxx — analyzing aggregated usage data to fix bugs, improve features, and understand how the app is used.
- To maintain security — protecting against fraud, abuse, and unauthorized access.
We do not use your personal information for automated decision-making or profiling that produces legal or similarly significant effects.
3. Legal basis for processing (EEA/UK users)
If you are located in the European Economic Area or the United Kingdom, our legal bases for processing your personal information are:
- Contract performance — processing your account information and preferences is necessary to provide the service you signed up for.
- Legitimate interests — processing usage data to improve and secure our service, where those interests are not overridden by your rights.
- Consent — sending optional reminder emails, which you can withdraw at any time.
4. Cookies and similar technologies
HuddleMaxx and our service providers use the following technologies:
| Technology | Provider | Purpose |
|---|---|---|
| Essential cookies | Supabase | Authentication and session management |
| Payment cookies | Stripe | Secure payment processing |
| Analytics | Vercel Analytics | Aggregated, privacy-friendly usage analytics (no cross-site tracking) |
We do not use advertising cookies or cross-site tracking pixels. We do not participate in ad networks.
Your browser controls: You can disable cookies through your browser settings, but some features (like staying logged in) may not work properly without essential cookies.
Do Not Track: We honor Do Not Track browser signals. When we detect a Do Not Track signal, we do not engage in any tracking beyond what is strictly necessary to provide the service.
5. Who we share data with
We do not sell your personal information. We do not “share” your personal information for cross-context behavioral advertising as defined under the California Consumer Privacy Act.
We share data only with the service providers that operate HuddleMaxx on our behalf:
| Provider | Role | Data accessed |
|---|---|---|
| Supabase | Database and authentication hosting | Account info, preferences, plan data |
| Stripe | Subscription payment processing | Email address (for receipts); Stripe collects payment details directly |
| Vercel | Website and app hosting, analytics | Usage data, IP address (anonymized) |
| Resend | Transactional and reminder emails | Email address, email content |
These providers process your data only as necessary to provide their services to us and are contractually obligated to protect it.
Affiliate and partner links: When you tap an affiliate or partner link (for example, to a streaming service or an antenna retailer), you leave HuddleMaxx and that company’s own privacy policy applies. The link may carry a referral code that credits HuddleMaxx for the referral. This code identifies HuddleMaxx as the referral source — it does not transmit your personal information to the partner.
International data transfers: Our service providers are based in the United States. If you are located outside the United States, your data will be transferred to and processed in the United States. For EEA/UK users, these transfers rely on Standard Contractual Clauses or other approved transfer mechanisms.
6. Your privacy rights
All users
Regardless of where you live, you can:
- View or update your teams, ZIP code, and email address in the app at any time.
- Delete your account and all associated data by emailing ryan@huddlemaxx.com. We will process deletion requests within 30 days.
- Opt out of reminder emails at any time by clicking the unsubscribe link in any email or updating your preferences in the app.
California residents (CCPA/CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act:
- Right to know — you may request the categories and specific pieces of personal information we have collected about you, the sources, the purposes, and the categories of third parties with whom we shared it.
- Right to delete — you may request that we delete your personal information, subject to certain exceptions.
- Right to correct — you may request that we correct inaccurate personal information.
- Right to opt out of sale/sharing — we do not sell your personal information or share it for cross-context behavioral advertising, so there is no need to opt out. If this changes, we will provide a “Do Not Sell or Share My Personal Information” link.
- Right to non-discrimination — we will not discriminate against you for exercising any of these rights.
To exercise these rights, email ryan@huddlemaxx.com. We will verify your identity before processing your request and respond within 45 days as required by law. You may also designate an authorized agent to make a request on your behalf.
EEA/UK residents (GDPR)
If you are located in the EEA or UK, you also have the right to:
- Access your personal data and receive a copy.
- Rectify inaccurate or incomplete data.
- Erasure (“right to be forgotten”) — request deletion of your data.
- Restrict processing in certain circumstances.
- Data portability — receive your data in a structured, machine-readable format.
- Object to processing based on legitimate interests.
- Withdraw consent at any time where processing is based on consent.
- Lodge a complaint with your local data protection supervisory authority.
To exercise these rights, email ryan@huddlemaxx.com.
Other U.S. state privacy laws
Residents of Colorado, Connecticut, Virginia, Utah, Texas, Oregon, Montana, and other states with comprehensive privacy laws may have similar rights to access, delete, correct, and opt out. To exercise these rights, email ryan@huddlemaxx.com.
7. Data retention
We retain your personal information as follows:
| Data type | Retention period |
|---|---|
| Account information | While your account is active, plus 30 days after deletion request |
| Preferences and plan data | While your account is active; deleted within 30 days of account deletion |
| Usage data (aggregated) | Up to 24 months, then deleted or further anonymized |
| Payment records (held by Stripe) | As required by Stripe’s retention policy and applicable tax/financial laws |
| Email delivery logs (held by Resend) | Up to 30 days |
After the applicable retention period, data is permanently deleted or anonymized so that it can no longer identify you.
8. Data security
We use industry-standard security measures to protect your personal information, including:
- Encrypted connections (TLS/HTTPS) for all data in transit.
- Encrypted data at rest in our database.
- Access controls limiting employee and contractor access to personal data on a need-to-know basis.
- Regular review of our security practices.
No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee its absolute security.
9. Data breach notification
In the event of a data breach that affects your personal information, we will:
- Investigate and contain the breach promptly.
- Notify affected users by email within 72 hours of becoming aware of the breach, or as otherwise required by applicable law.
- Notify relevant regulatory authorities as required by law.
- Provide information about what data was affected and steps you can take to protect yourself.
10. Children and minors
HuddleMaxx is intended for adults and is not directed to anyone under the age of 16. We do not knowingly collect personal information from children under 16. If we learn that we have collected personal information from a child under 16, we will promptly delete it. If you believe a child under 16 has provided us with personal information, please contact us at ryan@huddlemaxx.com.
11. App privacy details
For Apple App Store and Google Play transparency, here is a summary of our data practices in the format required by app store guidelines:
- Data used to track you: None. We do not track you across other companies’ apps or websites.
- Data linked to you: Email address, ZIP code, team preferences.
- Data not linked to you: Aggregated usage analytics (not tied to your identity).
12. Changes to this policy
We may update this privacy policy from time to time. When we make material changes, we will:
- Post the updated policy with a new “Last updated” date at the top of this page.
- Notify you by email at least 14 days before the changes take effect.
- Where required by law, obtain your consent before applying material changes.
Your continued use of HuddleMaxx after the effective date of a revised policy constitutes acceptance of the changes.
13. Contact us
Questions about this policy, your data, or your privacy rights? Contact us:
Email: ryan@huddlemaxx.com
Mail: HuddleMaxx, 8520 Allison Pointe Blvd Ste 223, PMB 646000, Indianapolis, Indiana 46250-4299 US
For GDPR-related inquiries, you may also contact your local data protection authority.