Home

Privacy Policy

Last updated: July 5, 2026

This Privacy Policy explains what data Scrum Poker Online ("Service", "we") collects and how it is used. The Service is free, shows no ads, and does not sell your data. Contact: [email protected].

1. Data We Collect

  • Account data (optional): name, email, and a hashed password if you register — or your basic profile if you sign in with Google/GitHub. Guests need no account.
  • Session data (temporary): room names, display names, votes, and chat messages. These are automatically deleted about one hour after a room becomes empty.
  • Preferences: language, theme, and guest profile are stored in localStorage on your device and never leave it.
  • Technical data: standard server logs (IP address, request time) kept briefly for security and abuse prevention.

2. What We Don't Do

  • No payments — we collect no payment or billing information.
  • No ads and no selling or sharing of your data for marketing.
  • No cross-site tracking. Anonymous, cookie-less visit statistics are provided by Cloudflare Web Analytics.

3. How We Use Data

We use your data only to operate the Service: running estimation rooms, keeping you signed in, saving your estimation history if you have an account, and sending essential transactional emails (welcome, password reset, account deletion).

4. Cookies

We use only essential cookies: your login session and a signed room-access cookie. There are no advertising or tracking cookies.

5. Service Providers

We use a small number of providers to run the Service: cloud hosting, a database, Redis for temporary room state, Cloudflare (CDN, security, anonymous analytics), Resend (transactional email), and optionally Google/GitHub for sign-in. They process data only as needed to provide the Service.

6. Retention

Session data is deleted about one hour after a room empties. Account data is kept until you delete your account — deletion is available in the user menu and removes all your data from our database within 30 days.

7. Your Rights

Under the GDPR and similar laws you may access, correct, export, or delete your personal data. You can delete your account yourself in the app, or contact us at [email protected] for any request.

8. Children

The Service is not directed at children under 16, and we do not knowingly collect their data.

9. Changes & Contact

We may update this policy from time to time; updates appear on this page with a new date. Questions: [email protected].