Privacy Policy

Last Updated: April 5, 2026

1. Information We Collect

Winforge AI collects minimal information necessary for authentication and service operation:

Authentication Information

• Email address: Used for account login via AWS Cognito
• Username: Your chosen identifier for the platform
• Password: Encrypted and managed by AWS Cognito (we never store plaintext)

Usage Information

• Page views and interactions: Which pages you visit, when, and for how long
• Feature usage: Which tools you use (parlay builder, player detail, etc.)
• Search queries: Players or teams you search for
• Timestamps: When you access the platform

Technical Information

• Device information: Browser type, OS, device type (mobile/desktop)
• IP address: Your internet service provider's IP (used for security and debugging)
• Cookies: Session tokens for authentication
• Error logs: Application errors and crashes (for debugging)

2. How We Use Your Information

Your information is used solely for:

• Authentication: Verifying your identity and maintaining your session
• Service improvement: Understanding how you use the platform and fixing bugs
• Security: Detecting unauthorized access and fraud prevention
• Debugging: Troubleshooting technical issues
• Legal compliance: Responding to lawful legal requests

3. Data Storage & Security

Your data is protected using industry-standard security measures:

• HTTPS encryption: All data in transit is encrypted
• AWS Cognito: Passwords are managed by AWS's secure authentication service
• Database encryption: Data at rest is encrypted
• No plaintext storage: Passwords are never stored in plaintext
• Access controls: Only administrators can access user data
• Regular security updates: Infrastructure is kept up to date

4. Data Retention

Data is retained as follows:

• Account information: Retained while your account is active
• Usage logs: Retained for 90 days for debugging and security
• Error logs: Retained for 30 days
• Session tokens: Expired after 1 hour of inactivity

Upon account deletion, all personal data is permanently removed (within 30 days).

5. No Third-Party Sharing

We do NOT share your information with third parties.

• No advertising partners or data brokers
• No sportsbooks, betting platforms, or financial services
• No social media platforms
• No analytics services (beyond basic CloudFront logs)
• No email marketing services

Exception: We may disclose information if required by law (subpoena, court order).

6. Cookies & Local Storage

Winforge AI uses cookies for authentication only:

• Session cookie: Contains your authentication token (expires after 1 hour)
• CSRF token: Prevents cross-site request forgery attacks
• No tracking cookies: We don't use Google Analytics or similar services

7. Your Rights

As a user, you have the right to:

• Access: Request a copy of all data we store about you
• Correction: Update or correct inaccurate information
• Deletion: Request permanent deletion of your account and data
• Opt-out: Disable non-essential data collection (if applicable)

To exercise these rights, contact the Winforge AI administrator.

8. Children's Privacy

Winforge AI is not intended for users under 18. We do not knowingly collect data from minors. If we become aware that a minor is using the platform, we will delete their account immediately.

9. International Users

Data is stored in AWS regions (primarily us-east-1). By using this platform, you consent to data processing in these locations.

10. Policy Updates

This privacy policy may be updated at any time. Continued use of the platform constitutes acceptance of updates. Significant changes will be announced via email to registered users.

11. Questions?

For privacy-related questions, contact the Winforge AI administrator.

← Back to Home