Tipsters Lobby

Privacy Policy

Last updated: June 5, 2026

[LEGAL_REVIEW: this policy is a good-faith GDPR-style draft. Have a data-protection adviser confirm it for the operator's jurisdiction before launch.]

1. Who is responsible for your data

The data controller for Tipsters Lobby is:

[COMPANY_NAME - replace before launch], [REGISTERED_ADDRESS], [COMPANY_NUMBER].

Privacy contact: [SUPPORT_EMAIL - set NEXT_PUBLIC_SUPPORT_EMAIL].

2. What we collect

  • Telegram account data you share at login - your Telegram user ID, @username and profile photo.
  • Subscription & payment records - which tipster you subscribed to, amount, your payment reference, the proof you submit, and approval status.
  • Tipster application data (if you apply) - brand name, bio, sports, price and any track-record file you upload.
  • Technical data - your session cookie and the IP address used for rate-limiting and abuse prevention.

We do not store card numbers - payment is manual and handled outside the Platform.

3. Why we process it (legal basis)

  • Contract - to create your account, process your subscription, grant channel access and provide support.
  • Legitimate interests - to prevent fraud and abuse (rate-limiting, payment review) and to keep the Platform secure.
  • Legal obligation - to keep financial and audit records where the law requires it.

4. Who we share it with

We do not sell your personal data. We share data only with the processors needed to run the Platform:

  • Telegram - for login, bot messaging and channel membership. Telegram's own privacy policy applies to what happens inside Telegram.
  • Our hosting & database provider - to store Platform data securely.
  • The tipster you subscribe to - receives only that you are an approved subscriber; they do not see your payment details or contact information.

5. How long we keep it

DataRetention
Account & profileUntil you delete your account
Subscription & payment recordsUp to 7 years (financial/audit obligations)
Payment proof filesRetained while the related order is open, then per audit requirements
Technical / IP logsShort-term, for security only

[LEGAL_REVIEW: confirm retention periods with counsel for your jurisdiction.]

6. Your rights

If you are in the EU/UK you have the right to access, correct, export, restrict or delete your personal data, and to object to certain processing. To exercise any of these, contact our support team. We respond within 30 days. We keep records we are legally required to retain even after account deletion (we anonymise them where possible).

7. Deleting your account

To delete your account, contact us using the details above. We will remove or anonymise your personal data, subject to the financial-record retention above. Any active subscriptions end on deletion.

8. Cookies

We use a single essential, HTTP-only session cookie for login. It is required for the Platform to work and cannot be disabled. We do not use advertising or third-party tracking cookies.

9. Contact us

Email: [SUPPORT_EMAIL - set NEXT_PUBLIC_SUPPORT_EMAIL]