ClubScope Legal

Privacy Policy

This Privacy Policy explains how ClubScope AI collects, uses, discloses, retains, and protects personal information through app.clubscope.ai and related ClubScope-hosted services. Customer-specific agreements may supplement this policy for a particular deployment.

Last updated: March 24, 2026

Important: For customer-uploaded or customer-authorized business data, the customer organization generally acts as the controller or business, and ClubScope acts as a processor, service provider, or contractor. ClubScope acts as a controller for its own website, account administration, support, billing, and security operations data.
Additional privacy and data-protection documents, including the DPA, subprocessor list, retention summary, and incident-response summary, are available at /gdprdpa.

1. Information We Collect

Depending on how ClubScope is used, we may collect the following categories of personal information:

Identifiers and account information

Name, email address, organization, role, account status, and similar account-administration details.

Customer-provided business and operational data

Data uploaded by a customer or made available through customer-authorized integrations, including club operations, reporting, and membership-related records.

Usage, device, and security data

IP address, browser and device details, session activity, authentication events, audit logs, and similar security or diagnostic records.

Communications and support data

Messages, support requests, account notices, and records of customer service interactions.

AI feature inputs and outputs

Prompts, generated summaries, and related workflow content when AI-enabled features are used.

Derived analytics and inferences

Aggregated metrics, forecasts, trends, and similar derived outputs created from customer-authorized data.

2. Sources Of Information

  • Directly from you when you create an account, contact us, or use the service.
  • From your organization, account administrator, or other authorized users within your customer environment.
  • From customer-authorized uploads, imports, or third-party system integrations.
  • Automatically from your browser, device, and interactions with the service.
  • From security, hosting, email-delivery, and support providers that help us operate the platform.

3. How We Use Information

  • Provide, maintain, and secure the ClubScope platform and customer environments.
  • Authenticate users, manage sessions, and prevent fraud, abuse, or unauthorized access.
  • Process uploads and integrations, generate dashboards and reports, and provide analytics, forecasts, alerts, and AI-assisted workflows.
  • Respond to support requests, service notices, and operational communications.
  • Monitor performance, troubleshoot incidents, improve reliability, and maintain logs and audit trails.
  • Comply with legal obligations, protect rights and property, and enforce agreements and acceptable-use rules.

4. GDPR / EEA Legal Bases

Where GDPR or similar laws apply and ClubScope acts as a controller, we generally rely on the following legal bases:

  • Performance of a contract or steps taken at your request before entering into a contract.
  • Legitimate interests such as security, fraud prevention, service administration, support, product improvement, and internal operations.
  • Compliance with legal obligations.
  • Consent, where a specific activity requires consent under applicable law.

5. How We Share Information

We may disclose personal information only as needed to operate and secure the service, support customers, comply with law, or protect legal rights. Categories of recipients may include:

  • Customer organization administrators and authorized users within the relevant customer environment.
  • Infrastructure and support providers for hosting, storage, database, caching, email delivery, monitoring, and operational support.
  • AI providers when an AI-enabled workflow is invoked or configured by the customer.
  • Professional advisers, auditors, regulators, law enforcement, or similar parties when required by law or necessary to protect legal rights and security.

ClubScope does not sell personal information in the standard SaaS model and does not share personal information for cross-context behavioral advertising in the standard SaaS model.

6. International Transfers

ClubScope primarily operates from the United States and may use service providers that process data in the United States or other vendor-managed regions. Where required by applicable law, cross-border transfers are supported by appropriate contractual or technical safeguards, including Standard Contractual Clauses where applicable.

7. Data Retention

  • Account and profile information is generally retained while the account remains active and afterward only as needed for support, security, billing, legal, or legitimate business purposes.
  • Customer-uploaded or customer-authorized operational data is generally retained for the duration of the customer relationship unless the parties agree otherwise or applicable law requires a different period.
  • Security logs, audit trails, and diagnostic records are retained for a reasonable period needed for security, support, troubleshooting, and compliance review.
  • Backup and disaster-recovery copies may remain in managed backup cycles until they age out through standard retention and overwrite processes.

At the end of the customer relationship, ClubScope will return or delete customer data from active systems in accordance with the governing agreement, customer instructions, applicable law, and backup or archival constraints.

8. Security

ClubScope uses administrative, technical, and organizational safeguards designed to protect personal information. These measures include role-based access controls, authentication safeguards, encrypted transport, audit logging, monitoring, and backup and disaster-recovery processes. No system can guarantee absolute security.

9. Your Privacy Rights

Depending on your location and our role in the processing, you may have the following rights:

  • Access or know what personal information we hold about you.
  • Request correction of inaccurate personal information.
  • Request deletion of personal information, subject to legal and operational exceptions.
  • Request a copy or export of certain personal information where applicable.
  • Object to or request restriction of certain processing where applicable.
  • Withdraw consent for consent-based processing, where applicable.
  • Lodge a complaint with a supervisory authority if you believe your rights have been violated.

To exercise a request, email support@clubscope.ai with the subject line Privacy Request. We may ask for information needed to verify your identity and authority before processing the request. If your data is controlled by your organization, we may direct you to submit the request through your organization administrator first.

10. Additional California Privacy Disclosures

For California residents and for purposes of the California Consumer Privacy Act and California Privacy Rights Act:

  • We describe the categories of personal information we collect, the sources of that information, the business purposes for which it is used, and the categories of recipients in this policy.
  • In the standard ClubScope SaaS model, we do not sell personal information and do not share personal information for cross-context behavioral advertising.
  • We do not use or disclose sensitive personal information to infer characteristics about consumers or for purposes outside the limited business purposes needed to provide and secure the service.
  • California residents may request access, correction, or deletion by emailing support@clubscope.ai with the subject line "Privacy Request." We may verify identity and authority before acting on a request.
  • Authorized agents may submit requests on behalf of a California resident, subject to verification of the agent’s authority and the consumer’s identity.
  • We will not discriminate against you for exercising applicable privacy rights.

ClubScope users may request review or correction of certain account details through their organization administrator where available or by contacting us at support@clubscope.ai.

11. Browser Signals And Third-Party Tracking

ClubScope does not use the standard application experience to sell or share personal information for cross-context behavioral advertising. ClubScope does not currently respond to browser Do Not Track signals with a separate mechanism. ClubScope also does not intentionally permit third-party ad networks to collect personal information through the standard app experience across time and across third-party websites for their own use.

12. Children

ClubScope is intended for business users and is not directed to children under 13. We do not knowingly collect personal information directly from children under 13 through the public website or application sign-up flows. If you believe a child has provided personal information to us inappropriately, contact us so we can review and delete it where required.

13. Changes To This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date on this page and, where appropriate, provide additional notice through the service or through direct communication.

14. Contact

Privacy questions, rights requests, and data-protection inquiries may be sent to support@clubscope.ai.