Privacy Policy

• Account data — name, email, password (hashed, never stored in plain text), phone number (optional), and the answers you provide when creating your Player Card (display name, bio, profile picture).
• Order & shipping data — billing email, shipping address (when applicable), and a record of your subscriptions and one-time purchases. Payment card data is handled by Stripe via Secure Sockets Layer (SSL) and never stored on our servers.
• Training data — workouts you log (manually or via voice memo), shooting stats, performance metrics (Action Score, SuperHandles Standards earned), and any notes you attach.
• Content you upload — videos, photos, posts, comments, and voice memos you share within the community feed or your Player Card.
• SMS / MMS preferences — when you opt in to texts, we record the timestamp and the consent text shown to you (TCPA audit trail).
• Technical data — IP address, browser type, device type, and pages visited, collected via standard server logs.

• To deliver the Service you signed up for — memberships, training programs, Game Insights, the community feed, and Player Cards.
• To process payments and manage subscriptions via Stripe.
• To send the communications you opted into — email summaries, SMS notifications, MMS voicenotes.
• To compute your performance metrics (Action Score, SuperHandles Standards) and surface them on your Player Card and the leaderboard.
• To follow up about an attempted or successful transaction (for example, if there's an issue with your order).
• To improve the platform — diagnose bugs, measure feature usage, plan new features.
• To comply with our legal obligations (tax, accounting, regulatory).

We use the third-party services below to operate the Service. Each is contractually bound to handle your data only as needed to provide their service to us, and none receive your data for their own marketing purposes.

• We do not sell or rent your personal information to outside parties.
• We do not share your data with advertisers or data brokers.
• We do not use third-party advertising trackers (no Facebook Pixel, no Google Ads tags, no programmatic ad networks) on the member app.
• We do not read or analyze your private direct messages between members.

We may release information when we believe release is appropriate to comply with the law, enforce our Terms, or protect the rights, property, or safety of SuperHandles, our members, or others.

Cookies are small files that a website transfers to your device so the site can recognize your browser and remember certain information. We use first-party cookies for essential functions only — keeping you signed in, remembering your preferences, and compiling aggregate site-traffic data so we can improve the Service. We do not use cookies for cross-site tracking or third-party advertising.

We implement industry-standard security measures to safeguard your personal data:

• All traffic between your browser and our servers is encrypted in transit via HTTPS / SSL.
• Passwords are hashed using a strong one-way function — we never see or store your raw password.
• Payment card data is transmitted directly to Stripe via SSL and never touches our servers.
• Database access is restricted by role and protected by per-environment credentials.
• Access to production systems is limited to authorized personnel with two-factor authentication.

No security system is impenetrable. We cannot guarantee absolute security, but we work to keep your data safe and to notify you promptly in the event of a material breach affecting your account.

• Access — see what data we hold about you.
• Correction — fix anything inaccurate. Most fields you can edit yourself in /account.
• Deletion — request that we delete your account and all associated data. Some records (payment history, audit trail) we may need to retain for legal or tax purposes.
• Portability — request a copy of your data in a machine-readable format.
• Opt-out of marketing — unsubscribe from emails via the footer link in any email, or reply STOP to any text to stop SMS / MMS.

To exercise any of these rights, email support@supe.profrom the email address on your account. We'll respond within 30 days.

We keep your data while your account is active and for a reasonable period thereafter to handle support requests and legal obligations. When you request deletion, we remove personal data within 30 days and purge backups within 90 days. Anonymized aggregate metrics (for example, "average Action Score across all users") may be retained.

The Service is intended for users 13 years of age or older. In accordance with the Children's Online Privacy Protection Act (COPPA), we do not knowingly collect data from children under 13. If you believe a child has created an account, contact us and we'll delete the account and any associated data.

Because we value your privacy, we have taken the necessary precautions to be in compliance with the California Consumer Privacy Act (CCPA) and the California Online Privacy Protection Act (CalOPPA). We do not sell or share your personal information for cross-context behavioral advertising. California residents may request access to, correction of, or deletion of their personal information by emailing support@supe.pro.

You may also update most account information yourself at any time by signing in and visiting app.superhandles.com/account.

The Service is operated from the United States. By using SuperHandles, you consent to the transfer and processing of your data in the United States. We rely on standard contractual clauses with our sub-processors where applicable.

Occasionally, at our discretion, we may include or offer third-party products or services on the Service. These third- party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of those linked sites. We do, however, seek to protect the integrity of our Service and welcome any feedback about these sites.

We may update this Privacy Policy from time to time. If we make material changes — for example, adding a new sub-processor that materially expands data sharing, or collecting a new category of data — we will notify affected users by email at least 14 days before the change takes effect. The "Last updated" date at the top reflects the most recent revision.

Email support@supe.pro for any privacy questions or data requests, or write to us at: