1. Introduction

At QuickScores, we recognize that privacy is important. This Privacy Policy applies to all services offered by QuickScores LLC ("QuickScores," "we," "us," or "our"), including our website, mobile applications, and related services (collectively, the "Services"). By using our Services, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy.

If you have any questions about this Privacy Policy, please contact us.

2. About QuickScores

QuickScores is a software platform that serves two primary groups:

• Client Organizations: Sports leagues, recreation departments, tournament organizers, and similar organizations that use our platform to manage their sports programs.
• End Users: Athletes, coaches, parents, officials, and other individuals who participate in programs run by Client Organizations.

Client Organizations input or transfer data into QuickScores systems ("Customer Data") about their End Users. QuickScores processes this Customer Data on behalf of Client Organizations according to our service agreements.

Client Organizations are responsible for providing appropriate notice to their End Users and obtaining any necessary consent for the collection and use of Customer Data.

Our Role: Data Controller and Processor

Depending on the information involved, QuickScores acts as a data controller or a data processor (service provider):

• As controller, we determine how and why we use personal information relating to Client Organization accounts (such as administrator contact details, billing, and organization settings), our website and mobile app usage data, customer support communications, and marketing to prospective customers.
• As processor, we process Customer Data about End Users only on behalf of and under the instructions of Client Organizations, as described in our service agreements and applicable data processing terms.

This Privacy Policy describes our practices in both roles. End Users with questions about Customer Data should contact their Client Organization first; we will assist Client Organizations with End User requests as required by law and our agreements.

3. Types of Personal Information We Collect

Information from Client Organizations (Account Holders)

When Client Organizations create accounts and use our Services, we may collect:

• Contact information (name, email address, phone number, mailing address)
• Account credentials (username and password, which is stored in hashed form)
• Billing and payment information
• Organization details (organization name, type, location)
• Communication preferences

Customer Data (Information About End Users)

Client Organizations may input information about their End Users into our platform. This Customer Data is controlled by the Client Organization and may include:

• Names and contact information
• Email addresses and phone numbers
• Birthdates (for age verification and division placement)
• Emergency contact information
• Team affiliations and roster information
• Any other data fields configured by the Client Organization

Note: QuickScores processes Customer Data under the direction of Client Organizations. If you are an End User and have questions about how a Client Organization collects or uses your information, please contact that organization directly.

Mobile Application Information

When you use the QuickScores mobile application, we may also collect:

• Device information: Device model, operating system version, and mobile network information
• Push notification tokens: If you enable push notifications, we store your device's push token to send updates about teams, games, schedules, and messages. You can disable push notifications in your device settings at any time.
• Location information: With your permission, we may collect precise location to help you find nearby games, venues, or facilities. We may also infer general location from your IP address. We do not track your precise location when the app is not in use.
• Usage data: Features accessed, time spent in the app, and interactions with content

We do not collect advertising identifiers (such as Apple's IDFA or Google's Advertising ID) for cross-context behavioral advertising. We do not sell personal information or use it for targeted advertising.

Sensitive Personal Information

Depending on how Client Organizations configure the platform, Customer Data and account data may include categories that are treated as sensitive personal information under certain laws, including:

• Birthdates (for age verification and division placement)
• Emergency contact information
• Information about minors participating in youth sports programs
• Precise geolocation (only when you grant permission in the mobile app)

We use sensitive personal information only as necessary to provide the Services, for security and fraud prevention, and as permitted by law. We do not use sensitive personal information to infer characteristics about you for unrelated purposes. California residents have the right to limit certain uses of sensitive personal information, as described in Section 13.

Automatically Collected Information (Website and Services)

When you use our Services, we automatically collect certain information, including:

• IP addresses and general location derived from IP address
• Browser type and version
• Operating system
• Device information
• Pages visited and features used
• Date and time stamps of activity
• Referring URLs
• Clickstream data
• Usage and analytics data

In-App Purchase Information

If you make purchases through our mobile application using Apple In-App Purchase or Google Play In-App Billing:

• We receive confirmation from Apple or Google about the product purchased, purchase date, and subscription status
• We validate purchase receipts with Apple or Google to verify subscriptions and prevent fraud (encrypted receipt data is sent to Apple or Google for verification)
• We maintain subscription status and renewal information to provide uninterrupted access

We do not receive or store your payment card information; payment processing is handled securely by Apple or Google. You can manage subscriptions through your Apple App Store or Google Play account settings.

4. How We Collect Personal Information

Information You Provide Directly

We collect information when you:

• Register for an account
• Use our Services and enter data
• Contact our customer support team
• Respond to surveys or provide feedback
• Communicate with us via email or other channels

Information Provided by Client Organizations

We receive Customer Data when Client Organizations:

• Upload or enter participant information into the platform
• Import rosters and team registration data
• Create schedules and events

Information Collected Automatically

We automatically collect information through:

• Server logs
• Cookies and similar technologies
• Analytics tools
• Usage tracking within the application

5. How We Use Personal Information

To Provide and Maintain Our Services

• Operate, maintain, and improve our Services
• Process transactions and send related information
• Authenticate users and manage accounts
• Provide customer support
• Send service-related communications (updates, security alerts, support messages)

To Improve and Develop Our Services

• Analyze usage patterns and trends
• Develop new features and functionality
• Conduct research and analysis
• Create aggregated, de-identified data for internal analytics

To Protect and Secure Our Services

• Detect, prevent, and address fraud and abuse
• Monitor for security incidents
• Enforce our Terms of Service and other agreements
• Protect the rights and safety of our users

To Communicate with You

• Respond to your inquiries and requests
• Send administrative information
• Provide product updates and announcements (with your consent where required)

For Legal Compliance

• Comply with applicable laws and regulations
• Respond to legal process and government requests
• Protect our legal rights

6. Retention of Personal Information

We retain personal information only for as long as reasonably necessary to fulfill the purposes described in this Policy, unless a longer retention period is required or permitted by law. We do not retain personal information longer than necessary for each disclosed purpose.

Retention by Category

• Client Organization account information: For as long as the account is active, plus a reasonable period after closure to resolve disputes, enforce agreements, and comply with legal obligations (typically up to 3 years unless a longer period is required by law).
• Billing and transaction records: Typically up to 7 years after the transaction date for accounting, tax, and legal compliance.
• Customer Data (End User information): According to our service agreements with Client Organizations. When a Client Organization terminates its account, we delete or anonymize Customer Data within a reasonable timeframe (typically within 90 days), unless retention is required by law or requested by the Client Organization for export.
• Server logs and usage analytics: Typically 12 to 24 months for security monitoring and service improvement.
• Customer support communications: For as long as needed to resolve your inquiry and maintain support history, typically up to 3 years.
• Marketing communications preferences: Until you opt out or request deletion, plus a short period to honor your opt-out.

Aggregated or de-identified data that cannot reasonably be used to identify you may be retained indefinitely for analytics and service improvement.

7. How We Share Personal Information

With Service Providers

We share information with third-party service providers who perform services on our behalf. Please use the company links below to view their privacy policies.

• Cloud hosting: Amazon Web Services (AWS), with servers located in the United States
• Payment processing: Fiserv, PayPal, Square, and J.P. Morgan
• App Stores (in-app purchases): Apple and Google
• Analytics: Google Analytics
• Email delivery: Postmark and Mailgun
• Chat messaging: Supabase

Client Organization payment processors: When a Client Organization accepts payments from participants, it may use third-party processors such as PayPal, Square, or Fiserv. Those transactions are governed by the Client Organization's agreement with the payment processor; QuickScores does not receive or store participants' payment card information for those transactions.

These service providers are contractually bound to protect your information and may only use it for the specific purposes for which we engage them.

With Client Organizations

Client Organizations have access to Customer Data they collect through our platform, as well as usage statistics and reports related to their organization.

For Legal Reasons

We may disclose personal information when we have a good faith belief that disclosure is necessary to:

• Comply with applicable law, regulation, legal process, or governmental request
• Enforce our Terms of Service and other agreements
• Detect, prevent, or address fraud, security, or technical issues
• Protect the rights, property, or safety of QuickScores, our users, or the public

Business Transfers

If QuickScores is involved in a merger, acquisition, reorganization, or sale of assets, your personal information may be transferred as part of that transaction. We will provide notice before your personal information becomes subject to a different privacy policy.

With Your Consent

We may share your information in other circumstances with your explicit consent.

QuickScores DOES NOT sell personal information. We do not share Customer Data with third parties for their own marketing purposes.

8. Cookies and Tracking Technologies

Types of Cookies We Use

• Essential Cookies: Required for authentication, session management, and security. These cookies are necessary for the Services to function properly.
• Functional Cookies: Remember your preferences and settings to enhance your experience.
• Analytics Cookies: Help us understand how users interact with our Services so we can improve them.

Third-Party Analytics

We may use third-party analytics services, such as Google Analytics, to help us understand how our Services are used. These services may collect information about your use of our Services and other websites. You can learn more about Google Analytics and opt out by visiting Google Analytics Opt-out.

Your Cookie Choices

Most web browsers are set to accept cookies by default. You can usually modify your browser settings to decline cookies if you prefer. However, if you disable cookies, some features of our Services may not function properly.

For more information about cookies and how to manage them, visit www.aboutcookies.org.

Global Privacy Control and Opt-Out Signals

QuickScores does not sell personal information and does not share personal information for cross-context behavioral advertising (targeted advertising). Where required by law, we honor legally recognized universal opt-out mechanisms, including the Global Privacy Control (GPC) signal, as an opt-out of sale or sharing for targeted advertising. Because we do not engage in those activities, enabling GPC will not change your experience with our core Services, but we will process such signals as required by applicable state laws.

Some browsers offer a "Do Not Track" (DNT) feature. Our Services do not respond to DNT signals in a standardized way. You can use the cookie management options described above to control analytics cookies.

9. Data Security

QuickScores is committed to protecting your personal information. We maintain administrative, technical, and physical safeguards designed to protect against unauthorized access, use, modification, and disclosure of personal information. These measures include:

• Encryption of data in transit and at rest
• Access controls and authentication requirements
• Regular security assessments and monitoring
• Employee training on data protection
• Incident response procedures

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security, but we are committed to implementing and maintaining appropriate safeguards.

10. Your Rights and Choices

Access and Portability

You have the right to request access to the personal information we hold about you and to receive a copy of that information in a portable format.

Correction

You have the right to request correction of inaccurate personal information. You can update much of your account information directly through the Services.

Deletion

You have the right to request deletion of your personal information, subject to certain exceptions (such as when we need to retain information for legal compliance or to complete a transaction). You may submit an account deletion request through our Account Deletion Request page or by contacting us.

Opt-Out Rights

• Marketing Communications: You can opt out of marketing emails by clicking the "unsubscribe" link in any marketing email or by contacting us.
• Cookies and analytics: You can manage cookie preferences through your browser settings as described in Section 8.
• Sale, sharing, and targeted advertising: We do not sell personal information or share it for cross-context behavioral advertising. See Section 8 for Global Privacy Control (GPC).

How to Exercise Your Rights

To exercise any of these rights, please contact us, call (972) 454-9887, or use our Account Deletion Request page for deletion requests. We will respond within the timeframes required by applicable law (for example, 45 days under many U.S. state laws, with a possible extension where permitted).

Authorized Agents

You may designate an authorized agent to submit a privacy request on your behalf. We may require written proof that the agent is authorized to act for you and verification of your identity (or the agent's authority) before processing the request.

Appeals

If we deny your privacy request, you may appeal our decision by replying to our response or contacting us at support@quickscores.com with the subject line "Privacy Request Appeal." We will notify you in writing of the outcome of your appeal within the timeframe required by applicable law (typically within 45 days). If your appeal is denied, residents of certain states may contact their state attorney general or privacy regulator.

Automated Decision-Making

QuickScores does not use automated decision-making or profiling that produces legal or similarly significant effects concerning you. We may use automated tools for fraud prevention, security monitoring, and internal analytics that do not result in such effects.

Important for End Users: If you are an End User of a Client Organization using QuickScores, please direct your privacy requests to the Client Organization first, as they control your Customer Data. QuickScores will assist Client Organizations in responding to such requests as required.

11. Client Organization Responsibilities

QuickScores processes Customer Data under the direction of Client Organizations. Client Organizations are responsible for:

• Providing appropriate notice to their End Users about data collection and use
• Obtaining any necessary consent from End Users as required by law
• Ensuring the accuracy of Customer Data entered into the platform
• Responding to privacy requests from their End Users
• Complying with applicable privacy laws regarding their data collection practices

Client Organizations must ensure they are authorized to share any personal information with QuickScores. By using our Services, Client Organizations represent that they have provided all required notices and obtained all required consents for the collection and processing of Customer Data.

QuickScores processes Customer Data only as instructed by Client Organizations and as permitted by our service agreements.

12. Children's Privacy

QuickScores does not knowingly collect personal information directly from children under the age of 13 (or the applicable age of consent in your jurisdiction) without verifiable parental consent.

Client Organizations may collect information about minors as part of their youth sports programs. In such cases, Client Organizations are responsible for obtaining verifiable parental consent as required by the Children's Online Privacy Protection Act (COPPA) and other applicable laws. Where a Client Organization collects information about a child, the organization should provide its own notice and obtain consent from a parent or guardian before sharing that information with QuickScores.

If we learn that we have collected personal information from a child under 13 without proper consent, we will take steps to delete that information promptly. If you believe we may have collected information from a child under 13, please contact us immediately.

Parents or guardians may contact us to request access to, correction of, or deletion of their child's personal information.

13. California Residents

If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), provides you with specific rights regarding your personal information. This section supplements the rest of this Policy.

Your California Privacy Rights

• Right to Know: Request the categories and specific pieces of personal information we have collected about you, the sources, our purposes, the categories of third parties to whom we disclose it, and whether we sell or share it.
• Right to Delete: Request deletion of personal information we collected from you, subject to exceptions.
• Right to Correct: Request correction of inaccurate personal information.
• Right to Opt-Out of Sale/Sharing: QuickScores does not sell personal information and does not share personal information for cross-context behavioral advertising.
• Right to Limit Use of Sensitive Personal Information: Request that we limit use of sensitive personal information to purposes permitted by the CPRA (see below).
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

Notice at Collection (Summary)

At or before we collect personal information, we provide notice of the categories collected, purposes, whether information is sold or shared, and retention periods. The following summarizes our practices for the 12 months preceding the Last Updated date above. For a complete description, see this Policy.

Categories, Sources, Purposes, and Retention

Identifiers

• Examples: Name, email, phone number, mailing address, IP address, account username, device identifiers
• Sources: You, Client Organizations, your devices and browsers, service providers
• Purposes: Provide Services, accounts, support, security, billing, communications, analytics, legal compliance
• Disclosed to: Service providers (Section 7), Client Organizations (for Customer Data they control), legal authorities when required
• Sold or shared: No
• Retention: See Section 6 (typically account lifetime plus up to 3 years; logs 12-24 months)

California Customer Records

• Examples: Account credentials (passwords stored in hashed form), billing contact details
• Sources: You, payment processors
• Purposes: Account management, authentication, billing, support
• Disclosed to: Service providers (hosting, payment, email)
• Sold or shared: No
• Retention: Active account plus up to 3 years; billing records up to 7 years

Commercial Information

• Examples: Subscription and transaction history, products purchased
• Sources: You, Apple, Google, Fiserv
• Purposes: Process transactions, subscriptions, accounting, fraud prevention
• Disclosed to: Payment processors, app stores, accounting and hosting providers
• Sold or shared: No
• Retention: Typically up to 7 years for tax and legal compliance

Internet or Other Electronic Network Activity

• Examples: Pages viewed, features used, clickstream, server logs, cookies
• Sources: Your devices, cookies, analytics tools
• Purposes: Operate and improve Services, security, analytics
• Disclosed to: Hosting and analytics providers
• Sold or shared: No
• Retention: Typically 12 to 24 months for logs and analytics

Geolocation Data

• Examples: General location from IP address; precise location if you grant permission in the mobile app
• Sources: Your devices, IP address
• Purposes: Provide location-based features, security, analytics
• Disclosed to: Hosting providers
• Sold or shared: No
• Retention: See Section 6; precise location not retained beyond session needs when applicable

Sensitive Personal Information

• Examples: Birthdates, emergency contacts, information about minors, precise geolocation (with permission)
• Sources: Client Organizations, you (where applicable)
• Purposes: Provide sports program management features requested by Client Organizations; security; legal compliance. We do not use sensitive personal information to infer characteristics for unrelated purposes.
• Disclosed to: Service providers under contract; Client Organizations control Customer Data
• Sold or shared: No
• Retention: Per Section 6 and Client Organization agreements

Limit Use of Sensitive Personal Information

California residents may request that we limit use of sensitive personal information to uses necessary to provide the Services you request, security, short-term transient use, and other CPRA-permitted purposes. To submit a limit request, contact us using the methods below. We do not use sensitive personal information for purposes that require a "Limit" link beyond what the CPRA allows without your consent.

How to Submit a Request

To submit a request to know, delete, correct, or limit use of sensitive personal information:

• Contact Us (for questions or corrections)
• Account Deletion Request (for deletion)
• Email: support@quickscores.com
• Phone: (972) 454-9887

You may designate an authorized agent as described in Section 10. We will verify your identity before processing your request. We will respond to verifiable consumer requests within 45 days, or notify you if we need additional time (up to 90 days total where permitted).

Financial Incentives

QuickScores does not offer financial incentives, loyalty programs, or price differences related to the collection or deletion of personal information.

14. Other U.S. State Residents

If you are a resident of a state with a comprehensive privacy law, including Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Delaware, Indiana, Kentucky, Rhode Island, Montana, or other states with similar statutes, you may have rights including:

• Right to access and confirm whether we process your personal data
• Right to correct inaccuracies
• Right to delete personal data
• Right to obtain a portable copy of your data
• Right to opt out of the sale of personal data (we do not sell personal data)
• Right to opt out of targeted advertising (we do not engage in targeted advertising)
• Right to opt out of profiling in furtherance of decisions with legal or similarly significant effects (we do not engage in such profiling)
• Right to opt out of certain processing of sensitive data, where applicable
• Right to appeal a denied request (see Section 10)

Several states require businesses to honor universal opt-out signals such as Global Privacy Control (GPC) for sale, sharing, and targeted advertising. See Section 8. To exercise your rights or appeal a decision, please contact us or call (972) 454-9887.

15. Canadian Privacy Rights

If you are a resident of Canada, your personal information is protected under the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy laws.

Consent

We collect, use, and disclose personal information with your knowledge and consent, except where permitted or required by law. You may withdraw your consent at any time, subject to legal or contractual restrictions and reasonable notice. Withdrawing consent may affect our ability to provide certain Services to you.

Access and Correction

You have the right to access the personal information we hold about you and to request correction of any inaccuracies. To make such a request, please contact us. We will respond within 30 days or notify you if additional time is required.

Cross-Border Transfers

Your personal information will be transferred to and processed in the United States, where our servers are located (AWS data centers in Ohio and Virginia). When your information is processed outside of Canada, it is subject to the laws of the United States, including disclosure to government authorities under applicable U.S. law. We take steps to ensure that our service providers provide a comparable level of protection for your personal information.

Quebec Residents

If you are a resident of Quebec, you have additional rights under Quebec's Act respecting the protection of personal information in the private sector (Law 25), including:

• Right to data portability
• Right to de-indexing (right to be forgotten)
• Right to be informed about automated decision-making (QuickScores does not make automated decisions with legal or significant effects based solely on automated processing)

Privacy Complaints

If you have a complaint about our privacy practices, please contact us first. We will investigate and respond within 30 days. If you are not satisfied with our response, you have the right to file a complaint with the Office of the Privacy Commissioner of Canada or your provincial privacy commissioner.

16. International Data Transfers

QuickScores is based in the United States. Our Services are hosted on Amazon Web Services (AWS) infrastructure located in the United States (Ohio and Virginia regions). If you access our Services from outside the United States, please be aware that your personal information will be transferred to, stored, and processed in the United States.

The United States may have data protection laws that differ from those in your country. By using our Services, you consent to the transfer of your information to the United States as described in this Policy.

We take appropriate measures to ensure that your personal information remains protected in accordance with this Policy when transferred internationally, including using contractual protections with our service providers.

17. Third-Party Links and Services

Our Services may contain links to third-party websites or services that are not operated by QuickScores. This Policy does not apply to those third-party sites. We encourage you to review the privacy policies of any third-party sites you visit.

Client Organizations may configure integrations with third-party services. The use of such integrations is governed by the Client Organization's agreement with those third parties, and QuickScores is not responsible for the privacy practices of those services.

18. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. When we make material changes, we will notify you by posting the updated Policy on our website and updating the "Last Updated" date at the top of this page. For significant changes, we may also provide additional notice, such as an email notification or a prominent notice on our Services. We review this Policy at least annually.

We encourage you to review this Policy periodically to stay informed about our privacy practices. Your continued use of our Services after any changes constitutes your acceptance of the updated Policy.

19. Contact Us

If you have questions about this Privacy Policy or our privacy practices, or if you wish to exercise your privacy rights, please contact us:

QuickScores LLC
1303 Cheyenne Dr
Richardson, TX 75080

Email: support@quickscores.com
Phone: 972-454-9887
Web: Contact Form

We will respond to your inquiry within a reasonable timeframe. For privacy-related requests, we will respond within the timeframes required by applicable law.

---

Effective Date: June 1, 2026
Last Updated: June 1, 2026