This Privacy Policy explains how Qbets ("we", "us", "our") collects, uses, and protects your personal data when you use our website at qbets.io and our Telegram-based alert service. We are committed to protecting your privacy in accordance with the EU General Data Protection Regulation (GDPR).
1. Data Controller
The data controller responsible for your personal data is:
Qbets
Email: support@qbets.io
If you have any questions about how we handle your data, please contact us at the email address above.
2. What Data We Collect
2.1 Data you provide directly
- Email address — collected when you subscribe to Qbets via our payment form (processed by Stripe). Used to manage your subscription and send service notifications.
- Payment information — your card details are collected and stored exclusively by Stripe, Inc. We never see or store your full card number, CVV, or bank account details.
2.2 Data collected automatically via Telegram
- Telegram user ID — collected when you join the Qbets Telegram channel or interact with our bot. Used to deliver alerts and verify your subscription status.
- Telegram username — optionally associated with your account for support purposes.
2.3 Technical data
- Server logs — IP addresses, browser type, and pages visited are logged temporarily for security and debugging purposes. These logs are not used for profiling and are deleted after 30 days.
- Cookies — we use a session cookie solely to keep you logged in to the private dashboard (if applicable). We do not use tracking or advertising cookies.
3. How We Use Your Data
We use your personal data only for the following purposes:
- To process and manage your subscription (legal basis: contract performance)
- To deliver betting alerts via Telegram (legal basis: contract performance)
- To send transactional emails (e.g. subscription confirmation, payment failure notices) (legal basis: contract performance)
- To respond to support requests (legal basis: legitimate interest)
- To detect fraud, abuse, or security incidents (legal basis: legitimate interest)
- To comply with legal obligations where required (legal basis: legal obligation)
We do not use your data for marketing profiling, sell your data to third parties, or use it for automated decision-making that produces legal effects.
4. Third-Party Services
We share data with the following third parties only to the extent necessary to provide the service:
- Stripe, Inc. — payment processing. Stripe is a certified PCI-DSS Level 1 service provider. Your payment data is governed by Stripe's Privacy Policy.
- Supabase, Inc. — secure database storage for subscriber records. Data is stored on servers in the EU (or US with appropriate safeguards). See Supabase's Privacy Policy.
- Telegram Messenger — alert delivery. By joining the Telegram channel, you are also subject to Telegram's Privacy Policy.
- Resend — transactional email delivery. Only your email address is shared. See Resend's Privacy Policy.
5. Data Retention
- Active subscribers: data is retained for the duration of the subscription.
- Cancelled subscribers: email address and subscription history are retained for up to 12 months after cancellation for accounting and fraud prevention purposes, then deleted.
- Server logs: deleted after 30 days.
- You may request earlier deletion at any time (see Section 6).
6. Your Rights Under GDPR
If you are located in the European Economic Area (EEA), you have the following rights:
- Right of access — you can request a copy of the personal data we hold about you.
- Right to rectification — you can ask us to correct inaccurate data.
- Right to erasure ("right to be forgotten") — you can ask us to delete your data, subject to legal retention requirements.
- Right to restriction — you can ask us to restrict processing in certain circumstances.
- Right to data portability — you can request your data in a machine-readable format.
- Right to object — you can object to processing based on legitimate interest.
- Right to withdraw consent — where processing is based on consent, you may withdraw it at any time.
To exercise any of these rights, please email us at support@qbets.io. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority.
7. Data Security
We implement appropriate technical and organisational measures to protect your data, including:
- HTTPS encryption for all data in transit
- Database access restricted by service-level API keys
- No storage of payment card details on our servers
- Access to subscriber data limited to authorised personnel only
Despite these measures, no internet transmission is 100% secure. If we become aware of a security breach affecting your personal data, we will notify you as required by applicable law.
8. Cookies
Our website uses only a single functional cookie to maintain a session for the private dashboard. We do not use analytics cookies, advertising cookies, or any third-party tracking scripts.
You can disable cookies in your browser settings; however, this may affect dashboard login functionality.
9. Children's Privacy
Our service is intended for adults aged 18 and over. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected data from a minor, please contact us immediately and we will delete it.
10. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. Material changes will be communicated via email to active subscribers. Continued use of the service after changes constitutes acceptance of the updated policy.
11. Contact
For any privacy-related questions or requests, please contact:
Qbets
Email: support@qbets.io