GotNext ("GotNext", "we", "us") is a pickup basketball app for London. It lets you see which courts are active right now, check in to a court, see who is there and who is coming, form teams that hold courts, and organise and discover runs. This policy explains what data we handle, why, who processes it for us, how long we keep it, and the choices and rights you have.

GotNext is intended for people aged 13 and over. It is not designed for and not directed at children under 13. If we learn that someone under 13 has created an account, we delete it.

Who is responsible

GotNext, operated by Denis WebStudio, is the data controller for the data described here. For any privacy question, or to exercise any of your rights, contact us at the email in the Contact section below.

What we collect and why

Account identity (required). When you sign up we collect your email address and a username, and you set a password. These are handled by our authentication provider, Clerk. Clerk also assigns your account an opaque user identifier (a random string, not your name or email) that GotNext uses internally to link your data to you. If you choose to turn on two-factor authentication, Clerk may also process a phone number (for SMS codes) or codes from your authenticator app. We use this data to create and secure your account and to sign you in.

Profile content you add. Your display name, profile photo and banner image, a short bio ("your game"), height, playing positions, playstyle tags, your home courts, a vibe, and the goals you pick ("what you are here for"). You choose what to add, and you can edit or remove it at any time in Edit profile. We use it to build your player profile, which other signed-in users can see.

Check-ins. When you check in to a court we store the court, your status (for example "here now", "on my way", "shooting around", "want a run", or "game going"), how many players you still need for a full court, and the times you choose to share (such as when you are arriving). A check-in is the core of the app: it powers the live map, the who-is-here and who-is-coming lists, your run history, and your reliability score. A check-in records the court you picked, not your device's coordinates (see "Location" below).

Run history. When you become present at a court, we log a court visit (the court and the time) so your profile and the court can show run history. This is derived from your check-ins.

Teams and runs you create or join. Team names, descriptions and team identity (colour and crest), run names, descriptions and prize text, who is on a lineup, challenges between teams, and game results. This content is shared with other signed-in users because that is the product (a team that holds a court, a run other people can find and join).

Reports and feedback. If you report a user or a piece of content, we store the report (what was reported, the reason, any details you add, and who filed it) so our moderators can act on it. If you send feedback from Settings, we store your message, your account identifier, and your app version and platform so we can act on it.

Notification token. If you turn on notifications, we store a push token from Expo's push service so we can deliver run and court alerts to your device. On Android, delivery uses Firebase Cloud Messaging (Google) as the transport for the push.

Location (used on your device, not stored by us). With your permission, GotNext uses your phone's precise location in the foreground (while you are using the app) for two things: to center the map on where you are and show nearby courts, and to confirm you are actually at a court before you post a "here now" style check-in (this keeps the live map honest). Your coordinates are used on your device only. We do not collect your location in the background, and we do not transmit or store your coordinates on our servers. The only thing a check-in records is the court you chose, not your position. You can deny or turn off the location permission in your phone settings; the map will still work, but you will not be able to post an at-the-court check-in.

Photos. Only the images you pick for your profile photo or banner. Before any photo leaves your device we resize and re-encode it, which strips embedded metadata such as EXIF location (GPS) tags. We never access your camera, microphone, or your wider photo library beyond the single image you choose.

Crash and error diagnostics. When the app crashes or hits a technical fault, a crash report is sent to Sentry (see below). It contains the technical details needed to fix the fault: the error and where in the code it happened, your device model, operating system version, and app version. It does not include your name, email, account identity, or IP address (IP addresses are scrubbed on Sentry's servers).

Product analytics (only if you opt in). If, and only if, you turn on "Share usage analytics" (asked once during onboarding, changeable any time in Settings), we record a small set of in-app actions with PostHog (see below): a check-in, completing an onboarding step, creating a run, registering a team, issuing a challenge, filing a report, submitting feedback, selecting goals, and a session where the map showed zero live courts. These events are linked to your opaque account identifier, never your email and never your location. Nothing is collected or stored before you opt in, not even an anonymous identifier. Turning the toggle off stops collection immediately.

We do not collect your contacts, your calendar, your browsing history, your advertising identifier (IDFA / Android Advertising ID), or your background location.

GotNext does not sell your data, and there is no advertising in the app.

With other users. Your display name, profile photo and banner, profile details, your check-ins and presence, your run history, and the teams and runs you take part in are visible to other signed-in users. That visibility is the product. You can hide yourself from another user by blocking them (Settings and the report flows), which stops the two of you seeing each other across the app.

With service providers (processors) who act on our behalf. We use the following providers to run GotNext. They process data only to provide their service to us, under their own security and data terms:

Clerk (authentication and account management): your email, username, password, the opaque user id, and any 2FA phone number or authenticator codes.
Supabase (database, file storage, and realtime infrastructure): your profile, check-ins, court visits, teams and runs, friendships, blocks, MVP votes, reports, feedback, push tokens, and your uploaded profile and banner images. Our Supabase data is hosted in the EU (AWS eu-west-1, Ireland).
Expo (push notification delivery): your push token and the notification content, when notifications are enabled.
Sentry (crash and error monitoring): the crash diagnostics described above, hosted in the EU (Germany).
PostHog (product analytics, only if you opt in): the in-app events described above and your opaque account identifier, hosted in the EU (Germany).

With Google Maps. The map in GotNext is powered by the Google Maps SDK. For the map to work, the SDK shares some data with Google, including a pseudonymous identifier and basic request and device information. Google may use this for its own service operation and improvement, as described in Google's Privacy Policy and its Maps SDK disclosure. This is separate from the location handling described above: GotNext does not send your check-in or device coordinates to Google.

For legal reasons. We may disclose data where we are legally required to, or where it is necessary to protect the safety of users or others (for example, responding to a credible threat or a report involving a minor in danger), or to establish, exercise, or defend legal claims.

Where your data is processed

Our primary infrastructure (Supabase, Sentry, PostHog) is hosted in the EU. Clerk, Expo, and Google operate globally and may process data outside the UK and EU; where they do, they rely on their own appropriate safeguards (such as standard contractual clauses) for international transfers.

Legal bases (UK GDPR / EU GDPR)

Account identity, profile, check-ins, teams, runs, push delivery: performance of our agreement with you to provide the app, and our legitimate interest in operating it.
Crash and error diagnostics (Sentry): our legitimate interest in keeping the app working and detecting technical faults. Because it is strictly limited to fault detection (no IP address, no account identity, no tracing, no session replay), it runs without a separate consent prompt.
Product analytics (PostHog): your consent, which you give by turning on "Share usage analytics" and can withdraw at any time.
Reports and moderation records: our legitimate interest in keeping the community safe and in the establishment, exercise, or defence of legal claims (see Data retention).

Data retention

While your account is open, we keep your profile, run history, and the content you have created for as long as you use GotNext.
Check-ins are short-lived: an inactive check-in is automatically removed about 4 hours after your last activity, because presence is meant to reflect the court right now.
Notifications: notices you have read are automatically deleted after 60 days; unread ones are kept until you see them.
When you delete your account, your personal data is deleted as described in the next section.
Reports are an exception. A report you file, or a report filed about you, may be kept after account deletion as part of our moderation audit trail (what was reported and what action a moderator took), on the legal basis of our legitimate interest in safety and in the establishment, exercise, or defence of legal claims. These records are kept no longer than necessary for that purpose.
Crash diagnostics are retained by Sentry for a limited period under Sentry's own retention settings and contain no account identity.
Opt-in analytics are retained by PostHog while you remain opted in; see your rights below.

Deleting your account and your data

You can delete your account and your data at any time, directly from the app, without reinstalling:

In the app: Settings > Delete account.

Deleting your account does the following:

It deletes your Clerk login (your email, username, password, and any 2FA details) by calling Clerk on your behalf, so you can no longer sign in.
It deletes your GotNext data held in our database: your profile, your check-ins and court-visit history, your friendships, your blocks, your MVP votes, your place in any run lineups, your feedback, your notification tokens, and the notices created about you. If you are a team captain, captaincy passes to another member first so a team is never left stranded; a team left with no members is deleted.
It deletes your uploaded profile photo and banner from our storage.
It turns off product analytics on your device and stops any further collection.

What is not deleted, and why.

Shared scene history. Content that is part of other people's history (the runs that happened, game results, and challenges) is not torn out of their records. Where these reference you, the reference becomes an inactive identifier with no profile attached.
Moderation records. Reports you filed or that were filed about you may be retained for the moderation audit trail, as explained in Data retention.
Opt-in analytics held by PostHog. If you had opted into analytics, the analytics records held by our processor PostHog are not erased instantly by the in-app deletion. We erase them on request: see "Your rights" below, or email us and we will action it (within 30 days).

If you cannot use the in-app route for any reason, you can request deletion by emailing us at the Contact address below, and we will verify your request and delete your account and data. There is also a step-by-step guide on our Delete your data page.

Your rights

Subject to UK and EU data protection law, you have the right to access the personal data we hold about you, to correct it, to delete it, to restrict or object to certain processing, to data portability, and to withdraw consent (for analytics) at any time. You can exercise most of these directly in the app (Edit profile to correct your data, the analytics toggle to withdraw consent, and Delete account to erase it). For anything else, including erasure of opt-in analytics held by PostHog, contact us at the email below. We aim to respond within 30 days.

You also have the right to complain to a data protection regulator. In the UK that is the Information Commissioner's Office (ico.org.uk).

Security

We use providers that encrypt data in transit (TLS) and at rest, restrict access to your data with per-user database security rules, and store authentication credentials with Clerk. No system is perfectly secure, but we take reasonable measures to protect your data.

Children

GotNext is for users aged 13 and over. We do not knowingly collect data from children under 13. A credible report that a user is under 13 results in account closure and deletion of their data.

Changes to this policy

We will update this page when our practices change and revise the effective date above. Significant changes will be communicated in the app where appropriate.

Contact

For any privacy question or to exercise your rights, email [email protected].

This policy is published at https://gotnext.uk/privacy.

Privacy Policy