Privacy Policy

Last updated: March 28, 2026

1. Data Controller

DEADREAD (“we,” “us,” or “our”) is the data controller responsible for your personal data. For any privacy-related inquiries, contact us at privacy@joindeadread.com.

2. Information We Collect

We collect the following categories of personal information:

a) Information you provide directly

  • Full name and email address (registration and application)
  • Country of residence
  • Poker results, playing history, stakes, volume, and winrate
  • Current bankroll range
  • Weekly poker hours and preferred coaching schedule
  • Video submissions (e.g., play-and-explain recordings)
  • Short bio and personal goals
  • Account credentials (passwords are stored in hashed form only; we never store or have access to your plaintext password)

b) Information collected automatically

  • IP address, browser type, device information, and operating system
  • Pages visited, time spent on pages, and referral URLs
  • Session cookies necessary for authentication (see our Cookie Policy)

c) Information generated through your use of the platform

  • Course progress and lesson completion status
  • Quiz scores and last-access timestamps
  • Live session attendance records

3. Legal Basis for Processing

We process your personal data on the following legal bases under GDPR Article 6:

  • Contractual necessity — processing required to evaluate your application, manage your membership, and deliver coaching services under our Terms of Service and CFP agreement.
  • Legitimate interest — improving our services, maintaining platform security, and analyzing aggregated usage patterns to enhance the coaching experience.
  • Legal obligation — where we are required to retain or disclose data to comply with applicable laws.
  • Consent — where you have given explicit consent for specific processing activities. You may withdraw consent at any time by contacting us.

4. How We Use Your Information

We use your information to:

  • Evaluate your application to the DEADREAD program
  • Communicate with you about your application status and coaching schedule
  • Provide coaching services, including live sessions and course access
  • Track your learning progress and deliver personalized coaching
  • Manage your account, authentication, and membership
  • Maintain platform security and prevent unauthorized access
  • Improve our website, services, and coaching methodology
  • Comply with legal obligations

5. Third-Party Services & Data Sharing

We do not sell, rent, or trade your personal information. We share data only with the following categories of service providers, solely to operate our platform:

  • Zoom Video Communications, Inc. — your name and email address are shared with Zoom when you join live coaching sessions. Zoom may collect additional data (device info, meeting telemetry, recordings) under its own privacy policy (zoom.us/privacy).
  • Vimeo, Inc. — video lessons are hosted on Vimeo. The embedded player may collect viewing data and set cookies under Vimeo's own privacy policy (vimeo.com/privacy). We request Do Not Track mode, but cannot guarantee Vimeo honors this in all cases.
  • Hosting & infrastructure providers — our website is hosted on cloud infrastructure that processes server logs containing IP addresses and request metadata.
  • Analytics — if enabled, we use Plausible Analytics, a privacy-focused analytics service that does not use cookies and does not collect personal data.

We may also disclose your information where required by law, regulation, legal process, or governmental request.

6. International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence, including the United States, where our hosting providers and third-party services (Zoom, Vimeo) operate. Where such transfers occur, we rely on appropriate safeguards, including Standard Contractual Clauses (SCCs) approved by the European Commission, to ensure your data receives an adequate level of protection regardless of where it is processed.

7. Data Retention

  • Active members: personal data is retained for the duration of your membership and for up to 12 months following termination, unless a longer retention period is required by law.
  • Rejected applicants: application data is deleted within 90 days of rejection unless you request earlier deletion.
  • Learning progress: course progress, quiz scores, and session attendance data are retained for the duration of your membership.
  • Server logs: IP addresses and access logs are retained for up to 90 days for security purposes.

8. Cookies & Tracking

We use essential cookies to keep you logged in and maintain your session. Third-party embeds (Vimeo, Zoom) may set their own cookies. We do not use advertising or behavioral tracking cookies. For full details, see our Cookie Policy.

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Under GDPR (EEA/UK residents)

  • Right of access — obtain a copy of the personal data we hold about you
  • Right to rectification — correct inaccurate or incomplete data
  • Right to erasure — request deletion of your personal data (“right to be forgotten”)
  • Right to restrict processing — limit how we use your data in certain circumstances
  • Right to data portability — receive your data in a structured, machine-readable format
  • Right to object — object to processing based on legitimate interest
  • Right to withdraw consent — where processing is based on consent, withdraw it at any time
  • Right to lodge a complaint — file a complaint with your local data protection supervisory authority

Under CCPA/CPRA (California residents)

  • Right to know what personal information is collected, used, and shared
  • Right to delete personal information
  • Right to opt-out of the sale or sharing of personal information
  • Right to non-discrimination for exercising your privacy rights

We do not sell or share your personal information as defined under the CCPA/CPRA.

To exercise any of these rights, contact us at privacy@joindeadread.com. We will respond to verified requests within 30 days (or within the timeframe required by applicable law).

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including encrypted connections (TLS/SSL), hashed password storage, and access controls. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

11. Children's Privacy

DEADREAD is intended for individuals aged 18 and older. We do not knowingly collect personal data from anyone under the age of 18. If we become aware that we have collected data from a minor, we will promptly delete it. If you believe a minor has provided us with personal data, please contact us at privacy@joindeadread.com.

12. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33. Where the breach is likely to result in a high risk to you, we will also notify you directly without undue delay.

13. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or a prominent notice on our website at least 14 days before the changes take effect. Your continued use of the platform after the effective date constitutes acceptance of the updated policy. The “Last updated” date at the top of this page indicates when the policy was last revised.

14. Contact

For any privacy-related questions, data subject requests, or complaints, contact us at privacy@joindeadread.com.