Privacy Policy
Last Updated: April 03, 2026
Welcome to Pigskin Classic. We respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.
By using Pigskin Classic, you agree to the collection and use of information in accordance with this Privacy Policy.
Important Information for Parents and Guardians
Pigskin Classic is designed to comply with the Children's Online Privacy Protection Act (COPPA). We require parental consent for users between 13 and 17 years old. If you believe your child has provided us with personal information without consent, please contact us immediately at legal@pigskin-classic.com.
1. Information We Collect
1.1 Information You Provide Directly
When you create an account or use Pigskin Classic, we collect the following information:
| Data Type | Purpose | Required/Optional |
|---|---|---|
| Email Address | Account creation, authentication, communication | Required |
| Username | Account identification, login | Required |
| Display Name | How you appear to other users, leaderboards | Required |
| Password | Account security (stored as encrypted hash) | Required |
1.2 Information Collected Automatically
When you use Pigskin Classic, we automatically collect certain information:
- IP Address: Your device's internet protocol address for security, fraud prevention, and analytics
- Device Information: Browser type, operating system, device type
- Usage Data: Pages visited, time spent, features used, picks made
- Log Data: Access times, error logs, referring URLs
- Cookie Data: Information stored in cookies (see Cookie section below)
1.3 Information We Do NOT Collect
We do not collect:
- Social Security numbers or government-issued ID numbers
- Financial information (credit card numbers, bank accounts)
- Precise geolocation data
- Biometric data
- Health or medical information
- Religious or political beliefs
2. How We Use Your Information
2.1 Primary Uses
We use your information to:
- Provide the Service: Enable you to create an account, make picks, view leaderboards, and participate in the pick'em game
- Authentication: Verify your identity and manage your login sessions
- Communication: Send you service-related emails including:
- Welcome emails when you join
- Weekly pick reminders
- Leaderboard updates and standings
- Transactional emails (password resets, account changes)
- Improve the Service: Analyze usage patterns to enhance features and user experience
- Security: Detect, prevent, and respond to fraud, abuse, and security issues
- Compliance: Comply with legal obligations and enforce our Terms of Service
2.2 Analytics and Performance
We use Google Analytics to understand how users interact with Pigskin Classic. This helps us:
- Identify popular features and areas for improvement
- Monitor site performance and uptime
- Understand user demographics and behavior patterns
- Optimize the user experience
3. How We Share Your Information
3.1 Information We DO Share
Public Information: The following information is visible to other Pigskin Classic users:
- Your display name
- Your picks and predictions (after games start)
- Your leaderboard standings and performance
- Comments and messages you post
Service Providers: We share information with trusted third-party service providers:
- Google Analytics: Website analytics and usage tracking (see Google's Privacy Policy)
- Cloud Hosting: AWS or similar providers that host our servers and databases
- Email Service: To deliver transactional and notification emails (if applicable)
3.2 Information We DO NOT Share
We do not:
- Sell Your Data: We never sell, rent, or trade your personal information to third parties
- Share Email Addresses: Your email is never shared with other users or third parties for marketing
- Share for Advertising: We do not share your data with advertisers or data brokers
3.3 Legal Requirements
We may disclose your information if required to:
- Comply with legal obligations, court orders, or government requests
- Enforce our Terms of Service or investigate violations
- Protect the rights, property, or safety of Pigskin Classic, our users, or the public
- Detect, prevent, or address fraud, security, or technical issues
4. Cookies and Tracking Technologies
4.1 What Are Cookies?
Cookies are small text files stored on your device that help websites remember information about your visit. We use cookies to improve your experience on Pigskin Classic.
4.2 Types of Cookies We Use
| Cookie Type | Purpose | Duration |
|---|---|---|
| Session Cookies | Keep you logged in and maintain your session. Essential for the Service to function. | Until you log out or close browser |
| Analytics Cookies | Google Analytics tracks how you use the site to help us improve it. | Up to 2 years |
| Preference Cookies | Remember your preferences like theme, display settings, etc. | Up to 1 year |
4.3 Cookie Security
Our session cookies are configured with the following security measures:
- HttpOnly Flag: Prevents JavaScript access to protect against XSS attacks
- SameSite=Strict: Prevents CSRF (Cross-Site Request Forgery) attacks
- Secure Flag: Will be enabled when HTTPS is implemented (cookies only sent over secure connections)
4.4 Managing Cookies
You can control cookies through your browser settings:
- Block all cookies (note: this may prevent you from using Pigskin Classic)
- Delete existing cookies
- Set preferences for specific websites
Learn more about managing cookies:
4.5 Google Analytics
We use Google Analytics to analyze website traffic and usage. Google Analytics uses cookies to collect information such as:
- How you found our website
- Which pages you visit
- How long you stay on each page
- Your general geographic location (city/country level)
Google Analytics data is anonymized and aggregated. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.
5. Data Security
5.1 Security Measures
We implement industry-standard security measures to protect your information:
- Password Protection: All passwords are hashed using bcrypt with a cost factor of 12
- Encrypted Connections: SSL/HTTPS will be implemented to encrypt data in transit
- Secure Sessions: Session cookies with httpOnly, SameSite=Strict, and secure flags
- Access Controls: Restricted access to personal data within our systems
- Security Monitoring: Regular monitoring for suspicious activity and vulnerabilities
- CSRF Protection: Cross-Site Request Forgery tokens on all forms
- XSS Prevention: Input sanitization and output escaping
5.2 Data Breach Notification
In the event of a data breach that affects your personal information, we will:
- Notify you via email within 72 hours of discovery
- Describe the nature of the breach and data affected
- Explain steps we're taking to address the breach
- Provide guidance on protecting yourself
- Notify relevant authorities if legally required
5.3 Limitations
While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security, and you use the Service at your own risk.
6. Your Privacy Rights
6.1 Rights for All Users
You have the following rights regarding your personal information:
- Access: Request a copy of the personal information we hold about you
- Correction: Request correction of inaccurate or incomplete information
- Deletion: Request deletion of your account and personal data (see section 6.4)
- Opt-Out: Unsubscribe from non-essential emails (welcome, reminders, leaderboard updates)
- Data Portability: Request a machine-readable copy of your data
6.2 California Residents (CCPA Rights)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
Your CCPA Rights
Right to Know: You can request:
- What personal information we collect about you
- The categories of sources from which we collect it
- Our business purposes for collecting it
- The categories of third parties with whom we share it
Right to Delete: You can request deletion of your personal information, subject to certain exceptions.
Right to Opt-Out of Sale: We do not sell personal information, so there is nothing to opt out of.
Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
How to Exercise CCPA Rights: Email us at legal@pigskin-classic.com with your request. We will verify your identity and respond within 45 days.
6.3 Parental Rights (COPPA Compliance)
Parents and legal guardians of users under 18 have the right to:
- Review: Review what information we have collected from your child
- Delete: Request deletion of your child's information
- Refuse Collection: Refuse to allow further collection of your child's information
- Consent Withdrawal: Withdraw consent at any time
To exercise these rights, contact us at legal@pigskin-classic.com with proof of parental/guardian relationship.
6.4 Account Deletion
To delete your account and personal information:
- Send an email to legal@pigskin-classic.com
- Include "Account Deletion Request" in the subject line
- Provide your username and email address for verification
- We will confirm your identity and process the deletion within 30 days
What Gets Deleted:
- Your email address, username, and display name
- Your password and authentication data
- Your IP address history
- Your personal preferences
What May Be Retained:
- Anonymized pick data for historical leaderboard integrity
- Aggregated analytics data (no personal identifiers)
- Data required for legal compliance or dispute resolution
- Public comments (with your name removed/anonymized)
7. Data Retention
7.1 How Long We Keep Your Data
We retain your personal information as follows:
- Active Accounts: Indefinitely while your account remains active
- Deleted Accounts: Personal data deleted within 30 days of account deletion request
- Backup Data: May remain in backups for up to 90 days after deletion
- Legal Requirements: Data may be retained longer if required by law
7.2 Inactive Accounts
If you don't log in for an extended period, we may:
- Send you a reminder email about your account
- Archive your account after 2 years of inactivity
- Delete inactive accounts after 3 years (with prior notice)
8. Children's Privacy (COPPA Compliance)
8.1 Age Requirements
Pigskin Classic complies with the Children's Online Privacy Protection Act (COPPA):
- Under 13: Cannot use the Service under any circumstances
- Ages 13-17: May use the Service with verifiable parental consent
- 18 and Over: May use the Service without parental consent
8.2 Parental Consent
For users aged 13-17, we require:
- Parent/guardian review and acceptance of these policies
- Verification of parental consent before collecting personal information
- Parents have the right to review and delete their child's information at any time
8.3 Information We Collect from Minors
We collect the same limited information from users aged 13-17 as from adult users:
- Email address (with parental consent)
- Username and display name
- Password (hashed)
- IP address
- Pick and game data
8.4 What We Do NOT Collect from Minors
We never collect from users under 18:
- Financial information
- Social Security numbers
- Precise geolocation
- Photos or videos (beyond optional avatar)
- More information than reasonably necessary to participate
8.5 If We Learn a Child Under 13 Has Registered
If we discover that a child under 13 has created an account without parental consent, we will:
- Immediately delete the account
- Delete all associated personal information
- Not use or disclose any information collected from that account
9. Third-Party Services and Links
9.1 Third-Party Services We Use
Pigskin Classic uses the following third-party services:
| Service | Purpose | Privacy Policy |
|---|---|---|
| Google Analytics | Website analytics and usage tracking | Google Privacy Policy |
| AWS / Cloud Hosting | Web hosting and data storage | AWS Privacy Policy |
9.2 Third-Party Links
Pigskin Classic may contain links to external websites (e.g., NFL.com, ESPN.com for game information). We are not responsible for the privacy practices of these third-party sites. We encourage you to review their privacy policies.
9.3 Social Media
If we add social media sharing features in the future, any information you share publicly on social media platforms will be governed by those platforms' privacy policies, not ours.
10. International Users
10.1 U.S.-Based Service
Pigskin Classic is operated from the United States and is intended primarily for users in the United States. Your information will be stored and processed in the United States, which may have different data protection laws than your country of residence.
10.2 European Union Users
We are a small hobby project and may not be able to fully comply with GDPR requirements for European Union users. If you are located in the EU, we recommend not using this service, or using it with the understanding that:
- Your data will be transferred to and stored in the United States
- U.S. privacy laws may differ from EU regulations
- We cannot guarantee GDPR compliance
If you choose to use Pigskin Classic from the EU, you consent to the transfer of your data to the United States.
11. Email Communications
11.1 Types of Emails We Send
We send the following types of emails:
| Email Type | Purpose | Can You Opt-Out? |
|---|---|---|
| Welcome Email | Sent when you create an account | Yes (optional) |
| Weekly Reminders | Remind you to make your picks before deadline | Yes (optional) |
| Leaderboard Updates | Your standings and performance updates | Yes (optional) |
| Transactional | Password resets, account changes, security alerts | No (required) |
11.2 Opting Out of Emails
To unsubscribe from optional emails:
- Click the "Unsubscribe" link at the bottom of any email
- Update your email preferences in your account settings
- Contact us at legal@pigskin-classic.com
Note: You cannot opt out of transactional emails (password resets, security alerts) as these are necessary for account security.
12. Changes to This Privacy Policy
12.1 Updates
We may update this Privacy Policy from time to time to reflect changes in:
- Our information practices
- Features and functionality
- Legal requirements
- Industry best practices
12.2 Notification of Changes
When we make material changes to this Privacy Policy, we will:
- Update the "Last Updated" date at the top of this page
- Send you an email notification (if we have your email)
- Display a prominent notice on the website
- Require re-acceptance for significant changes
12.3 Your Acceptance
Your continued use of Pigskin Classic after changes to this Privacy Policy constitutes your acceptance of those changes. If you do not agree with the updated Privacy Policy, you should stop using the Service and delete your account.
13. Do Not Track Signals
Some browsers have a "Do Not Track" (DNT) feature that lets you tell websites you don't want your online activities tracked. Currently, there is no industry standard for how to respond to DNT signals, and Pigskin Classic does not currently respond to DNT signals.
Privacy Questions or Concerns?
If you have questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about how we handle your information, please contact us:
Email: legal@pigskin-classic.com
Subject Line: "Privacy Policy Question" or "Privacy Rights Request"
Response Time: We aim to respond within 7 business days for general inquiries and within 45 days for formal rights requests (CCPA, parental rights, etc.)
Acknowledgment: By using Pigskin Classic, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.
← Back to Home