Back to Home

Privacy Policy

1. Introduction

Welcome to Points for Pints. We respect your privacy and are committed to protecting your personal data.

This Privacy Policy explains how Points for Pints (acting as the "Data Controller") collects, uses, and shares your personal data when you use the Points for Pints website and mobile application (the "Service").

2. The Data We Collect About You

We collect different types of personal data to provide our Service. Under the UK GDPR, some of this is classified as "Special Category Data."

A. Identity & Authentication Data

  • Identity Data: Date of Birth (strictly for age verification compliance).
  • Social Login Data: If you choose to sign in with Apple or Google, we collect your Name and Email Address provided by them to verify your identity and create your account.
  • Contact Data: Email address (if you sign up via waitlist or direct email).

B. Health & Fitness Data (Special Category Data)

Because we function as a fitness-tracking app, we process data regarding your physical physiology and activity. We process this data only with your Explicit Consent.

  • Activity Data: Running distances, duration, and completion times.
  • Integration Data: Data synced from third-party apps you authorise (e.g., Strava, Apple Health, Google Fit).

C. Technical & Usage Data

  • Technical Data: IP address, browser type, device identifiers, and operating system logs collected by our servers for security and maintenance.
  • Usage Data: Information about how you use our app, including which rewards you unlock and your interactions with the "Leaderboard."

3. How We Use Your Data

We will only use your personal data when the law allows us to. We rely on the following legal bases:

  1. Consent (Article 9 UK GDPR): For processing your Health & Fitness data. You give this consent when you actively connect your fitness tracker (e.g., Strava) to our Service. You may withdraw this consent at any time.
  2. Contract (Account Creation): To create your account and authenticate you via Apple/Google so you can access the Service.
  3. Legal Obligation: For processing your Date of Birth to ensure we comply with UK alcohol marketing laws (preventing access to under-18s).
  4. Legitimate Interest: To monitor server performance, detect security breaches, and fix technical errors found in server logs.

4. Third-Party Integrations

Our Service relies on third-party providers for Authentication and Health Data.

Authentication Providers (Google & Apple)

We use these services to verify your identity. We receive basic profile information (Name, Email, internal User ID) to manage your account. We do not see your password.

Health Providers (Strava, Apple Health, Google Fit)

We only read the activity data necessary to verify your run (Distance and Time). We do not write data back to these platforms without permission.

We are not responsible for how these third parties handle your data outside of our specific integration. We encourage you to read their privacy policies.

5. Your Legal Rights

Under the UK GDPR, you have specific rights regarding your personal data:

Right to AccessYou can ask for a copy of the data we hold about you.
Right to ErasureYou can ask us to delete your data (e.g., wipe your run history).
Right to Withdraw ConsentYou can disconnect your fitness tracker at any time.
Right to RectificationYou can ask us to fix wrong data.

To exercise any of these rights, email us at hello@pointsforpints.com.

6. Age Restrictions

This Service is strictly for users aged 18 and over. We do not knowingly collect data from children. If we discover that a user is under 18, we will immediately delete their account and all associated data. We employ an Age Gate to prevent access by minors.

7. Contact Us

If you have any questions about this privacy policy or our privacy practices, please contact the Data Controller at:
hello@pointsforpints.com

Last Updated: 15 December 2025