Privacy Policy

Last updated: April 2026

1. Who we are

funfriday.games is operated by Fun Friday Games Ltd, a company registered in England and Wales. When this policy says "we", "us" or "our", it means Fun Friday Games Ltd.

Contact: [email protected]

2. What data we collect

  • Account data — email address, display name, and avatar when you create an account.
  • Game data — your answers, scores, and session participation.
  • Workspace data — workspace name, slug, member list, and invite activity.
  • Billing data — handled entirely by Stripe. We never store card numbers.
  • Usage data — pages visited, features used, error logs (to improve the product).
  • Guest data — display names entered to join a game session. Not linked to any account.

3. How we use your data

  • To provide the service — running game sessions, tracking scores, managing workspaces.
  • To process payments via Stripe.
  • To send transactional emails (sign-up confirmation, password reset) via Resend.
  • To diagnose errors and improve reliability.
  • To send product updates if you opt in (you can unsubscribe at any time).

We do not sell your data. We do not use your data for advertising.

4. Legal basis (UK GDPR)

  • Contract — processing needed to deliver the service you signed up for.
  • Legitimate interests — error monitoring, fraud prevention, service improvement.
  • Consent — marketing emails (you can withdraw consent at any time).

5. Data retention

  • Account data is retained while your account is active and for 30 days after deletion.
  • Game history is retained per your workspace plan (7 days / 90 days / unlimited).
  • Guest session data (display name + scores) is deleted when the session expires (2 hours).
  • Billing records are retained for 7 years as required by UK law.

6. Your rights

Under UK GDPR you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Delete your account and associated data.
  • Object to or restrict processing.
  • Data portability (export your data).

To exercise any right, email [email protected]. We will respond within 30 days.

You may also lodge a complaint with the Information Commissioner's Office (ICO).

7. Cookies

We use cookies for:

  • Essential — authentication session tokens (Supabase). Cannot be disabled.
  • Analytics — anonymous usage analytics to improve the product. You can opt out.

We do not use advertising or tracking cookies.

8. Third-party services

  • Supabase (EU) — database and authentication.
  • Stripe — payment processing. Stripe's privacy policy applies to card data.
  • Resend — transactional email delivery.
  • Microsoft Azure (France Central) — application hosting.
  • Cloudflare — DNS and DDoS protection.

9. Changes to this policy

We may update this policy. Material changes will be communicated by email or by a notice on the platform. Continued use after notification constitutes acceptance.

View Terms of Service →