Security & Privacy
Your mental performance data is personal. We take its protection seriously.
Data Encryption
All data is encrypted in transit using TLS 1.3 and at rest using AES-256. Your match reflections, mental notes, AI conversations, and training progress are protected at every layer.
Row-Level Security
Every database query is enforced with row-level security policies. Users can only access their own data — this is enforced at the database level, not just the application layer.
Authentication
CalmCourt uses Supabase Auth with email verification. Sessions are securely managed with refresh tokens. No passwords are stored in plaintext.
AI Data Handling
AI coaching requests are limited to necessary context only. We do not sell your data, and your personal information is never used to train external AI models. Only the minimum prompt context needed for a quality coaching response is sent to our AI provider.
Your Data Rights
You have full control over your data. From your account settings, you can view all stored data, download a complete export of your personal data, and permanently delete your account and all associated data.
Data Minimization
We only collect information necessary for the platform to function: your email, display name, tennis profile, match reflections, and training data. We do not collect health data, location data, or any unnecessary personal information.
Contact Us
If you have questions about our security practices or want to exercise your data rights, contact us at privacy@calmcourt.com.