HOOPERLAB

LEGAL

PRIVACY NOTICE

Last updated: June 2026

1. Who we are

This site is operated by Hooper Lab ("Hooper Lab", "we", "us", "our"). Hooper Lab is the data controller for the personal data described in this notice and is responsible for deciding how and why your data is processed. You can reach us at hooperlabbusinessenquiries@gmail.com.

2. Personal data we collect

  • Account data: email address, password (hashed), display name.
  • Profile & performance data: position, height, scores, vertical jump results and notes you choose to save.
  • Content uploads: videos submitted to the AI Shot Analyzer (processed transiently, not retained).
  • Marketing data: email addresses submitted to lead-magnet or newsletter forms.
  • Technical data: IP address, device, browser, basic usage telemetry and security logs.
  • Billing data: we do not collect or store card details. Payment details are handled by Paddle (see section 5).

3. Purposes & legal bases

  • Provide the service (account creation, saving results, AI feedback) — performance of a contract.
  • Security & fraud prevention (rate limiting, abuse detection) — legitimate interests.
  • Product improvement (aggregated usage analytics) — legitimate interests.
  • Customer support (responding to emails) — legitimate interests / contract.
  • Marketing emails (newsletters, product updates) — consent (you can unsubscribe at any time).
  • Legal compliance (tax, accounting, responding to lawful requests) — legal obligation.

4. AI Shot Analyzer uploads

Videos uploaded to the AI Shot Analyzer are sent to our AI provider solely to generate written feedback and are discarded after analysis completes. We do not retain the source video or use it to train models.

5. Who we share data with

We share personal data only with the following categories of recipients:

  • Paddle.com Market Limited ("Paddle") — our Merchant of Record. When you purchase a subscription, Paddle acts as the seller and processes your payment, billing, tax compliance, invoicing, refunds and chargebacks. Paddle receives the personal data needed for those purposes (name, email, billing address, payment method, transaction history). See Paddle's Privacy Policy.
  • Hosting & infrastructure subprocessors (cloud hosting, database, file storage) — to operate the service.
  • AI providers — to process shot-analysis uploads on a transient basis.
  • Email delivery providers — to send transactional and (where you've opted in) marketing emails.
  • Professional advisers — accountants and lawyers, where strictly necessary.
  • Authorities — where required by law or to protect our rights.

We do not sell your personal data and we do not share it for third-party advertising.

6. International transfers

Some of our subprocessors are located outside your country. Where data is transferred internationally we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

7. Retention

  • Account & profile data: until you delete your account, plus up to 30 days for backups.
  • Saved performance results: until you delete them or your account.
  • AI Shot Analyzer uploads: not retained after analysis completes.
  • Marketing email subscriptions: until you unsubscribe.
  • Billing records held by Paddle as MoR: typically 7 years for tax and accounting compliance.
  • Security and access logs: up to 12 months.

8. Your rights

Depending on where you live, you may have the right to access, correct, delete, restrict or object to processing of your personal data, to data portability, to withdraw consent, and to lodge a complaint with your local supervisory authority. To exercise any of these rights, email hooperlabbusinessenquiries@gmail.com. For billing-related requests (refunds, invoices, payment data) you can also contact Paddle via paddle.net.

9. Security

We use appropriate technical and organisational measures to protect your data, including TLS encryption in transit, encryption of credentials at rest, access controls, least-privilege service roles, row-level security on our database, and monitoring of administrative access. No system is perfectly secure, but we work to reduce risk and notify users of material incidents as required by law.

10. Cookies

We use a small number of strictly necessary cookies and similar storage to keep you signed in and to remember basic preferences. We do not use third-party advertising cookies.

11. Changes

We may update this notice from time to time. Material changes will be reflected by updating the "Last updated" date above and, where appropriate, by notice in the app or by email.