Privacy Policy

Effective Date: 7/16/2025

Moonlit Metals Private Limited ("Company", "we", "us" or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit www.sportsedges.com (the "Website") or use our AI-powered sports betting assistance services (the "Services").

This Policy complies with the Indian Digital Personal Data Protection Act, 2023 ("DPDP Act"), EU/UK General Data Protection Regulation ("GDPR/UK GDPR"), US California Consumer Privacy Act as amended by CPRA ("CCPA/CPRA"), Canadian Personal Information Protection and Electronic Documents Act ("PIPEDA"), and Australian Privacy Act 1988 (including Australian Privacy Principles or "APPs"). By using the Services, you consent to the practices described herein, or we rely on other lawful bases as applicable.

1. Data We Collect

We collect the following types of data:

  • Personal Data: Name, email address, phone number, payment information, betting preferences, and any other information you provide during registration or use.
  • Non-Personal Data: Device information (e.g., IP address, browser type), usage data (e.g., pages visited, interactions with AI), location data (if enabled), and analytics data.
  • Automatically Collected Data: Through cookies, web beacons, and similar technologies, including session data, referral sources, and preferences inferred from usage.

We do not collect sensitive personal data (e.g., biometric, health, or financial data beyond payments) without your explicit consent, as required under GDPR, DPDP Act, or equivalent laws.

2. How We Collect Data

  • Directly from you: During account creation, subscriptions, chats, or feedback.
  • Automatically: Via cookies, logs, and third-party analytics tools (e.g., Google Analytics).
  • From third parties: Payment processors, social media integrations (e.g., X threads analysis), with your consent.

Collection is limited to what is necessary (data minimization under GDPR/APPs/DPDP).

3. Use of Data

We use your data to:

  • Provide and improve the Services (e.g., personalized betting suggestions).
  • Process payments and manage subscriptions.
  • Communicate with you (e.g., support, updates, marketing with consent).
  • Analyze usage to enhance features and security.
  • Comply with legal obligations and prevent fraud.

Lawful bases include consent, contract performance, legitimate interests, or legal requirements (e.g., under GDPR/PIPEDA/DPDP).

4. Sharing of Data

We may share data with:

  • Service providers (e.g., payment gateways, cloud hosts) bound by confidentiality and data processing agreements (e.g., under GDPR Art. 28).
  • Affiliates or partners for joint services.
  • Authorities if required by law (e.g., under court order or for breach reporting).
  • In case of business transfer (e.g., merger).

We do not sell your personal data (as defined under CCPA). International transfers comply with safeguards like Standard Contractual Clauses (GDPR), adequacy decisions, or equivalent mechanisms under DPDP, PIPEDA, and APPs.

5. Security

We implement reasonable security measures, including encryption, firewalls, access controls, and regular audits, to protect your data in line with ISO standards and legal requirements (e.g., GDPR Art. 32, DPDP security obligations). We notify authorities and affected individuals of breaches within required timelines (e.g., 72 hours under GDPR).

However, no system is completely secure, and we cannot guarantee absolute security.

6. Your Rights

You have rights under applicable laws, including:

  • Access, correct, or erase your personal data.
  • Withdraw consent (where processing is consent-based), object to processing, or request restriction/portability.
  • Not be subject to automated decision-making with legal effects (GDPR).
  • Opt-out of sale/sharing (CCPA), or file complaints with regulators.

Jurisdiction-Specific:

  • EU/UK (GDPR/UK GDPR): Rights to erasure ("right to be forgotten"), data portability; lodge complaints with ICO (UK) or national authorities.
  • California (CCPA/CPRA): Rights to know, delete, opt-out; non-discrimination; contact us to exercise.
  • Canada (PIPEDA): Access/correction; complaints to OPC.
  • Australia (APPs): Access/correction; complaints to OAIC.
  • India (DPDP): Grievance redressal, nomination, erasure.

To exercise rights, contact our Data Protection Officer at help@sportsedges.com. We will respond within statutory timelines (e.g., 30 days under GDPR/CCPA/DPDP).

7. Cookies and Tracking

We use cookies for functionality, analytics, and advertising. You can manage preferences via browser settings or our consent banner (for GDPR compliance). For details, see our Cookie Policy [link if separate]. We honor Do Not Sell/Share signals under CCPA.

8. Retention

We retain data as long as necessary for the purposes outlined, or as required by law (e.g., 6-10 years for financial records under tax laws in India/UK/Australia). Data is securely deleted or anonymized thereafter.

9. Children's Privacy

The Services are not for users under 18 (or age of majority). We do not knowingly collect data from children without parental consent, as required under laws like COPPA (US) or GDPR.

10. Changes to Policy

We may update this Policy. Changes will be posted here with the updated effective date and notified where required (e.g., material changes under CCPA/GDPR). Continued use constitutes acceptance.

11. Contact Us

For privacy questions, contact help@sportsedges.com or our registered office at F9, Orion Towers, GS Road, Guwahati, 781005, Assam, India. For EU/UK, our representative is [if appointed]; for California, use the same email for CCPA requests.