Football Pontoon

Reference

Privacy & Cookies

What the game does with your data, what it keeps on your device, and why there's no cookie pop-up.

This explains what Football Pontoon collects, what it stores on your device, who else touches it, and what you can do about it. It is written to be read, not to be survived. Last reviewed 31 May 2026.

Who we are

Football Pontoon is operated by Get Consulting Ltd, which is the data controller — the people who decide what happens to your data. For anything in this notice, write to hello@footballpontoon.co.uk.

What we collect

Admins: an email and password — or a Google identifier — to sign in. Held by Supabase Auth.
Players: a display name and a player row tied to one game. No email, no phone, no account. Your identity lives on your own device — see below.
Picks, and the tournament data behind them — the numbers that move the leaderboard.

Cookies, and what sits on your device

We use a handful of cookies and one slice of browser storage. Every one of them is doing a job the game can’t run without — keeping you signed in, proving a pick is really yours, or keeping the bots out. None of them watches you.

Your identity store. A key called pontoonin your browser’s localStorage. It holds your player ID and chosen name for each game you’ve joined, so a phone with no account can still recognise you next time. Gone the moment you clear your browser data.
Your pick credential. A cookie called pp_player_tokens. A signed token that proves to our server a pick belongs to you, and not to someone who guessed your player ID. It lasts up to a year and can’t be read by JavaScript.
Admin sign-in.Cookies set by Supabase, and only if you’re an admin who logs in, to keep you logged in. Players never get these.
The bouncer.On the sign-in screen only, a Cloudflare Turnstile check that tells humans from bots. Cloudflare may set its own cookie to do it. It’s there for security, not advertising.

Because every one of these is strictly necessary — to run the game you asked to play, or to keep it secure — there is no cookie banner to click through. There’s nothing optional here to consent to. The day we add anything that isn’t essential, that changes, and we’ll ask first.

What we don’t do

No analytics. No tracking pixels. No advertising SDKs. None of the third-party “people who picked Brazil also picked…” machinery.
No player email, phone number, or any identifier beyond the name you choose.
No marketing. The only emails we send go to an admin — the game-created confirmation, the pick-deadline reminder, and the final-whistle summary — and they all go through Resend.

This is also why the site doesn’t greet you with a consent pop-up: we’ve nothing to track you with.

Why we’re allowed to hold it

The law wants a reason for each thing we process. Ours, in plain terms:

Running the game— your name, picks and on-device identity exist because you chose to join a game and they’re what make it work. Our basis is our legitimate interest in providing the game you asked for.
Admin accounts — held to provide the service an admin signed up for.
Security — the identity cookie and the Turnstile bot-check exist for our legitimate interest in keeping games fair and the site standing.
The admin emails— the game-created confirmation, the pick-deadline reminder and the final-whistle summary, sent because they’re part of running the game an admin set up.

Who else touches your data

A short list of suppliers does specific jobs on our instructions. None of them is handed your data to use for their own ends.

Supabase — the game database and admin sign-in.
Vercel — hosts and serves the site.
Cloudflare — the Turnstile bot-check on the sign-in screen.
Resend — sends the single game-created email.
Google— only if an admin chooses “sign in with Google,” and only to confirm who they are.

Where it lives, and where it travels

The game database sits in Supabase’s EU region. Some of the suppliers above are global and may process data outside the UK and EU; where they do, it’s under the safeguards the law requires for those transfers.

How long we keep it

Finished games — kept for the duration of the tournament and a few months after, then deleted or anonymised.
Admin accounts — until you ask us to close them.
On-device identity — stays until you clear your browser data; the pick cookie expires after a year.

Your rights

Over the data we hold about you, you can ask to: see it, correct it, delete it, restrict or object to how we use it, or receive a copy to take elsewhere. Because a player’s identity lives on the device, clearing your browser data often does the job yourself — but you can always ask us instead, at the address above, and we’ll answer within a month.

If you think we’ve mishandled your data, you can complain to the Information Commissioner’s Office at ico.org.uk — though we’d rather you gave us the chance to put it right first.

Changes to this notice

If this changes, we’ll update the page and move the date at the top. Anything that affects you materially — above all, ever introducing a non-essential cookie — comes with a clear heads-up and, where the law requires it, a proper opt-in.