Tnsly
Log in

Privacy Policy

Effective date: February 9, 2026

This Privacy Policy describes how FOP Holovchenko Kyrylo Vadymovych (Ukrainian sole proprietor, hereinafter — "we", "us", "our"), operator of the Tnsly platform (hereinafter — "Platform"), collects, uses, stores, and protects users' personal data in accordance with the Law of Ukraine "On Personal Data Protection" (Zakon Ukrayiny «Pro zakhyst personal'nykh danykh») and Regulation (EU) 2016/679 (GDPR).

1. What data we collect

  • Account: email address, first name, last name, nickname, avatar, date of birth, gender, skill level.
  • Player profile: city, geolocation (coordinates), ELO rating, match statistics, interests.
  • Telegram: Telegram ID, username, photo (when logging in via the Telegram Login Widget).
  • Bookings: time, date, selected tables, payment status.
  • Communication: reviews, messages, push notification subscriptions (endpoint, encryption keys).
  • Technical data: IP address, browser type, cookie data, action audit logs.

2. Purpose of data processing

  • Registration and authentication on the Platform.
  • Provision of services: partner search, table booking, ratings.
  • Personalization: recommendations for players and clubs based on geolocation and skill level.
  • Communication: push notifications about available slots, match confirmations.
  • Security: fraud prevention, content moderation.
  • Analytics: aggregated statistical data to improve the Platform.

3. Legal basis for processing

  • Consent — upon registration you provide consent to the processing of personal data (Art. 6(1)(a) GDPR, Art. 11 of the Law of Ukraine "On Personal Data Protection").
  • Performance of a contract — processing necessary to provide the Platform's services (Art. 6(1)(b) GDPR).
  • Legitimate interest — ensuring security and preventing abuse (Art. 6(1)(f) GDPR).

4. Data storage and protection

Personal data is stored on servers of our providers:

  • Supabase (database, authentication) — AWS, region eu-west-1 (Ireland, EU).
  • Vercel (web application hosting) — global CDN with processing in the EU.
  • Upstash (rate-limiting) — serverless Redis, EU region.
  • Resend (transactional emails: booking confirmations, notifications) — USA, in compliance with the EU-US Data Privacy Framework. Email address and recipient name are transmitted.
  • Mapbox (mapping service for geolocation selection) — USA, in compliance with the EU-US Data Privacy Framework. Only user-selected coordinates are transmitted.
  • Telegram (authentication via Telegram Login Widget) — UAE/United Kingdom. Telegram ID and username are transmitted solely for authentication purposes.

Transfers of data to the listed providers are carried out on the basis of contractual guarantees (Standard Contractual Clauses) or adequacy decisions. A full list of sub-processors is available upon request at support@tnsly.com.

We apply technical and organizational measures to protect data: connection encryption (TLS), Row Level Security (RLS) at the database level, token hashing, and rate limiting.

5. Retention period

Personal data is retained for the lifetime of the account. Upon account deletion, data is deleted cascadingly and immediately. Anonymized audit logs are retained for up to 12 months for security purposes.

Account deletion is not available for club owners (ownership must first be transferred) and platform administrators (the admin role must first be removed). In such cases, please contact us at support@tnsly.com.

6. Your rights

Under applicable law you have the right to:

  • Access your personal data.
  • Correct inaccurate or incomplete data.
  • Delete your account and all associated data (right to be forgotten).
  • Restrict or object to the processing of your data.
  • Receive a copy of your data in a structured format (portability).
  • Withdraw consent to processing at any time.
  • Lodge a complaint with the Ukrainian Parliament Commissioner for Human Rights (as the supervisory authority for personal data protection) — ombudsman.gov.ua.
  • Apply to court for the protection of your rights in accordance with Ukrainian law.

To exercise these rights, please contact us at support@tnsly.com. We undertake to respond to your request within 30 calendar days.

7. Cookies and similar technologies

The Platform uses technically necessary cookies for authentication (Supabase session tokens). We do not use third-party advertising or analytical cookies.

8. Transfer of data to third parties

We do not sell or transfer personal data to third parties for marketing purposes. Data may be disclosed:

  • To infrastructure providers (Supabase, Vercel, Upstash) — for provision of the Platform's core services.
  • To the email provider (Resend) — for sending transactional emails (booking confirmations, notifications).
  • To the mapping provider (Mapbox) — for displaying maps and determining geolocation. Only coordinates are transmitted.
  • Telegram — for authentication via Telegram Login Widget. Only the Telegram user ID and username are transmitted.
  • To law enforcement authorities — on the basis of a lawful request.

9. Minimum age

The Platform is intended for persons aged 14 and over. If you become aware that a child under 14 has provided us with personal data without parental consent, please contact us at support@tnsly.com, and we will delete that data.

10. Changes to the policy

We reserve the right to update this Policy. We will notify users of significant changes via a notification on the Platform. By continuing to use the Platform after changes take effect, you agree to the updated version.

11. Contact

For questions regarding personal data protection, please contact us:
Email: support@tnsly.com