Privacy Policy

How My Cue Ltd collects, uses and protects your personal data when you use MyCue.

Last updated 5 May 2026

1. Who is the data controller?

My Cue Ltd (Company No. 15156183), registered in England and Wales, is the data controller for personal data processed through MyCue. You can reach us at [email protected].

2. What we collect

Information you give us

  • Account details — name, username, email address, password (stored hashed), and any optional profile information you choose to add (bio, photo, location, sport preferences, skill level).
  • Display preferences — including how you choose to appear to other members (for example, whether public surfaces show your username only or your full name).
  • Content — community posts, replies, mentions, messages, photos and videos, news articles, tournament and league entries, challenge results, availability posts, venue claims and feedback.
  • Support correspondence — anything you send us through our contact form, by email or via support tickets.
  • Billing information — if you buy a paid feature, payment is handled by a third-party payment processor; we receive transaction metadata but not full card details.

Information collected automatically

  • Technical data — IP address, device and browser type, pages visited, referrer.
  • Activity data — what you click, search, view and post, what features you use, and how often.
  • Cookies and similar technologies — see our Cookie Policy.
  • Diagnostics — when something on MyCue crashes or behaves unexpectedly, we automatically capture limited contextual information (for example the page URL, the action you took, and a small amount of associated data) so we can diagnose and fix it.

3. How we use your data

We use the personal data described above for the purposes set out in this section. The lawful bases we rely on under UK GDPR are noted in italics.

3.1 Operating the Service

We use your data to run your account, show your profile, organise tournaments, leagues, teams, challenges and matches, deliver messages and notifications, surface relevant venues and events, generate calendar feeds, process payments, and provide everything else MyCue does. Lawful basis: performance of a contract with you.

3.2 Internal use, product development and analytics

MyCue is an active, evolving product. To run it well and to keep building it, we use your data internally — including content you create — for the following purposes:

  • Understanding how MyCue is used — analysing usage patterns, page performance, drop-off points and feature adoption to decide what to fix, ship or remove.
  • Product research and development — testing new features, running experiments, and trialling new ways of organising the community.
  • Improving recommendations and matching — making the venues, players, opponents and events we surface to you more relevant.
  • Quality assurance and debugging — investigating errors, reproducing bugs and validating fixes; this can include reviewing specific records (such as a particular match, post or session) where required to resolve a problem.
  • Aggregated and anonymised insights — producing statistics about cue sports activity, growth, demographics or trends. Where data is genuinely aggregated or anonymised so that you can’t reasonably be identified from it, we may use, retain or publish it without further restriction.
  • Editorial use — publishing community highlights, league recaps, results round-ups and similar editorial content drawn from public activity on the Service.
  • Operational reporting — board, investor and internal management reporting, financial and tax records, and similar business-as-usual operations.

Lawful basis: legitimate interests in operating, improving and growing the Service, balanced against your interests and rights.

3.3 Safety, integrity and abuse prevention

We use your data to detect and prevent fraud, cheating, harassment, scraping and other breaches of our Acceptable Use Policy; to investigate reports about content or members; to enforce account suspensions; and to protect the rights, safety and property of MyCue, our members and the public. Lawful basis: legitimate interests; legal obligations.

3.4 Communications

We send you transactional emails (account, security and service-critical messages), notifications you’ve subscribed to, and — where permitted — updates about new features, events and content. You can opt out of non-transactional messages at any time from your settings or via the unsubscribe link in any such email. Lawful basis: performance of a contract; legitimate interests; consent where required.

3.5 Legal and regulatory

We use your data to comply with applicable law and to respond to lawful requests from courts, regulators and law-enforcement bodies. Lawful basis: legal obligation.

4. AI, machine learning and automated systems

We may use automated systems — including machine-learning models — to operate MyCue. Examples include ranking and recommendation systems, search relevance, abuse detection, content moderation, spam filtering and similar features. Where we do so, we may use your data (including content you post on public surfaces) to develop, evaluate and improve those systems internally, and to train models for use within MyCue. We do not currently sell or license your personal data to third parties for the purpose of training their models. If that ever changes, we’ll update this policy and, where required, ask for consent.

5. Who we share it with

We don’t sell your personal data. We share it only with:

  • Other members, where you choose to make information public — your profile, posts, tournament entries, calendar feed (if you share the link), and similar.
  • Service providers acting on our instructions — including hosting and infrastructure providers, cloud object-storage providers, email and notification delivery providers, payment processors, error-monitoring and observability providers, customer-support tooling, and analytics providers. These suppliers process data only as needed to provide the relevant service to us, under written contracts. Some are based outside the UK; where they are, we use the safeguards required by UK law (such as the UK’s International Data Transfer Agreement, the UK Addendum to the EU Standard Contractual Clauses, or an adequacy decision).
  • Professional advisers — auditors, lawyers, accountants and insurers when needed.
  • Authorities or other third parties where we’re required to by law, or where it’s necessary to protect our rights, our members or the public.
  • A successor entity if MyCue is sold or merged; we’d tell members in advance.

6. Public, semi-public and private data

By default your username, profile and public posts are visible to anyone on the internet. You can choose in Settings → Profile whether public surfaces show your username only or your full name; either way, your real name remains on file with us for verification, moderation and legal purposes. Private messages and account settings are not public. Calendar feeds keyed on your account’s UUID are accessible to anyone who has the link — sharing the link gives away your schedule.

7. How long we keep it

We keep your account data while your account is open. If you delete your account, we remove your profile and most associated content within a reasonable period; we may retain a limited amount of information for legal, security, accounting or evidential reasons (for example billing records for tax purposes, moderation logs to prevent banned users from re-registering, or backups that age out on a fixed schedule). Aggregated and anonymised data — which can no longer identify you — may be kept indefinitely.

8. Your rights

Under UK GDPR you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data — most of this you can do yourself in your account settings.
  • Delete your account and associated data, subject to the retention rules above.
  • Restrict or object to certain processing — including objecting to processing we carry out under legitimate interests.
  • Receive a copy of your data in a portable format.
  • Withdraw consent where we’re relying on it.
  • Complain to the Information Commissioner’s Office (ico.org.uk).

To exercise any of these rights, email [email protected].

9. Security

We use industry-standard measures to protect your data — encrypted transport (HTTPS), hashed passwords, access controls and regular updates. No system is perfectly secure; if we ever discover a personal data breach that affects you, we’ll notify you in line with UK GDPR.

10. Children

MyCue is intended for users aged 13 and over. We don’t knowingly collect data from children under 13. If you believe a child under 13 has registered, please contact us so we can investigate.

11. Changes to this policy

We’ll update this policy from time to time. The “Last updated” date at the top tells you when. For material changes we’ll let registered members know by email or a notice in the Service.

12. Contact

Questions or requests about your personal data? Email [email protected].