Cookies & Data

Last Updated: May 26, 2026 Effective Date: May 26, 2026

PokerPath is operated by PokerPath LLC, owned by James Shouey.

For the full detail on what we collect and your rights, see our Privacy Policy at https://pokerpath.app/privacy.

Plain English Summary

PokerPath is built to be honest about what we do. This page tells you exactly what cookies we use, what analytics we operate, and what data we collect — in language you can read in two minutes.

Key facts:

  • Plausible is cookie-free. Our website analytics tool sets no cookies in your browser.
  • No advertising trackers. PokerPath does not run advertising and does not allow third-party ad networks to embed trackers on our site.
  • No cross-site behavioral advertising. Nothing on PokerPath is designed to identify you across other websites.
  • Only essential cookies are used. These are the WordPress sign-in and session cookies described below, plus a cookie that remembers your cookie-consent choice.

What We Use

PokerPath uses a deliberately small set of tools. Each one is here because it is necessary to operate the service.

1. Plausible Analytics (Cookie-Free Website Analytics)

We use Plausible to understand high-level traffic to the site — how many people visit, which pages are popular, where traffic comes from. Plausible is different from typical analytics tools:

  • Zero cookies set. Plausible does not put any cookies in your browser.
  • No personal information collected. Plausible does not know your name, email, or account.
  • No fingerprinting. Plausible does not derive a unique device fingerprint from your browser.
  • No cross-site tracking. Plausible cannot link your activity here to your activity on any other website.
  • EU-hosted. Plausible runs on servers in Germany. Pageview data stays in the EU.
  • Aggregate-only. What Plausible records is daily total visits, popular pages, and roughly where visitors come from — never individual user activity.

If you have “Do Not Track” enabled in your browser, Plausible honors it. If you use a privacy blocker (uBlock Origin, Privacy Badger, Brave Shields), it will block Plausible’s domain and we respect that — we don’t try to bypass blockers.

2. Google Sign-In (Only If You Choose It)

If you sign in to PokerPath using your Google account, Google handles the authentication flow. Google’s own cookies and policies apply to that flow — see Google’s Privacy Policy at https://policies.google.com/privacy.

PokerPath receives from Google: your Google account email address, your name, and your avatar (so we can display them in your PokerPath profile), and an identifier that lets us recognize you on future sign-ins.

PokerPath does not access your Gmail, contacts, Google Drive, calendar, or any other Google account content.

If you don’t want to use Google Sign-In, you can create a PokerPath account with a regular email + password instead.

3. WordPress Session Cookies (Essential — Used After Sign-In)

When you sign in to PokerPath, a small number of cookies (provided by the WordPress platform that underlies PokerPath) are set so the site can remember you’re signed in:

  • WordPress authentication cookie — keeps you signed in. Expires in 48 hours, or 14 days if you check “Remember me.” Required for signed-in features.
  • WordPress test cookie — used by WordPress to verify your browser accepts cookies. Required for the sign-in flow itself to work.
  • PokerPath guest session cookie (before you sign in) — if you tap “save” on a tournament before creating an account, we set a short-lived cookie so we can remember the action and apply it to your new account when you sign up. Expires after 24 hours. The site works without it — you’d just need to repeat the action after sign-in.
  • Cookie-consent cookie — set by our cookie banner when you choose Accept, Reject, or set preferences, so we can remember your choice and not ask again on every visit. Expires after 30 days.

If you disable cookies in your browser entirely, you won’t be able to sign in. That’s a browser-side restriction.

4. Resend (Transactional Email Delivery)

When PokerPath sends you an email — a welcome message, a password reset, a partner application acknowledgment, or a tournament-interest notification you opted into — we use Resend to deliver it.

  • No tracking pixels. Our emails don’t contain tracking pixels (the invisible images some senders use to see if you opened a message). We don’t track open rates.
  • No link redirectors. Links in our emails go directly to the destination, not through tracking redirectors.
  • Recipient email address only. Resend processes the email address we send to, plus the content of the message. That’s it.

5. Sentry (Server-Side Error Tracking)

We use Sentry to learn about software errors in PokerPath so we can fix them. Sentry runs server-side only.

  • No client-side cookies set by Sentry. Sentry does not drop cookies in your browser.
  • No personal information sent to Sentry. When an error happens, Sentry receives technical details (which file, which line, a stack trace, and an opaque user identifier). Sentry does NOT receive your email, your real user ID, your IP address, or anything you typed into a form.
  • No reading of your data. Sentry cannot see your saved tournaments, your bankroll data, your travel plans, or anything stored in your PokerPath account.

6. Content Security Policy Reports

PokerPath uses a Content Security Policy that monitors which scripts and resources load on the site. When your browser detects a policy violation, it sends a structured report to PokerPath about which directive was violated. These reports help us tighten security.

  • No personal information in CSP reports. Reports describe the policy violation only — no account identifier, no email, no personal data.
  • Processed by Sentry. CSP reports flow into the same Sentry pipeline as software errors, with the same protections.

What We Do NOT Do

PokerPath deliberately does NOT operate any of the following:

  • No advertising trackers. We don’t run our own ads, and we don’t permit third-party ad networks to embed trackers on our site.
  • No data sales. We do not sell your personal information to anyone. Ever.
  • No cross-site tracking. Nothing on PokerPath is designed to identify you across other websites you visit.
  • No cross-site behavioral advertising. PokerPath does not share your personal information for behavioral advertising purposes.
  • No browser fingerprinting. We don’t derive a unique fingerprint from your browser characteristics.
  • No precise geolocation. We don’t collect your GPS location or any IP-derived precise position.
  • No biometric, health, or government-ID data.
  • No payment card data — yet. We don’t currently process payments. When paid subscriptions launch, Stripe will handle all payment processing — PokerPath will never see or store your card number.

What You Can Control

  • Cookies. You can disable cookies in your browser. PokerPath sign-in won’t work without cookies (that’s how WordPress authentication works), but if you only want to browse without signing in, you can.
  • Plausible Analytics. Enable “Do Not Track” in your browser (Plausible honors it), or use any privacy-blocker extension that blocks Plausible’s domain. We don’t bypass blockers.
  • Notifications. If you’ve opted into email notifications, the unsubscribe link in any notification email turns them off. Your account-settings page also lets you adjust notification preferences.
  • Google Sign-In. If you signed in with Google, you can revoke PokerPath’s access at https://myaccount.google.com/permissions at any time.
  • Account deletion. You can delete your PokerPath account from your account settings (or by emailing privacy@pokerpath.app). When you delete your account, we delete the data we hold about you per our Privacy Policy. Backup copies roll off within 30 days.

What About the Future?

Some features we’ve talked about but haven’t launched yet:

  • Player Plus paid subscription (future). Will use Stripe for payment processing. Stripe will handle all card data — we won’t see or store it. When this launches, our Privacy Policy and this page will update to describe Stripe’s role.
  • Partner dashboard (future). Verified casinos and tournament operators will be able to subscribe to access aggregate reporting on user interest in their tournaments. Partners will never see individual user identities — the data is aggregate-only by design. When this launches, our Privacy Policy and this page will update.
  • Native iOS or Android app (no commitment yet). PokerPath is currently a website. If we ever publish a native app, this page and our Privacy Policy will update.

We will update this page and our Privacy Policy BEFORE any of these changes go live. You’ll be notified of material changes.

Where This Data Lives (Jurisdictions)

Tool / Data Located In Why
PokerPath website + database United States (WP Engine hosting) Operator’s primary infrastructure
Plausible Analytics European Union (Germany) Plausible’s published infrastructure
Resend (transactional email) United States Email delivery service
Sentry (error tracking) United States Error monitoring service
Google Sign-In United States Google’s authentication infrastructure

Cross-border data transfers (when they happen) use standard EU-approved transfer mechanisms.

Contact

Privacy questions: privacy@pokerpath.app

General contact: support@pokerpath.app

For full detail on what we collect, why, and your rights, see our Privacy Policy. For PokerPath’s Responsible Gaming statement, see Section 18 of our Terms of Service at https://pokerpath.app/terms.

Effective Date

Effective Date: May 26, 2026 Last Updated: May 26, 2026