Privacy Policy
Last updated: May 2026
1. Information We Collect
We collect information you provide directly (access credentials) and information collected automatically when you use the Service (usage data, IP addresses for rate limiting, browser type, and interaction patterns with our picks system). We do not collect payment card data; subscription billing is handled by third-party processors.
2. How We Use Your Information
We use your information to: (a) provide and maintain the Service; (b) prevent fraud and abuse; (c) enforce rate limits; (d) understand aggregate usage patterns to improve the PatternMiner engine; (e) communicate service-level updates. We do not sell your personal data to third parties.
3. Authentication Data
Login sessions are managed via HMAC-SHA256 signed cookies with a 30-day expiry. We store only the cryptographic token — not your password — on the server. Cookies are marked httpOnly and Secure in production.
4. Local Storage
KokiBet$ uses your browser's localStorage to persist bet tracking data (koki_bets, koki_bankroll). This data never leaves your device and is not transmitted to our servers. You can clear it at any time through your browser settings.
5. Analytics
We may use privacy-preserving analytics (no cross-site tracking, no fingerprinting) to understand aggregate usage. We do not use Google Analytics or other ad-based tracking platforms.
6. Third-Party Services
Our algorithms connect to third-party data providers (MLB Stats API, Baseball Savant, The Odds API, SportsGameOdds, OpenWeatherMap). Your use of the Service means these providers may receive HTTP requests from our servers, but your personal data is not shared with them.
7. Data Retention
Session tokens expire after 30 days. We do not retain logs of individual user actions beyond 90 days. Aggregate, anonymized usage data may be retained indefinitely.
8. Your Rights
Depending on your jurisdiction, you may have the right to: access data we hold about you, request deletion, object to processing, or port your data. Contact us at admin@kokibets.com to exercise these rights. We will respond within 30 days.
9. Children's Privacy
KokiBet$ is strictly for users 21 years of age or older. We do not knowingly collect data from anyone under 21. If we become aware that we have inadvertently collected data from a minor, we will delete it immediately.
10. Security
We implement industry-standard security measures including HTTPS/TLS for all communications, HMAC-signed session tokens, rate limiting on authentication endpoints, and secure cookie flags. No system is 100% secure; we cannot guarantee absolute security.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify active users of material changes. Continued use of the Service after changes constitutes acceptance.
12. Contact
Privacy inquiries: admin@kokibets.com