Privacy & data
Plain-language summary of how flip handles video and personal data. This explains our design; a full legal policy and Data Processing Agreement (DPA) are provided to clubs before launch. It is not legal advice.
Who is responsible
Your club decides why and how athletes are filmed, so under GDPR the club is the data controller. flip only processes data on the club's instructions, so flip is the data processor. We sign a DPA with each club setting this out.
The live feed is never recorded
The delayed replay on the coach screen is ephemeral. Video streams peer-to-peer from the phone to the screen (encrypted with WebRTC DTLS-SRTP) and is discarded as it plays. It is not written to disk anywhere unless a coach explicitly saves a clip.
What we store — and what we don't
| We store | We do not store |
|---|---|
| Coach accounts: name, email, hashed password | Any account/login for gymnasts |
| Club info, rooms, optional athlete name/squad labels | The live delayed video stream |
| Clips a coach explicitly saves (until auto-deleted) | Passwords in plain text (bcrypt-hashed) |
| Basic technical logs for security/operation | Contact details or IDs of minors |
Saved clips & retention
Clips a coach saves are private to that club — only its logged-in coaches can view them. Each club sets a retention period; clips are automatically deleted after it (and a coach can delete any clip immediately). Deletion removes both the file and its record.
Minors & consent
Many gymnasts are children. flip keeps their data minimal by design — no accounts, no contact details, ephemeral feed. The camera screen shows the consent + no-recording terms before filming and reminds that under-18s require guardian consent, which the club is responsible for obtaining (the EU digital-consent age is 13–16 depending on country; e.g. 13 in Denmark, 16 in Germany).
Security
HTTPS/TLS everywhere with HSTS; passwords bcrypt-hashed; coach-only, club-scoped access to clips; rate limiting and standard security headers; encrypted media transport; nightly database backups.
Where data lives & sub-processors
Data is hosted on EU servers (Germany). We keep the list of sub-processors short and name them in the DPA. We never sell data or use athlete video for advertising or model training.
Your rights
Clubs and individuals can request access, correction, export, or deletion of personal data. A club admin can delete clips and athlete profiles in-app; for a full export or account deletion, contact us and we action it promptly.
Contact
Questions or requests: your club admin, or the flip support address shown in your dashboard.