Last updated: 3 May 2026
This Privacy Policy explains how DiscGolfAPI collects, uses, stores, and protects personal data when you use discgolfapi.com, io.discgolfapi.com, our API, our contact forms, and our email update forms.
DiscGolfAPI is designed to minimise personal data. The service provides structured disc golf course data. It does not provide user accounts, user profiles, reviews, ratings, social features, or direct public editing of course records.
Who we are
DiscGolfAPI is the data controller for personal data collected through this website and related services.
You can contact us about privacy matters at:
What personal data we collect
We may collect the following types of personal data.
Contact form data
When you contact us, we collect:
- first name
- last name
- email address
- message content
- any other information you choose to include
We use this to respond to your enquiry, handle API questions, review data corrections, discuss licensing, and manage partnership or commercial enquiries.
Email signup data
When you sign up for DiscGolfAPI updates, we collect:
- email address
- name, if requested
- organisation, if requested
- consent status
- unsubscribe status
- signup date and related technical records
We use Mailchimp to manage email signups and send updates.
We use this data to send occasional DiscGolfAPI updates, including API changes, new endpoints, data changes, release notes, and related product updates.
You can unsubscribe at any time by using the unsubscribe link in our emails or by contacting [email protected].
Early access data
If you request early access, we may collect:
- name
- email address
- organisation
- consent confirmation
We use this to contact you about early access, product updates, launch information, and related DiscGolfAPI news.
API usage and server log data
When you visit the website or use the API, technical systems may collect:
- IP address
- browser type
- device type
- user agent
- request URL
- referring URL
- date and time of request
- response status
- error logs
- API endpoint requested
- approximate location derived from IP address
We use this information to operate the website and API, monitor reliability, prevent abuse, diagnose errors, understand usage patterns, and protect the service.
Course correction or data feedback
If you submit a correction, suggestion, or evidence about a course, we may collect:
- your name
- email address
- organisation or club
- submitted correction
- supporting evidence
- related correspondence
- verification status
We use this to review the suggested update, assess confidence, prevent bad data, and maintain the reliability of the API.
Public course and organisation data
DiscGolfAPI publishes structured course data. This may include:
- course name
- location
- country or region
- public website
- operator or club name
- access model
- status information
- confidence and verification signals
We try to avoid publishing personal data. If a course operator name, sole trader name, or contact detail appears in public source material and is relevant to course operation, we may process it as part of the course data review process.
We will remove or amend personal data where appropriate.
We do not collect
DiscGolfAPI does not currently provide:
- user accounts
- public user profiles
- reviews
- ratings
- public comments
- social features
- payment processing
- direct course claiming
- public image uploads
If this changes, we will update this Privacy Policy.
How we use personal data
We use personal data to:
- respond to enquiries
- manage early access requests
- send API updates where you have opted in
- process unsubscribe requests
- review course data corrections
- improve data quality
- operate and secure the website and API
- monitor API reliability and usage
- prevent spam, scraping abuse, misuse, and attacks
- comply with legal obligations
- keep appropriate business and operational records
Lawful bases for processing
We rely on different lawful bases depending on the activity.
| Purpose | Lawful basis |
|---|---|
| Responding to contact form enquiries | Legitimate interests |
| Managing API, website, and security logs | Legitimate interests |
| Reviewing course corrections and evidence | Legitimate interests |
| Sending optional email updates | Consent |
| Managing unsubscribe requests | Legal obligation and legitimate interests |
| Keeping basic records for legal protection | Legitimate interests or legal obligation |
| Processing early access requests | Consent or legitimate interests, depending on the request |
Where we rely on consent, you can withdraw it at any time.
Where we rely on legitimate interests, we only do so where we believe our interest is not overridden by your rights and freedoms.
Email updates and marketing
We only send DiscGolfAPI email updates where you have opted in or where privacy law allows us to contact you.
You can stop receiving updates at any time by using the unsubscribe link in the email or by contacting [email protected].
We do not sell, rent, or share your contact details with third parties for their own marketing.
Mailchimp
We use Mailchimp to manage email lists, store subscriber details, record consent, and send email updates.
When you sign up to receive email updates, your details may be processed by Mailchimp. Mailchimp may process data outside the UK or European Economic Area, using appropriate safeguards.
You can read Mailchimp’s privacy information on Mailchimp’s own website.
Cookies and similar technologies
DiscGolfAPI uses cookies and similar technologies to operate the website, remember preferences, measure usage, and manage consent.
Some cookies are necessary for the site to work. Others, such as analytics or marketing cookies, are only used where required consent has been given.
You can manage your choices through the cookie banner or the Cookie Policy linked from the website footer.
Blocking or rejecting some cookies may affect how parts of the website work.
Analytics
We may use analytics tools to understand how visitors use the website and API. This may include page views, referring sites, device information, browser information, approximate location, and usage patterns.
Where analytics uses non-essential cookies or similar technologies, we will request consent where required.
Service providers
We use third-party service providers to operate DiscGolfAPI. These may include providers for:
- website hosting
- DNS, caching, security, and content delivery
- API hosting and request handling
- data storage
- email delivery
- contact forms
- consent management
- analytics
- spam prevention
- backup and monitoring
These providers may process personal data only as needed to provide services to DiscGolfAPI. They are not allowed to use your personal data for their own purposes.
Current or likely providers may include WordPress-related service providers, Cloudflare, hosting providers, database providers, Mailchimp, analytics providers, and form or consent management tools.
Sharing personal data
We may share personal data:
- with service providers who help us operate the website, API, email systems, forms, analytics, security, and hosting
- where required by law
- where needed to protect the website, API, users, or legal rights
- where needed to investigate misuse, abuse, spam, or security incidents
- with professional advisers if required
We do not sell personal data.
We do not share email signup data with third parties for their own marketing.
International transfers
Some service providers may process personal data outside the UK or European Economic Area.
Where this happens, we rely on appropriate safeguards, such as adequacy regulations, standard contractual clauses, UK international data transfer agreements, or other lawful transfer mechanisms.
How long we keep personal data
We keep personal data only for as long as needed for the reason it was collected.
In general:
- email subscribers stay on our mailing list until they unsubscribe or ask us to delete their data
- contact form messages are usually kept for up to 24 months after the last meaningful contact
- early access or signup records that are not confirmed or used are usually deleted within 90 days
- API, website, security, and error logs are usually kept for up to 90 days, unless we need them for security, abuse prevention, debugging, or legal reasons
- course correction submissions may be kept for as long as needed to support data quality, provenance, dispute handling, or audit history
- consent, unsubscribe, legal, and business records may be kept for longer where needed to prove consent, honour unsubscribe requests, comply with law, or protect legal rights
Anonymous or aggregated data may be kept for longer.
Course data provenance
DiscGolfAPI uses evidence from public and trusted sources to assess course records. This may include public course websites, association sources, club sources, event sources, open data sources, and other public signals.
We aim to store structured facts rather than copied long-form text. We avoid scraping or publishing personal data where it is not needed for the operation or verification of course records.
If you believe personal data about you appears in DiscGolfAPI course data, contact [email protected] and we will review it.
Security
We use reasonable technical and organisational measures to protect personal data. These may include:
- access controls
- secure hosting
- HTTPS
- logging and monitoring
- spam and abuse prevention
- limited data collection
- limited access to operational systems
No website or API can be guaranteed completely secure. If you believe there is a security issue, contact [email protected].
Your rights
Depending on your location and the law that applies, you may have rights to:
- access personal data we hold about you
- correct inaccurate data
- request deletion
- restrict processing
- object to processing
- withdraw consent
- request data portability
- complain to a data protection authority
To exercise your rights, contact:
We may need to verify your identity before responding.
Complaints
You can contact us first if you have a privacy concern.
You also have the right to complain to the UK Information Commissioner’s Office.
ICO website: ico.org.uk
ICO helpline: 0303 123 1113
Links to other websites
DiscGolfAPI links to other websites, including related disc golf websites, documentation tools, social media platforms, public data sources, and partner websites.
We are not responsible for the privacy practices of other websites. You should read their privacy policies before providing personal data.
Children
DiscGolfAPI is not aimed at children and does not knowingly collect personal data from children.
Changes to this policy
We may update this Privacy Policy from time to time.
When we make material changes, we will update the date at the top of this page. Where appropriate, we may also notify email subscribers or add a notice to the website.
Contact
For privacy questions, data requests, or deletion requests, contact: