You are currently in restricted mode based on your location. While you can view your existing lineups and results, creating contests, participating in contests and editing lineups is disabled. Learn more

Privacy Policy

Effective Date: May 7, 2026

At iDraft LLC ("iDraft", "we", "us", or "our"), your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our website, mobile applications, and fantasy sports services (collectively, the "Services").

1. Age Restriction

iDraft is intended for individuals age 18 and older, or the minimum legal age in your jurisdiction if higher. We do not knowingly collect personal data from individuals under this age. If we learn that we have collected information from a minor, we will take reasonable steps to delete it promptly.

2. Information We Collect

We may collect the following types of information when you use iDraft:

Account and contact information: Information you provide when creating an account or contacting us, such as your name, email address, username, and any other details you choose to provide.
Contest and usage information: Information about your use of the Services, including contests you join, lineups or picks you submit, activity history, and related in-app activity.
Technical and device information: Usage data such as IP address, browser type, operating system, device identifiers, pages visited, referral URLs, and timestamps.
Information from sign-in and authentication providers: If you sign in using a third-party authentication service, we may receive basic account information (such as your email and profile identifiers) from that provider to help create or manage your iDraft account.
Cookies and similar technologies: Information collected through cookies, web beacons, local storage, and similar tools to remember your preferences and understand how you use the Services.
Verification and compliance information: Information we may collect or infer to help verify eligibility, age, identity, location, fraud risk, and compliance with applicable laws and platform rules.

3. How We Use Your Information

We use the information we collect for purposes such as:

Operating, maintaining, and improving the iDraft website and Services;
Creating and managing your account and user profile;
Processing contest participation, entry fees, prizes, and results;
Verifying eligibility, age, identity, location, and compliance with platform rules and applicable law;
Responding to your inquiries, support requests, and feedback;
Monitoring the platform for security, fraud, misuse, unfair play, or technical issues;
Understanding how the Services are used to help improve features and user experience; and
Complying with legal obligations and enforcing our Terms of Use.

4. Sharing of Information

We do not sell or rent your personal information. We may share your information in the following limited situations:

Service providers: With trusted third-party vendors that help us operate the Services (for example, hosting providers, authentication services, payment processors, analytics providers, and customer support tools). These providers are permitted to use your information only as necessary to perform services on our behalf.
Legal and safety: When we believe in good faith that disclosure is necessary to comply with applicable laws, regulations, legal processes, or government requests, or to protect the rights, property, or safety of iDraft, our users, or others.
Business transfers: In connection with a merger, acquisition, financing, reorganization, or sale of all or part of our business. In such cases, your information may be transferred as part of the transaction, subject to this Privacy Policy or an equivalent policy.

5. Payment Information

We may collect limited payment-related information, such as payment account identifiers or transaction-related details, to process deposits, withdrawals, entry fees, refunds, and prize payouts.

iDraft does not store full credit card numbers, full bank account details, or other sensitive payment credentials that are handled directly by third-party payment providers. Payment transactions may be processed by third-party providers, which may include PayPal and other processors. Your use of any payment provider is subject to that provider's own terms and privacy policy.

We may retain transaction-related records, such as deposit amounts, withdrawal amounts, contest entries, refunds, and payout history, for as long as reasonably necessary to operate the Services, resolve disputes, prevent fraud, enforce our agreements, and comply with legal obligations.

Where you have configured deposit, entry-count, or entry-fee limits in your account settings, we store those settings on iDraft's servers in support of state consumer-protection rules.

6. Cookies and Analytics

We may use cookies, local storage, and similar technologies to remember your preferences, keep you signed in, maintain session integrity, and understand how you interact with the Services.

We may also use analytics and similar tools to help us understand usage patterns, measure performance, and improve the Services. These tools may collect information about your use of the Services, including your IP address and other technical identifiers. You can disable cookies or limit certain types of tracking through your browser or device settings, though some features of iDraft may not function properly if cookies are disabled.

7. Mobile Application

The iDraft Android app collects and processes information specific to mobile devices in addition to the categories described above. This section describes those mobile-specific practices.

Push notification tokens. When you install the iDraft app, the device generates a Firebase Cloud Messaging (FCM) registration token that lets us deliver contest, lineup, and account notifications. We send this token to our servers and store it associated with your account so we can target notifications you've opted into. You can disable notifications at any time through the Android system settings for the iDraft app; doing so will not affect your ability to use the Services.
Biometric authentication. The app may prompt you to confirm certain sensitive actions (such as authorizing a withdrawal) using your device's biometric prompt — fingerprint, face, or device PIN/pattern — powered by Android's BiometricPrompt API. Your fingerprint, face data, or device credentials never leave your device and are never transmitted to iDraft. We only receive a success or failure signal from the operating system. If your device does not support biometrics or has no enrolled credentials, the prompt is skipped.
Locally-stored authentication tokens. Sign-in tokens (issued by our authentication provider) are stored in the Android Keystore via the platform's secure storage API so you remain signed in between sessions. These tokens are not accessible to other apps and are removed when you sign out or uninstall the app.
Approximate location for jurisdiction enforcement. iDraft is restricted in certain U.S. states and other regions. We determine your approximate location server-side from the IP address of your network requests; the iDraft app does not request the device's GPS or fine-location permissions. We use this approximate location only to enforce regional availability and applicable contest rules.
Mobile device and diagnostic information. Routine API requests from the app include standard technical data (device model, Android OS version, app version, language, time zone, IP address) so we can deliver compatible content, troubleshoot issues, and detect abuse. Crash and error logs may include this technical data and a stack trace; they do not include the contents of any payment, biometric, or notification data.
Update checks. When the app starts, it may make an anonymous request to iDraft to determine whether a newer version is available. No account information or device identifier is sent with this check, and it is only performed for builds installed outside the Google Play Store.

The iDraft app does not include third-party advertising SDKs, behavioral analytics SDKs, or third-party tracking SDKs. We do not sell or share mobile device information with advertising networks.

8. Your Rights and Choices

Depending on where you live, you may have certain rights regarding your personal information. These may include the right to:

Access the personal data we hold about you;
Request correction or update of inaccurate or incomplete information;
Request deletion of your personal data, subject to legal, contractual, fraud prevention, or recordkeeping obligations;
Object to or request restriction of certain processing; and
Request a copy of your data in a portable format where required by law.

You may exercise applicable rights by contacting us at support@idraft.net. We may need to verify your identity before responding to certain requests.

EEA/UK residents: If you are located in the European Economic Area or the United Kingdom, you may have additional rights under applicable data protection laws, including the right to lodge a complaint with the supervisory authority in your jurisdiction.

California residents: If you are a California resident, you may have additional rights under California privacy law, including rights to know, access, correct, and request deletion of certain personal information, subject to exceptions. iDraft does not sell or share personal information for cross-context behavioral advertising as those terms are defined under applicable California law.

9. Data Security

We implement reasonable technical and organizational safeguards designed to protect your information from unauthorized access, loss, misuse, or alteration. However, no system or method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

10. Data Retention

We retain personal data for as long as necessary to provide the Services, fulfill the purposes described in this policy, resolve disputes, enforce our agreements, prevent fraud, and comply with legal obligations. Retention periods may vary depending on the type of data and applicable laws.

When you delete your account, we anonymize your iDraft profile (display name, email, profile picture, notification tokens) immediately, but retain financial records (deposits, withdrawals, contest entries, prize payouts) with all personal identifiers anonymized — this retention is required by U.S. federal tax law (IRS §6501, seven years) and is permitted under GDPR Art. 17(3)(b) and the CCPA's legal-obligation exception. Our authentication provider (Auth0) additionally retains your email address post-deletion as a fraud-prevention measure: it prevents the same email from being used to register a new account in circumvention of the deletion. This retention is based on legitimate interest under GDPR Art. 17(3)(b) and CCPA's legal-obligation exception, and the email is used solely to enforce the re-registration block.

11. International Transfers

iDraft is based in the United States, and your information may be processed and stored in the United States or other countries that may have different data protection laws than your country of residence. Where required by law, we take steps intended to provide appropriate safeguards for such transfers.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. When we make changes, we will update the "Effective Date" at the top of this page. Your continued use of the Services after any changes become effective indicates your acceptance of the revised policy.

13. Contact Us

If you have any questions about this Privacy Policy or your privacy rights, please contact us at:

Email: support@idraft.net
Business Name: iDraft LLC
Address: 30 N Gould St Ste N, Sheridan, WY 82801
Location: United States