Security & Privacy
Private and secure by design.
TeamDock holds sensitive information about coaches, players, and families, including youth athletes. We treat it that way: encrypted, access-controlled at the database level, and never sold or shared.
How we protect your team's data
Encrypted end to end
Every connection uses HTTPS/TLS, and data is encrypted at rest in the database. Your team's information is protected in transit and in storage.
Privacy enforced in the database
Who can see what is enforced by row-level security in the database itself, not just hidden in the interface. A player and their linked parent see their own feedback; coach-only notes stay in the staff room.
Role-based access
Coaches, players, and families each see only what's meant for them. The Head Coach controls the roster, permissions, and what's shared publicly versus kept private.
Built for youth teams
TeamDock is private by default. Nothing about a player is public until a coach chooses to share it, and family-unit visibility keeps a player and their parent on the same page — and no one else.
Secure billing
Payments are handled by Stripe, a PCI-DSS Level 1 provider. TeamDock never sees or stores your full card number.
Reliable, managed hosting
TeamDock runs on managed cloud infrastructure with automated backups, so your team's space stays available and your data is protected against loss.
Where your data lives
TeamDock's data is hosted in Canada. We use a small set of trusted, industry-standard providers to run the service, each handling only what its job requires.
| Provider | Purpose | Region |
|---|---|---|
| Supabase | Database & file storage | AWS Canada Central (Montréal) |
| Vercel | Application hosting & CDN | Montréal, Canada (primary) |
| Stripe | Payment processing | North America |
| Maileroo | Transactional email delivery | Email provider |
| Cloudflare | Bot & spam protection | Global edge |
Canadian hosting, for teams everywhere
Hosting in Canada is a privacy strength, not a limitation. Canada's privacy law (PIPEDA) is recognized by the EU as providing adequate data protection, there's no U.S. federal requirement for youth-sports data to be stored domestically, and our data-minimization, access-control, and deletion practices align with U.S. state privacy laws. Teams across Canada and the U.S. run on the same secure foundation.
Security & privacy questions
Where is my team's data stored?
In Canada. TeamDock's database and files are hosted in the AWS Canada Central region (Montréal) via Supabase, and the application runs on Vercel's Montréal region. Payments are processed by Stripe.
We're a U.S. team — is Canadian hosting a problem?
No. Canada's federal privacy law (PIPEDA) is recognized by the European Union as providing an adequate level of data protection, and there is no U.S. federal requirement for youth-sports team data to be stored domestically. Our practices — data minimization, strict access controls, and deletion on request — align with U.S. state privacy laws.
Who can see our team's information?
Only the people you invite, and only the parts meant for them. Access is enforced in the database by role (coach, player, parent) and by family unit. TeamDock does not sell your data, show ads, or share team information with other teams.
Do you store our payment card details?
No. All billing runs through Stripe, a PCI-DSS Level 1 certified processor. Your card details go directly to Stripe; TeamDock only stores a reference to your subscription.
Can we delete our data?
Yes. A Head Coach can request account closure or data deletion at any time, and inactive teams are eventually purged automatically. See our Privacy Policy for how long information is kept and how deletion works.
Give your team a home base.
14-day free trial · No credit card required · Cancel anytime. Pick a name and a web address, and you're live in under a minute.

