Built to keep your data private and secure
OddsLab is an analytics tool, not a sportsbook. Your bets belong to you — we encrypt them, we don't sell them, and you can export or delete them at any time.
How we protect your data
Encryption, payment security, and privacy controls designed around the GDPR baseline.
256-bit AES encryption
All data is encrypted at rest with AES-256 and in transit with TLS 1.2+. Keys are rotated regularly and stored in a hardened key-management service.
Stripe PCI DSS Level 1
Payments are processed by Stripe, certified PCI DSS Level 1 — the highest card-security standard. OddsLab never sees or stores your full card number.
GDPR compliant
You can access, export, correct, or delete your personal data at any time. We respond to GDPR requests within 30 days.
No third-party data sharing
We never sell your data. We only share the minimum required with processors we rely on (Stripe for payments, Resend for email).
Your betting data is yours
We're a tool you pay for. That means our incentives are aligned with yours — not with any bookmaker.
Your bets stay private
We never share your bets, bankroll, or performance with anyone. Your betting history is visible only to you inside your account.
Nothing sold to bookmakers
We do not sell or disclose betting data to bookmakers, affiliates, or third parties. OddsLab is not paid by sportsbooks for your behavior.
Export anytime (CSV)
Download your full bet history, bankroll events, and settings as CSV from your account — no approval required, no lock-in.
Full account deletion
Delete your account and all associated data on request. Backups containing deleted data are purged within 30 days.
Infrastructure & reliability
Hosted on SOC 2 compliant providers with daily backups, uptime monitoring, and a coordinated disclosure program.
SOC 2 compliant hosting
We run on infrastructure providers that maintain SOC 2 Type II attestations, with network isolation, audit logging, and strict access controls.
Daily backups, 30-day retention
Encrypted, automated backups run every day and are kept for 30 days. Restore procedures are tested regularly.
99.9% uptime SLA
We target 99.9% availability for the web app and API, with active monitoring, redundant services, and on-call alerts.
Responsible disclosure
Found a vulnerability? Email security@oddslab.tech. We triage reports quickly and credit researchers who help us.
Player protection built in
OddsLab is strictly for users 18+. We provide tools that help you stay in control and links to independent support organizations.
Self-exclusion tools
Temporarily or permanently lock yourself out of the app, with a cooling-off period before any reactivation is possible.
Loss limit enforcement
Set daily, weekly, and monthly loss limits on your bankroll. New bets above your limit are blocked until the period resets.
Independent support organizations
Questions about security?
For security reports, privacy requests, or compliance questions, email our team. We respond to GDPR requests within 30 days.