1. Introduction
Sportiverse ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.
GDPR Compliance: We are fully compliant with the General Data Protection Regulation (GDPR) for users in the European Union.
2. Information We Collect
Personal Information You Provide
- Account Information: Email, password, first name, last name
- Profile Information: Date of birth, nationality, profile picture, bio
- Sports Data: Club memberships, match statistics, training schedules
- User Content: Posts, comments, match results, team rosters
Information Collected Automatically
- Device Information: Device type, operating system, unique device identifiers
- Usage Data: App features used, time spent, interaction patterns
- Performance Data: Crash reports, performance metrics
Analytics Data (With Consent)
If you consent to analytics, we collect:
- App usage patterns and feature engagement
- User journey and navigation flows
- Performance and stability metrics
3. How We Use Your Information
| Purpose | Legal Basis (GDPR) |
|---|---|
| Provide and maintain the service | Contract performance |
| Create and manage your account | Contract performance |
| Enable sports organization features | Contract performance |
| Send service-related notifications | Legitimate interest |
| Analytics and improvements | Consent |
| Comply with legal obligations | Legal obligation |
4. Data Sharing and Disclosure
We Share Data With:
- Other Users: Profile information, match results, and statistics as part of the service
- Club/League Members: Information relevant to your sports activities
- Service Providers: Firebase (Google) for infrastructure and authentication
We Do NOT:
- Sell your personal information
- Share data with advertisers
- Use your data for marketing without consent
5. Data Storage and Security
Storage Location
Your data is stored on Google Firebase servers, primarily located in:
- Europe (for EU users)
- United States (for non-EU users)
Security Measures
- Encryption in transit (HTTPS/TLS)
- Encryption at rest for sensitive data
- Secure authentication via Firebase Auth
- Regular security audits and updates
- Access controls and monitoring
6. Your Rights (GDPR)
Under GDPR, you have the following rights:
Right to Access
Request a copy of your personal data we hold
Right to Rectification
Correct inaccurate or incomplete personal data
Right to Erasure ("Right to be Forgotten")
Request deletion of your personal data (with 30-day grace period)
Right to Restrict Processing
Limit how we use your personal data
Right to Data Portability
Receive your data in a structured, machine-readable format
Right to Object
Object to processing based on legitimate interests
Right to Withdraw Consent
Withdraw consent for analytics at any time in Settings
To exercise these rights: Go to Settings → Privacy in the app or contact us at legal@sportiverse.no
7. Data Retention
We retain your data for different periods based on the type:
- Account Data: Until account deletion + 30-day recovery period
- Match Statistics: Indefinitely for historical records (anonymized after account deletion)
- Analytics Data: 2 years
- Logs and Security Data: 90 days
8. Children's Privacy
Sportiverse requires users to be at least 13 years old. Users under 18 require parental consent. We do not knowingly collect data from children under 13.
9. International Data Transfers
If you're in the EU and your data is transferred outside the EU, we ensure appropriate safeguards through:
- Standard Contractual Clauses
- Adequacy decisions
- Privacy Shield frameworks (where applicable)
10. Cookies and Tracking
The Sportiverse mobile app does not use cookies. We may use:
- Local storage for app preferences
- Analytics SDKs (only with your consent)
- Firebase Performance Monitoring (anonymized)
11. Changes to This Policy
We will notify you of significant changes via:
- In-app notifications
- Email to your registered address
- Prominent notice in the app
Contact Information
Data Protection Officer
Email: legal@sportiverse.no
Address: Hagegata 1A
Oslo, Norway
Supervisory Authority (Norway)
Datatilsynet (Norwegian Data Protection Authority)
Website: www.datatilsynet.no