Privacy Policy

Introduction

Sportrak ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our sports team management platform. Please read this policy carefully to understand our practices regarding your data.

By using Sportrak, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

1. Information We Collect

1.1 Information You Provide

We collect information that you directly provide to us, including:

• Account Information: First name, last name, email address, birthdate, and password (encrypted)
• Profile Information: Profile avatar/photo uploads
• Team Information: Team names, team sport categories, team membership details
• Financial Records: Fund account names, transaction details, payment tracking records, and related comments (user-entered data for tracking purposes only)
• User-Generated Content: Comments, notes, and other content you submit through the platform

1.2 Automatically Collected Information

When you use Sportrak, we automatically collect certain information, including:

• Usage Data: Activity logs, feature usage, and interactions with the platform
• Device Information: Browser type, operating system, IP address, and device identifiers
• Cookies and Tracking: See our Cookie Policy for details on cookies and similar technologies
• Session Data: Login sessions, authentication tokens, and selected team preferences

2. How We Use Your Information

We use the information we collect for the following purposes:

• Service Delivery: To provide, maintain, and improve Sportrak's features and functionality
• Account Management: To create and manage your user account, authenticate your identity, and enable team membership
• Team Collaboration: To facilitate team management, member coordination, and financial record-keeping
• Communication: To send you service-related notifications, updates, and responses to your inquiries
• Security: To protect against fraud, unauthorized access, and other security threats
• Legal Compliance: To comply with applicable laws, regulations, and legal processes
• Analytics: To understand how users interact with our Service and improve user experience

3. How We Share Your Information

We do not sell your personal information to third parties. We may share your information in the following limited circumstances:

• Within Teams: Your name and profile information are visible to other members of teams you join
• With Team Owners: Team owners can view financial records and activity logs related to their teams
• Service Providers: With third-party vendors who help us operate the Service (e.g., hosting providers, email services)
• Legal Requirements: When required by law, court order, or government regulation
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• With Your Consent: When you explicitly authorize us to share your information

4. Data Security

We implement industry-standard security measures to protect your personal information, including:

• Encryption: Passwords are encrypted using BCrypt hashing
• Secure Authentication: Spring Security framework for access control and session management
• CSRF Protection: Cross-Site Request Forgery protection on all forms and requests
• Access Controls: Role-based permissions to restrict data access to authorized users
• Secure Storage: Data stored in secure database systems with regular backups

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.

5. Data Retention

We retain your personal information for as long as necessary to provide our Service and fulfill the purposes described in this Privacy Policy. Specifically:

• Account Data: Retained while your account is active and for a reasonable period after account closure
• Financial Records: Transaction histories and audit logs are retained to maintain data integrity and comply with record-keeping requirements
• Activity Logs: Stored to maintain accountability and platform security
• Deleted Accounts: Some data may be retained as required by law or for legitimate business purposes

Note: Some financial accounts use "soft delete" functionality, meaning they are hidden but not permanently removed to preserve transaction history integrity.

6. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Update or correct inaccurate or incomplete information through your profile settings
• Deletion: Request deletion of your personal information (subject to legal and operational limitations)
• Cookie Preferences: Manage your cookie preferences through our Cookie Policy and preference settings
• Opt-Out: Unsubscribe from marketing communications (if any)
• Data Portability: Request your data in a portable format (where applicable under GDPR or similar laws)

To exercise these rights, please contact us at [contact@sportrak.com]. We will respond to your request within a reasonable timeframe as required by applicable law.

7. Cookies and Tracking Technologies

Sportrak uses cookies and similar technologies to enhance your experience and collect usage data. We use the following types of cookies:

• Essential Cookies: Required for basic platform functionality (authentication, session management)
• Analytics Cookies: Help us understand how users interact with the platform (if enabled by you)
• Preference Cookies: Remember your settings and preferences
• Marketing Cookies: Used for targeted advertising (if enabled by you)

You can manage your cookie preferences at any time through our cookie consent modal. For more details, please see our Cookie Policy.

8. Children's Privacy

Sportrak is designed for users aged 13 and older. We comply with the Children's Online Privacy Protection Act (COPPA) and do not knowingly collect personal information from children under 13.

If we discover that a user under 13 has provided personal information, we will immediately delete the account and associated data. If you believe a child under 13 has created an account, please contact us immediately at [contact@sportrak.com].

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws than your jurisdiction.

By using Sportrak, you consent to the transfer of your information to [Country/Region] and other countries where we operate. We take steps to ensure that your data receives adequate protection in accordance with applicable data protection laws.

10. Third-Party Links and Services

Sportrak may contain links to third-party websites or integrate third-party services (such as content delivery networks for CSS/JS libraries). We are not responsible for the privacy practices of these third parties.

We encourage you to review the privacy policies of any third-party sites or services you access through Sportrak. This Privacy Policy applies only to information collected by our Service.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or Service features. We will notify you of material changes by updating the "Last Updated" date at the top of this page.

Your continued use of Sportrak after changes are posted constitutes acceptance of the updated Privacy Policy. We encourage you to review this page periodically to stay informed about how we protect your information.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: