1. Introduction

SportOS ("We", "Us") is committed to protecting the privacy of our users ("You"). This policy details how we collect, store, and process personal data for the purpose of managing grassroots sports clubs.

2. Data We Collect

We act as a Data Processor on behalf of your Sports Club (the Data Controller). We collect:

Identity Data: Names, Dates of Birth (for age-grade compliance).
Contact Data: Email addresses, Phone numbers (for emergency contact).
Financial Data: Payment history and Direct Debit mandate status (we do not store raw card numbers; these are handled by GoCardless/Stripe).
Performance Data: Match statistics and attendance records.

3. How We Use Your Data

We use your data solely to provide the SportOS service, including:

Verifying player eligibility for league matches.
Processing subscription payments and match fees.
Facilitating communication between Coaches and Parents.

4. Data Security

Your data is stored in the UK/EU region using Supabase (PostgreSQL), protected by Row Level Security (RLS) and encryption at rest. We do not sell your data to third parties.

5. Children's Privacy

SportOS is designed for youth sports. Data for users under 18 is strictly controlled. Only authorized Club Officials (Coaches/Welfare Officers) and the linked Parent/Guardian can view a child's full profile.

6. Contact

For data removal requests or queries, please contact: compliance@sportos.co.uk