Back
Legal Center

Privacy Policy

Last Updated: February 2026

1. Introduction

SportOS ("We", "Us") is committed to protecting the privacy of our users. This policy details how we collect, store, and process personal data across our platform, including our AI-driven analytics features.

2. Data We Collect

We act as a Data Processor on behalf of your Sports Club (the Data Controller). We collect:

  • Identity Data: Names, Dates of Birth (for age-grade compliance).
  • Contact Data: Email addresses and phone numbers.
  • Financial Data: We use GoCardless to process payments. We do not store your bank account details or raw payment credentials on our servers; these are handled securely by GoCardless.
  • Performance & AI Data: Match results, player statistics, and attendance records used by our "Tempo" AI engine.

3. How We Use Your Data

We use your data solely to provide the SportOS service, including:

  • Verifying player eligibility for matches.
  • AI Insights (Elite Tier): Processing team performance data through our "Tempo" engine to generate coaching plans and tactical suggestions.
  • Processing subscription payments and match fees via GoCardless.
  • Facilitating communication between Coaches, Parents, and Players.

AI and Data Processing

The Tempo AI engine processes team statistics to provide suggestions. It does not use personal identity data to make "automated decisions" that have legal effects on individuals.

4. Data Security & Storage

Your data is stored in the UK/EU region using **Supabase (PostgreSQL)**, protected by Row Level Security (RLS) and encryption at rest. Node.js API calls are secured via JWT (JSON Web Tokens) to ensure only authorised users can access specific datasets.

5. Third-Party Processors

To deliver our service, we share limited data with the following essential providers:

  • Supabase: For database hosting and authentication.
  • GoCardless: For processing Direct Debit and subscription payments.
  • Vercel: For hosting our web application interface.

6. Children's Privacy

SportOS is designed for youth sports. Data for users under 18 is strictly controlled. Only authorised Club Officials (Coaches/Welfare Officers) and the linked Parent/Guardian can view a child's full profile.

7. Your Rights

Under GDPR, you have the right to access, correct, or delete your personal data. To exercise these rights, please contact your Club Admin (the Data Controller) or contact us directly.

8. Contact

For data removal requests or queries, please contact: compliance@sportos.co.uk