AthleteFC's Privacy Policy

Before using AthleteFC's website and its services ("Services"), please carefully review our Privacy Policy. By accessing or using the Services, you consent to the collection, use, and sharing of your information as described in this policy. If you do not agree with the practices outlined, please refrain from using our Services.

Topics:

● How do we collect your data?
● How will we use your data?
● How do we store your data?
● How long and why do we store your data?
● Marketing
● What are your data protection rights?
● What are cookies?
● How do we use cookies?
● What types of cookies do we use?
● How to manage your cookies
● Privacy policies of other websites
● Childrens data
● Security of data
● Changes to our privacy policy
● How to contact us

What data do we collect?

Our Company collects the following data:

● Personal identification information (Name, email address, phone number, living
address, etc)
● Account information associated with your AthleteFC account (submitted pictures,
bank information and other personal identification information)

We may also collect information that your browser sends whenever you visit our Service or
when you access the Service by or through a mobile device (“Usage Data”).

This Usage Data may include information such as your computer’s Internet Protocol address
(e.g. IP address), browser type, browser version, the pages of our Service that you visit, the
time and date of your visit, the time spent on those pages, unique device identifiers and other
diagnostic data.

When you access the Service by or through a mobile device, this Usage Data may include
information such as the type of mobile device you use, your mobile device unique ID, the IP
address of your mobile device, your mobile operating system, the type of mobile Internet
browser you use, unique device identifiers and other diagnostic data.We may use and store information about your location if you give us permission to do so (“Location Data”).

We use this data to provide features of our Service, to improve and customise our Service.
You can enable or disable location services when you use our Service at any time, through
your device settings.

How do we collect your data?

You directly provide AthleteFC with most of the data we collect. We collect data and process
data when you:

● Register online or place an order for any of our products or services.
● Sign up to the AthleteFC application.
● Voluntarily complete a customer survey or provide feedback on any of our message
boards or via email.
● Use or view our website via your browser’s cookies.
AthleteFC might also receive data indirectly from other sources representing you and/or your
company.

How will we use your data?

Our Company collects your data so that we can:

● Process your meeting request.
● Email you with special offers on other products and services we think you might like.
● Create an AthleteFC account.
● Set up your AthleteFC profile.
● Handle pay-outs
● Process personalised video orders
● Send out personalised videos through customised emails

If you agree, AthleteFC will share your data with our partner companies so that they may
offer you their products and services.

When AthleteFC processes orders, it may send your data to, and also use the resulting
information from, credit reference agencies to prevent fraudulent purchases.

How do we store your data?

Our company securely stores your data by utilising the following measures.

Network Security

- Using a Virtual Private Cloud (VPC) to isolate networking.
- Configuring Security Groups to control inbound and outbound traffic.
- Implementing Network Access Control Lists (ACLs) for an additional layer of subnet
security.Instance Security
- Utilising SSH key pairs for secure access to EC2 instances.
- Assigning IAM roles to EC2 instances for managing permissions securely.
- Keeping the operating system and software up-to-date with security patches.

Application Security

- Using HTTPS for secure communication between clients and the application.
- Implementing robust authentication and authorization mechanisms for microservices.
- Validating and sanitizing all inputs to prevent SQL injection, XSS, and other injection
attacks.
- Implementing rate limiting to protect against DDoS attacks.

Database Security

- Encrypting data at rest and in transit using appropriate encryption methods.
- Storing Credentials and Passwords in hashed/encrypted format where applicable.
- Granting the least privilege required for each database user and application
component.
- Performing regular backups of the database and storing them securely.
Monitoring and Logging
- Using Amazon CloudWatch to monitor performance and health of EC2 instances and
applications.

Compliance and Best Practices

- Following the AWS Well-Architected Framework for best security practices.
- Conducting regular security audits and vulnerability assessments.
- Developing and maintaining an incident response plan.

How long and why do we store your data?

Our Company will keep your contact information no longer than necessary for completion of
duties, or no longer than three (3) months after terminated account. Once this time period has
expired, we will delete your data.

AthleteFC may process your Personal Data because:

● We need to perform a contract with you
● You have given us permission to do so
● The processing is in our legitimate interests and it’s not overridden by your rights
● For payment processing purposes
● To comply with the law
● To provide and maintain our Service
● To notify you about changes to our Service
● To allow you to participate in interactive features of our Service when you choose to
do so
● To provide customer support
● To gather analysis or valuable information so that we can improve our Service
● To monitor the usage of our Service● To detect, prevent and address technical issues
● To provide you with news, special offers and general information about other goods,
services and events which we offer that are similar to those that you have already
purchased or enquired about unless you have opted not to receive such information.

Marketing

Our Company would like to send you information about products and services of ours that we
think you might like, as well as those of our partner companies.

If you have agreed to receive marketing, you may always opt out at a later date.

You have the right at any time to stop AthleteFC from contacting you for marketing purposes
or giving your data to third parties.

If you no longer wish to be contacted for marketing purposes, please email
[email protected].

What are your data protection rights?

Our Company would like to make sure you are fully aware of all of your data protection
rights. Every user is entitled to the following:

The right to access – You have the right to request AthleteFC for copies of your personal
data. We may charge you a small fee for this service.

The right to rectification – You have the right to request that AthleteFC correct any
information you believe is inaccurate. You also have the right to request AthleteFC to
complete the information you believe is incomplete.

The right to erasure – You have the right to request that AthleteFC erase your personal data,
under certain conditions.

The right to restrict processing – You have the right to request that AthleteFC restrict the
processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to AthleteFC processing of
your personal data, under certain conditions.

The right to data portability – You have the right to request that AthleteFC transfer the data
that we have collected to another organisation, or directly to you, under certain conditions.

If you make a request, we have one month to respond to you. If you would like to exercise
any of these rights, please contact us at our email: [email protected]

Cookies

Cookies are text files placed on your computer to collect standard Internet log information
and visitor behaviour information. When you visit our websites, we may collect information
from you automatically through cookies or similar technology.

For further information, visit allaboutcookies.org.

How do we use cookies?

Our Company uses cookies in a range of ways to improve your experience on our website,
including:

● Keeping you signed in.
● Understanding how you use our website.

What types of cookies do we use?

There are a number of different types of cookies, however, our website uses:

Functionality – Our Company uses these cookies so that we recognize you on our website
and remember your previously selected preferences. These could include what language you
prefer and location you are in. A mix of first-party and third-party cookies are used.

Advertising – Our Company uses these cookies to collect information about your visit to our
website, the content you viewed, the links you followed and information about your browser,
device, and your IP address. Our Company sometimes shares some limited aspects of this
data with third parties for advertising purposes. We may also share online data collected
through cookies with our advertising partners. This means that when you visit another
website, you may be shown advertising based on your browsing patterns on our website.

How to manage cookies

You can set your browser not to accept cookies, and the above website tells you how to
remove cookies from your browser. However, in a few cases, some of our website features
may not function as a result.

Privacy policies of other websites

The AhleteFC website contains links to other websites. Our privacy policy applies only to our
website, so if you click on a link to another website, you should read their privacy policy.

Children’s Privacy

Our Service does not address anyone under the age of 18 (“Children”).
We do not knowingly collect personally identifiable information from anyone under the age
of 18. If you are a parent or guardian and you are aware that your child has provided us with
Personal Data, please contact us. If we become aware that we have collected Personal Datafrom children without verification of parental consent, we take steps to remove that information from our servers.

Security of Data

The security of your data is important to us, but remember that no method of transmission
over the Internet, or method of electronic storage is 100% secure. While we strive to use
commercially acceptable means to protect your Personal Data, we cannot guarantee its
absolute security.

Changes to our privacy policy

Our Company keeps its privacy policy under regular review and places any updates on this
web page. This privacy policy was last updated on 20th of July 2024.

How to contact us

If you have any questions about the AthleteFC privacy policy, the data we hold on you, or
you would like to exercise one of your data protection rights, please do not hesitate to contact
us.

Email us at: [email protected]