AIFAA - AI Football Analysis Assistant

Privacy Policy

Last updated: January 11, 2026

1. Introduction

AIFAA Football Analytics ("we", "us", or "our") is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR). This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our Service.

2. Data Controller

AIFAA Football Analytics is the data controller for personal data collected through this Service. You can contact us at:

Email: privacy@aifaa.nl
AIFAA Football Analytics
Eindhoven, Netherlands

3. Personal Data We Collect

We collect the following data:

3.1 Account Information

  • Email address (from your OAuth provider)
  • Name (from your OAuth provider)
  • Profile picture (from your OAuth provider)
  • Organization/Club affiliation

3.2 Football Match Data

  • Player tracking data (positions, movements)
  • Match video footage
  • Event data (passes, shots, etc.)
  • Derived analytics and metrics

3.3 Technical Data

  • IP address
  • Browser type and version
  • Usage patterns and access logs

4. Legal Basis for Processing (GDPR Article 6)

We process your personal data under the following legal bases:

  • Consent: You have given clear consent for us to process your personal data for the purposes of providing the Service
  • Contract: Processing is necessary for the performance of a contract with you or your organization
  • Legitimate Interest: Processing is necessary for our legitimate interests in improving and securing the Service

5. How We Use Your Data

We use your data to:

  • Provide and maintain the Service
  • Authenticate your identity and manage your account
  • Process and analyze football match data you upload
  • Generate analytics, visualizations, and reports
  • Improve and optimize the Service
  • Communicate with you about Service updates
  • Ensure security and prevent fraud

6. Data Storage and Security

Your data is stored securely on Microsoft Azure servers located in the European Union. We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption in transit (TLS/SSL) and at rest
  • Access controls and authentication
  • Regular security assessments
  • Data isolation between organizations

7. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. Match data is retained according to your organization's agreement with us. Upon account deletion or contract termination, we will delete your personal data within 30 days, unless required by law to retain it longer.

8. Your Rights Under GDPR

Under the GDPR, you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at privacy@aifaa.nl. We will respond within 30 days.

9. Third-Party Services

We use the following third-party services that may process your data:

  • Microsoft Azure: Cloud hosting and data storage (EU region)
  • Zitadel (OIDC): Authentication services

These services are GDPR-compliant and have appropriate data processing agreements in place.

10. International Data Transfers

Your data is primarily stored within the European Economic Area (EEA). If data needs to be transferred outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

11. Cookies and Tracking

We use essential cookies required for authentication and Service functionality. We do not use tracking or advertising cookies. Essential cookies include:

  • Session cookies for authentication
  • Security cookies to prevent fraud

12. Children's Privacy

The Service is not intended for individuals under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Service. The "Last updated" date at the top indicates when this policy was last revised.

14. Complaints

If you have concerns about how we handle your data, please contact us first at privacy@aifaa.nl. You also have the right to lodge a complaint with a supervisory authority. In the Netherlands, this is the Autoriteit Persoonsgegevens (www.autoriteitpersoonsgegevens.nl).

← View Terms of Service