Sportevrica Privacy Policy

Version dated: April 28, 2026

1. Controller

Personal data controller: Artem Yuryevich Zhukov, professional income tax payer (self-employed), Tax ID/INN 162305231864, city: Kazan, Russia. Privacy contacts: [email protected], +7 953 489-27-24.

This Policy applies to https://sportevrica.com, accounts, free features and paid PRO Access.

2. Data We Process

Depending on Service use, we may process:

• email, name, user ID, registration date and profile update date;
• password hash, hashed verification codes, tokens and technical session identifiers;
• Google OAuth data when Google sign-in is used: Google ID, name, email and avatar URL if provided by Google;
• payment and subscription data: payment number, provider, plan, amount, currency, status, payment method, payment date and payment provider callback data;
• technical data: IP address, user agent, request date/time, URL, interface language, errors, security data and server logs;
• data the User sends to support.

Sportevrica does not store bank card details. Those details are processed by the payment provider on its side.

3. Purposes and Legal Bases

Data is processed to:

• create accounts, sign users in, verify email and protect against unauthorized access;
• provide free and paid access, account for subscriptions and payments;
• perform the agreement and Public Offer;
• send technical emails, verification codes, support replies and account messages;
• ensure security, prevent fraud, investigate failures and keep logs;
• comply with law, tax accounting, claims handling and Provider rights protection.

For Russian users, legal bases include data subject consent, performance of contract, legal obligations and legitimate interests to the extent permitted by Russian Federal Law No. 152-FZ. For EEA/UK users, legal bases may include performance of contract, legitimate interests, legal obligations and consent where required.

4. Cookies, localStorage and Similar Technologies

4.1. The Service uses technical storage necessary for website and account operation. The authorization token is stored in the User's browser localStorage.

4.2. Third-party services, such as payment providers or Google OAuth, may use their own cookies and similar technologies on their pages under their own policies.

4.3. As of this version, the Service code does not include separate advertising tracking analytics. If such tools are added, this Policy must be updated and consent will be requested where required by law.

5. Data Sharing

Data may be shared only as necessary with:

• hosting and infrastructure providers;
• email providers for verification codes and service messages;
• payment providers, including Robokassa, for payment processing and confirmation;
• Google, if the User selects Google sign-in;
• data providers and technical contractors where necessary for Service operation;
• public authorities, courts, banks and payment systems where required by law, claim, payment dispute or rights protection.

The Controller does not sell personal data.

6. International Transfers and Localization

6.1. The Service works for users in different countries, so some infrastructure, authentication, payment or support providers may be located outside the User's country.

6.2. For personal data of Russian citizens, the Controller must comply with Russian requirements on recording, systematization, accumulation, storage, updating and retrieval using databases located in the Russian Federation where applicable.

6.3. International transfers use available legal mechanisms and safeguards to the extent required by applicable law.

7. Retention

7.1. Account data is stored while the account is active and for the period necessary to perform the agreement, protect rights and comply with tax, accounting and other mandatory requirements.

7.2. Payment and subscription records are stored as needed for accounting, claims, refunds, chargebacks and legal compliance.

7.3. Technical logs are generally stored for a limited period needed for security and diagnostics, unless longer retention is required for incident investigation or rights protection.

7.4. The User may request account deletion. Deletion does not affect data the Controller is required or permitted to retain by law, for payment records, disputes, security and rights protection.

8. Security

The Controller applies reasonable organizational and technical safeguards: access restriction, hashing passwords and codes, server security logs, HTTPS access and separation of data access. No transmission or storage method is absolutely secure.

9. User Rights

The User may request access, correction, deletion, restriction, withdrawal of consent, objection, a portable copy of data and information about data sharing where the relevant right applies.

Requests must be sent to [email protected]. To protect the account, the Controller may request identity or email ownership verification.

Russian users may also contact Roskomnadzor. EEA/UK users may contact their data protection supervisory authority.

10. Children

The Service is not intended for children. If the User's country requires a minimum age for independent consent to data processing or use of sports analytics/materials, the User confirms they meet that age. If an underage account without required consent is identified, access may be restricted.

11. Changes

The Controller may update this Policy. A new version is effective upon publication on the website unless a later date is specified. For material changes, the Controller may notify the User via the website, account or email.

12. Contacts

Artem Yuryevich Zhukov, Tax ID/INN 162305231864, city: Kazan, Russia, self-employed professional income tax payer.
Email: [email protected]
Phone: +7 953 489-27-24