Privacy Policy

Last updated: 1 June 2026

This Privacy Policy explains how Toms Laus ("Oli Sport", "we", "us", or "our"), the data controller, collects, uses, shares, and protects personal data when you use the Oli Sport sports team management application ("the Application"). We process personal data in accordance with the EU General Data Protection Regulation (GDPR) and Latvian data protection law.

Data Controller and Contact

Controller: Toms Laus
Address: Brivibas gatve 341-11, Riga, Latvia
Email: tomslaus@gmail.com

For any privacy question or to exercise your rights, contact us at the email above.

Eligibility (Adults Only)

The Application is intended for users who are at least 16 years old. It is an amateur sports team management tool and is not directed to children under 16. We do not knowingly collect personal data from children under 16. If you believe a child has provided us personal data, contact us and we will delete it.

1. Personal Data We Collect

Account data (provided by you when you register): first name, last name, email address, phone number, and (where provided) date of birth and time zone.

Team and player data (entered by team managers): the names of players and team members a manager adds to their team, attendance, event participation, and related team activity. Managers are responsible for ensuring they have the right to add this information (see Section 7).

Payment data: when you purchase a subscription or process team payments, payment is handled by our payment processors (Apple App Store / Google Play via RevenueCat, and Stripe). We do not store full card numbers; we receive transaction status and limited billing metadata.

Technical and usage data: device information, crash and diagnostic logs, and limited app-interaction data used to keep the Application stable and secure.

2. Why We Process Your Data and Legal Bases

- To provide the Application and its core features (accounts, teams, events, payments) — legal basis: performance of a contract (Art. 6(1)(b)).
- To keep the Application secure, stable, and to prevent abuse, including crash/diagnostic logging — legal basis: our legitimate interests (Art. 6(1)(f)).
- To process subscription and team payments — legal basis: performance of a contract and compliance with legal (e.g. accounting) obligations.
- For crash reporting and product analytics — to keep the Application stable and to improve it. These are enabled by default; you can turn either off at any time in the app (Profile → Data & privacy). Legal basis: our legitimate interests, and your consent where required.
- To send you service communications and respond to support requests — legal basis: legitimate interests / performance of a contract.

3. Sub-processors and Third Parties

We use the following service providers ("processors") to operate the Application:

- Google / Firebase (authentication, hosting, crash reporting, push messaging) — Google.
- RevenueCat (subscription management).
- Stripe (payment processing).
- Google Maps / Places (venue search), where you use location features.

These providers process data on our behalf under data processing agreements. We do not sell your personal data. We may disclose data where required by law or to protect our legal rights.

4. International Data Transfers

Some of our processors are located outside the European Economic Area (e.g. in the United States). Where data is transferred outside the EEA, it is protected by appropriate safeguards such as the European Commission's Standard Contractual Clauses and/or the EU–US Data Privacy Framework.

5. Data Retention

We keep your account data for as long as your account is active. When you request deletion, your account is marked for deletion and permanently erased after a 30-day grace period (during which you can cancel deletion). Diagnostic and crash data is retained for up to 90 days. Payment and transaction records may be retained longer where required by law (e.g. accounting and tax obligations).

6. Your Rights

Under the GDPR you have the right to: access your data; rectify inaccurate data; erase your data ("right to be forgotten"); restrict or object to processing; data portability; and to withdraw consent at any time (without affecting prior processing). You can edit your data in the Application, request deletion from within the app, or contact us at tomslaus@gmail.com.

You also have the right to lodge a complaint with the Latvian supervisory authority:
Data State Inspectorate (Datu valsts inspekcija), Elijas iela 17, Riga, LV-1050, Latvia — www.dvi.gov.lv.

7. Team Managers and Player Data

If you add other people (players or team members) to a team, you are responsible for that information and confirm that you have a lawful basis and the right to provide it. Only add the minimum information needed (such as a name). Because the Application is for users 16 and older, you should not add personal data of children under 16.

8. Data Security

We use industry-standard measures to protect your data, including encrypted (SSL/TLS) transmission and authenticated access. No method of transmission or storage is 100% secure, but we work to protect your data and to notify you and the supervisory authority of any breach as required by law.

9. Changes to This Policy

We may update this Policy from time to time. We will update the "Last updated" date above and, where changes are significant, notify you within the Application.

10. Contact

Questions or requests: Toms Laus, tomslaus@gmail.com.