Privacy Policy

How Scoutwizz collects, uses and protects your personal data.

1. Controller

The data controller is Scoutwizz d.o.o. za računalne djelatnosti, Josipa Jurja Strossmayera 341, 31000 Osijek, Croatia (OIB: 42784099246). Contact: info@scoutwizz.com

2. Data We Collect

We collect the following categories of personal data:

  • Account data: name, email address, password (hashed), organisation name
  • Payment data: billing information processed securely by Stripe — we do not store card numbers
  • Usage data: pages visited, features used, timestamps, IP address, browser/device type
  • User-generated content: scouting reports, player notes, and other content you create on the platform
  • Communications: emails and messages you send to our support team

3. Legal Basis and Purpose

Performance of a contract (Art. 6(1)(b) GDPR)

Creating and managing your account, processing payments, providing platform access

Legitimate interests (Art. 6(1)(f) GDPR)

Platform security, fraud prevention, improving our services, direct marketing to existing users

Consent (Art. 6(1)(a) GDPR)

Analytics cookies (Google Analytics), marketing communications where required

Legal obligation (Art. 6(1)(c) GDPR)

Issuing fiscal receipts, retaining accounting records as required by Croatian law

4. Third-Party Processors

We share data with the following processors who act on our behalf:

  • Stripe — payment processing (United States, EU Standard Contractual Clauses apply)
  • Amazon Web Services (AWS) — file storage and infrastructure (EU region)
  • Google — OAuth authentication and, where consented, Google Analytics (United States, EU SCC apply)
  • Oracle Cloud — supplementary file storage

We do not sell your personal data to third parties.

5. Data Retention

  • Account and profile data: retained for the duration of your account plus 12 months after deletion
  • Payment and billing records: 5 years as required by Croatian accounting law
  • Analytics data: up to 26 months (Google Analytics default)
  • Support communications: 2 years from last contact

6. Your Rights (GDPR)

You have the following rights regarding your personal data:

  • Access — request a copy of data we hold about you
  • Rectification — correct inaccurate data
  • Erasure — request deletion ("right to be forgotten")
  • Portability — receive your data in a machine-readable format
  • Objection — object to processing based on legitimate interests
  • Withdraw consent — at any time for consent-based processing (e.g. analytics cookies)
  • Lodge a complaint — with the Croatian data protection authority (AZOP)

To exercise any of these rights, contact us at info@scoutwizz.com. We will respond within 30 days.

7. Cookies

We use strictly necessary cookies for platform functionality (session management, authentication) and, with your consent, analytics cookies via Google Analytics to understand platform usage. You can withdraw cookie consent at any time by clearing your browser cookies and re-visiting the site. For full details see our cookie information above.

8. Security

We implement appropriate technical and organisational measures to protect your data, including encrypted data transmission (TLS), hashed passwords, access controls, and regular security reviews. In the event of a data breach that poses a risk to your rights, we will notify you and the competent supervisory authority within 72 hours.

9. Changes to this Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes by email or via an in-app notice. The current version is always available at scoutwizz.com/privacy. Last updated: March 2026.