1. Introduction & Controller
This Privacy Policy explains how the iScore Football Android application ("App", "we", "our") collects, processes, and uses your data when you use the App. We are committed to protecting your privacy and complying with applicable data protection laws, including the EU General Data Protection Regulation (GDPR / DSGVO) and the California Consumer Privacy Act (CCPA).
Data Controller
Melih Ramazan Öztürk
Germany
Contact: iscoresport@gmail.com
A formal Data Protection Officer is not required under Art. 37 GDPR for this application, as the processing is not carried out on a large scale and does not involve special categories of data as a core activity.
2. Data We Collect
The App collects only the minimum data necessary to provide its features.
| Data | Purpose | Storage | Transmitted? |
|---|---|---|---|
| Favorite team selections (IDs & names) | Personalise main screen | Local device only | No |
| Preferred national team selection | Personalise main screen | Local device only | No |
| Dashboard card layout / order | Remember UI preferences | Local device only | No |
| User-submitted feedback text | Improve the App | Sent to Notion (see §5) | Yes — only if you submit |
| Crash reports & diagnostics | Detect and fix bugs | Sent to Firebase Crashlytics | Yes — automatic |
| App usage analytics | Understand feature usage | Sent to Firebase Analytics | Yes — automatic |
| League / team / fixture IDs (query parameters) | Fetch football data | Sent to sports data APIs | Yes — automatic |
We do not collect: your name, email address, phone number, location data, contacts, payment information, or any biometric data.
3. Legal Basis for Processing (GDPR Art. 6)
- Legitimate Interest (Art. 6(1)(f)) — crash reporting and analytics to maintain a stable, functional App.
- Consent (Art. 6(1)(a)) — feedback text is only sent when you explicitly click the "Send" button.
- Contract Performance (Art. 6(1)(b)) — API requests for football fixtures, standings, and statistics are necessary to deliver the core service you requested.
4. Firebase Services (Google)
The App integrates Firebase services provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA):
- Firebase Crashlytics — collects anonymised crash reports including device model, OS version, app version, and the stack trace at the time of a crash. No personal identifiers are intentionally included.
- Firebase Analytics — collects pseudonymous usage events such as screens viewed, session duration, and device/OS metadata.
- Firebase Authentication — used for anonymous authentication only. No email or password is required or stored.
- Cloud Firestore — may store your team-selection preferences linked to an anonymous Firebase Auth UID.
Data processed by Firebase may be transferred to and stored on Google servers in the United States. Google participates in the EU–US Data Privacy Framework. See firebase.google.com/support/privacy for Google's data processing terms.
GDPR Standard Contractual Clauses — Google offers SCCs for Firebase; details at privacy.google.com/businesses/processorterms.
5. Notion (Feedback Only)
When you voluntarily submit feedback via the in-app feedback form, the text you enter (maximum 200 characters) is transmitted to Notion Labs Inc. (2300 Harrison Street, San Francisco, CA 94110, USA) via its API. The feedback is stored in a private Notion database accessible only to the App developer and is used solely to improve the App. No other personal data is attached.
Notion's privacy policy: notion.so/privacy.
6. Sports Data APIs
To fetch football fixtures, standings, lineups, and statistics, the App sends requests to a custom backend server and to RapidAPI / API-Football. These requests contain only sport-related identifiers (league IDs, team IDs, fixture IDs) and standard HTTP metadata (IP address, user-agent). No personal data you have entered is included. Team and league logo images are loaded from media.api-sports.io.
7. Data Retention
| Data | Retention Period |
|---|---|
| Local preferences (teams, card order) | Until you uninstall the App or clear app data |
| Crash reports (Firebase Crashlytics) | 90 days (Firebase default) |
| Analytics data (Firebase Analytics) | 14 months (Firebase default) |
| Feedback text (Notion) | Until deleted by the developer; typically reviewed and deleted within 6 months |
8. Your Rights (GDPR)
If you are located in the EU / EEA, you have the following rights under the GDPR:
- Right of access (Art. 15) — request a copy of your data.
- Right to rectification (Art. 16) — correct inaccurate data.
- Right to erasure (Art. 17) — request deletion of your data.
- Right to restriction (Art. 18) — limit how your data is used.
- Right to data portability (Art. 20) — receive data in a machine-readable format.
- Right to object (Art. 21) — object to processing based on legitimate interest.
- Right to lodge a complaint with a supervisory authority — in Germany, the competent authority is the Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (BfDI).
To exercise any right, contact us at the address in §1. We will respond within 30 days (as required by GDPR Art. 12).
9. California Residents (CCPA)
If you are a California resident, you have the right to know what personal information we collect, request deletion, and opt out of the "sale" of personal information. We do not sell personal information. To submit a CCPA request, contact us at the address in §1.
10. Children's Privacy
The App is not directed at children under the age of 13 (or 16 where required by law). We do not knowingly collect personal information from children. If you believe a child has provided personal information through the App, please contact us and we will delete it promptly.
11. Security
We implement reasonable technical measures to protect data in transit and at rest. Feedback submissions and API responses use HTTPS encryption. Local preferences are stored in Android's DataStore on your device. However, no transmission over the internet can be guaranteed to be completely secure.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted at this URL. Material changes will be communicated via an in-app notice. The date at the top of this page reflects the most recent update. Continued use of the App after changes constitutes acceptance.
13. Contact
For any privacy-related questions or requests:
Melih Ramazan Öztürk
Email: iscoresport@gmail.com