GDPR Compliance Page for Victtory
Last Updated: 20 May 2025
Introduction
At Victtory, we are committed to protecting and respecting your privacy. This GDPR Compliance Page explains how we collect, use, store, disclose, and protect your personal data, and outlines your rights under the General Data Protection Regulation (GDPR). We strive to ensure full compliance with GDPR and other data protection laws.
By using Victtory, you agree to the practices outlined in this policy. We take data protection seriously and have implemented various measures to safeguard your personal information. Please read this page carefully.
1. Data We Collect
We collect the following types of personal data when you use Victtory:
Personal Data:
This includes identifiable information you provide during registration or profile creation:
Full name
Email address
Phone number
Date of birth
Country of residence
Password and authentication details
Profile Data:
Information uploaded to your profile:
Photos, videos, and performance highlights
Athletic statistics and achievements
Biographical details and resumes
Club history, agent details, and scouting preferences
Usage Data:
Automatically collected information when you use the Platform:
IP address
Device type and operating system
Browser type
Pages visited, features used, and session duration
Location data (based on IP or device permissions)
Communication Data:
Data from messages exchanged with other users (athletes, clubs, agents) and emails or support inquiries sent to Victtory.
Third-Party Data:
We may receive information about you from third-party services like Google, Facebook, or LinkedIn if you choose to link or sign in via these platforms.
2. Legal Basis for Processing Your Data
We process your personal data under the following legal bases:
Consent:
When you provide us with your data (e.g., during registration or profile creation), you consent to the collection and processing of your data.
Contractual Necessity:
The processing of your data is necessary to perform our contract with you, such as providing access to Victtory, facilitating connections, and offering services.
Legal Obligation:
We may need to process your personal data to comply with legal obligations (e.g., retaining data for legal reasons).
Legitimate Interests:
We process your data based on our legitimate interests, such as improving our platform, detecting fraud, and ensuring the safety and security of the platform and users.
3. Your Rights Under GDPR
Under the General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:
Right of Access:
You can request a copy of the personal data we hold about you and verify its accuracy.
Right to Rectification:
You can update or correct any inaccurate or incomplete personal data.
Right to Erasure:
You can request the deletion of your personal data when it is no longer necessary for the purposes for which it was collected, or if you withdraw your consent.
Right to Restrict Processing:
You can request that we restrict the processing of your data in certain circumstances (e.g., if you contest the accuracy of your data).
Right to Data Portability:
You can request your personal data in a structured, commonly used, and machine-readable format, and transfer it to another service provider.
Right to Object:
You can object to the processing of your data for certain purposes, including direct marketing and profiling.
Right to Withdraw Consent:
You can withdraw consent at any time where we rely on consent as the basis for processing your data.
Right to File a Complaint:
You have the right to file a complaint with a supervisory authority in your country of residence if you feel your rights under GDPR have been violated.
To exercise any of these rights, please contact us at privacy@vcsync.com.
4. Data Retention
We retain your personal data for as long as necessary to fulfill the purposes described in this policy. For example:
Profile Data:
We retain your profile data for the duration of your account, or as long as necessary to facilitate platform services.
Usage Data:
We retain aggregated, anonymized data for analytical purposes, but personal identifiers may be deleted within a reasonable time frame.
Once your account is deleted or you request deletion of your data, we will remove or anonymize your data, unless we are legally required to retain it.
5. Data Security
We implement industry-standard security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, secure data storage, and regular security audits.
However, please be aware that no data transmission over the internet is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security.
6. International Transfers
As Victtory operates globally, your personal data may be transferred to and processed in countries outside your country of residence, including the UAE and other jurisdictions with different data protection laws. By using Victtory, you consent to the transfer of your data to these countries and acknowledge that the data protection laws in those countries may not be as comprehensive as those in your jurisdiction. We take appropriate steps to ensure that your data is processed securely and in compliance with applicable laws.
7. Third-Party Data Processing Agreements (DPA)
We have formal Data Processing Agreements (DPA) with all third-party service providers who process your data on our behalf (such as payment processors, analytics providers, and others). These agreements ensure that third-party processors handle your personal data securely and in compliance with GDPR.
8. Data Protection Officer (DPO)
Given the nature of our services and the data we process, we have appointed a Data Protection Officer (DPO). The DPO is responsible for overseeing our data protection strategy and ensuring compliance with GDPR. If you have any concerns or need assistance regarding data protection, please contact our DPO at privacy@vcsync.com.
9. Cookie Consent Mechanism
In compliance with GDPR and the ePrivacy Directive, Victtory uses a cookie consent banner on the platform to inform users about the use of cookies and similar technologies. This banner allows you to accept or reject non-essential cookies and provides a link to our Cookies Policy for more details on how we use cookies.
10. Data Protection Impact Assessments (DPIA)
For processing activities that are likely to result in high risks to the rights and freedoms of individuals (such as sensitive data processing or large-scale data collection), we conduct Data Protection Impact Assessments (DPIAs). These assessments help us identify and mitigate potential risks associated with data processing activities.
11. Regular Data Audits & Minimization
We periodically audit the data we collect to ensure it remains necessary for the purposes for which it was collected. We adhere to the data minimization principle, which means we only collect data that is essential for our services. Any unnecessary or outdated data is safely deleted or anonymized.
12. Privacy by Design and Default
We integrate data protection measures into the development of new products, services, and business practices. This ensures that personal data is automatically protected in any system or process by default, in accordance with GDPR principles.
13. Changes to This Policy
We may update this GDPR Compliance Page periodically to reflect changes in law, technology, or our services. When we make updates, we will post the revised version on this page and update the “Last Updated” date. We encourage you to review this policy periodically. If there are significant changes, we will notify you via the platform or email.
14. Contact Us
If you have any questions, concerns, or requests regarding your personal data or this GDPR Compliance Page, please contact us:
Email: privacy@vcsync.com
Address: Dubai, UAE