Trusted by the Cyprus Football Association with national-team data. Compliant with GDPR, Cyprus data protection law, and EU regulation. Built for minors' data with age-appropriate safeguards.
Full compliance with EU General Data Protection Regulation (Regulation 2016/679). Data minimisation, purpose limitation, lawful basis for processing, right to access and erasure.
Compliant with Cyprus's Protection of Natural Persons with Regard to the Processing of Personal Data law. Governed by the laws of the Republic of Cyprus.
Match data, video and player records hosted on enterprise cloud infrastructure (AWS) in European Union regions. Your data stays in the EU.
We work with U14–U19 players. Their data deserves more protection, not less. Our platform is designed around that reality.
Players see only their own data. No cross-player comparisons shown to the player themselves. No public profiles. Names and identifiers handled only as needed.
Every user accesses only what their role requires. Coaches see their team. Directors see their academy. Scouts see only clubs they're granted access to. Strict boundaries enforced at the platform level.
Every client contract includes explicit confidentiality of match analysis, reports, video clips and player data. Used solely for the client's internal sporting purposes.
Match video, event-level data (220 labels per match), player performance metrics, derived metrics from SCIOS proprietary indices.
Personal data beyond what's needed for sporting analysis. No financial data, no medical data (unless explicitly part of a fitness programme).
Match data and clips kept for the contract duration plus an agreed retention period. Upon contract termination, data is returned or permanently deleted per the client's instructions, with written certification.
Only authorised users from the client organisation, plus the SCIOS analysts contracted to deliver the service. Multi-tenant isolation enforced at the platform level.
Never. Client data is never shared with other clients, used for marketing, sold, or licensed to third parties — except with the client's explicit written consent.
Documented breach response process. Notification to affected clients within 72 hours per GDPR. Cooperation with the Cyprus Commissioner for Personal Data Protection.
Detailed legal documents available below. For procurement teams, security questionnaires and DPAs (Data Processing Agreements) available on request.
How we collect, use and protect personal data.
Standard contract terms for platform and services.
How we use cookies and similar tracking technology.
Data Processing Agreement for enterprise procurement.
Privacy questions: privacy@scienceofsports.net
