Last updated: 17.11.2025

1. Controller & Contact Details

The controller responsible for the processing of your personal data on this website is:

soccer4kids KG Attn: Carlos Andres Ramirez Glasergasse 22/10 1090 Vienna (Wien) Austria Phone: +43 676 3163189 Email: office@susasoccer.rocks If you have any questions about this Privacy Policy or about how we process personal data, you may contact us using the details above.

2. Scope of this Privacy Policy

This Privacy Policy applies to all personal data that is collected when you visit our website https://academy.susasoccer.rocks/ or interact with us through it, including data submitted through registration or contact forms.

We process personal data only where one of the following legal bases applies (Art. 6 GDPR): - Consent (Art. 6(1)(a)) – e.g., when you agree to receive communication or allow non-essential cookies. - Contract or pre-contractual steps (Art. 6(1)(b)) – e.g., when you submit a registration form. - Legal obligations (Art. 6(1)(c)). - Legitimate interests (Art. 6(1)(f)) – e.g., ensuring the security of our website, improving our services.

When you submit a registration or contact form, we collect the data you provide, such as: - Name - Email address - Phone number (optional) - Any message or information you enter We use this data to: - process your registration or enquiry - communicate with you - manage participation in our programs or activities 4.2 Technical and usage data

When you visit our website, we may collect: - IP address (shortened or anonymised if applicable) - browser type and version - device information - pages visited, date and time - log files required for security and functionality This data is needed to ensure the stability, security, and correct functioning of the website. 4.3 Cookies

Our website uses cookies. Some are technically necessary; others require your consent (e.g., analytics or marketing cookies). For details, please refer to our Cookie Policy and the cookie banner, where you can modify or withdraw your consent at any time.

We only share personal data when necessary and only with trusted service providers, such as: - web hosting providers - email or communication service providers - analytics tools (only if consent was given) - IT/security providers All service providers act under a GDPR-compliant data processing agreement. We do not sell personal data.

6. International Data Transfers If personal data is transferred outside the European Economic Area (EEA), this is done only where appropriate safeguards exist (e.g., EU adequacy decisions or Standard Contractual Clauses).

We retain personal data only for as long as needed for the purposes described above, or as required by law. Once data is no longer required, it is deleted or anonymised.

You have the following rights regarding your personal data: - Right of access - Right to rectification - Right to erasure (“right to be forgotten”) - Right to restriction of processing - Right to data portability - Right to object to processing based on legitimate interests or for direct marketing - Right to withdraw consent at any time (without affecting prior processing)

If you believe your rights have been violated, you may lodge a complaint with the Austrian Data Protection Authority (DSB).

We implement appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, and alteration. However, no internet transmission is ever completely secure.

We may update this Privacy Policy from time to time. The version published on this website always reflects the most current policy.