top of page

Privacy Policy 

**BOOMBASE Sports Management Privacy Plan**

**I. Overview**

This Privacy Plan is crafted to govern the management, collection, use, and disclosure of personal and non-personal information by BOOMBASE, both in its sports management activities and e-commerce operations. Protecting the privacy of our clients, athletes, customers, and website users is paramount to maintaining trust and integrity.

**II. Scope**

This plan applies to all personal and non-personal information collected through our sports management services, sales of products, website interactions, mobile applications, and any affiliated services.

**III. Objectives**

- Ensure compliance with applicable data protection laws and regulations.
- Protect the rights and privacy of individuals whose data is collected and processed.
- Minimize risks related to data breaches and unauthorized access.

**IV. Data Collection and Use**

1. **Types of Data Collected:**
   - Personal Identification Information (PII): Name, address, email, contact number, etc.
   - Financial Information: Credit/debit card details, bank account details for transactions.
   - Browsing Data: Cookies, IP addresses, and other related browsing information.

2. **Purposes of Data Collection:**
   - Facilitating transactions and fulfilling orders.
   - Managing athletes’ schedules, contracts, and performance data.
   - Personalizing user experience and providing relevant offers.
   - Ensuring security and fraud prevention.
   - Complying with legal obligations.

**V. Data Sharing and Disclosure**

BOOMBASE commits to not selling, leasing, or trading user data to third parties. Data may be disclosed to:
- Service providers, under strict confidentiality agreements.
- Legal entities when obligated by law or in the event of a merger or acquisition.

**VI. Data Security**

1. **Security Measures:**
   - Utilizing encryption technologies (e.g., SSL) for secure data transmission.
   - Employing firewall and anti-virus software to safeguard against unauthorized access.
   - Restricting access to personal data to authorized personnel only.
   - Regularly updating security systems and protocols.

2. **Data Breach Response:**
   - Immediate identification and mitigation of the breach.
   - Notifying affected individuals and regulatory bodies, as mandated by law.
   - Implementing corrective actions to prevent future breaches.

**VII. Data Retention and Deletion**

- BOOMBASE will retain personal data only as long as necessary for its lawful purposes.
- Procedures will be established to identify and securely dispose of data that is no longer needed.

**VIII. User Rights and Control**

1. **Access and Correction:**
   - Users have the right to request access to and correction of their personal data.
2. **Data Portability:**
   - Upon request, users shall be provided with their data in a structured, commonly used format.

3. **Withdrawal of Consent:**
   - Users can withdraw consent for data use and request data deletion, subject to legal and contractual limitations.

**IX. Cookie Policy**

- An explicit cookie consent banner shall be implemented.
- Users will have the option to control, disable, and manage cookies through their browser settings.

**X. Third-Party Links and Services**

- BOOMBASE’s website may contain links to third-party websites and services. Users are encouraged to review the privacy policies of these external entities.

**XI. Changes to the Privacy Plan**

- Any changes to the privacy plan will be communicated promptly to users through the website or email.

**XII. Contact and Complaints**

- Users can contact the Data Protection Officer (DPO) for any queries, requests, or complaints regarding their data.

**XIII. Training and Awareness**

- Regular training sessions shall be conducted to ensure that all BOOMBASE employees are aware of and compliant with this privacy plan.

**XIV. Legal and Regulatory Compliance**

- BOOMBASE will adhere to all applicable local and international data protection laws and regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), ensuring that the company's data processing practices are lawful and transparent.

**Review and Approval**

This Privacy Plan shall be reviewed annually or as required by changes in law or business practices. Any alterations will be approved by the top management and communicated to relevant stakeholders.

bottom of page