DRAFT — pending legal review. Not yet legally binding. Confirm the contact address, ABN, and retention periods before publishing.

Privacy Policy

Last updated: 7 June 2026

1. Who we are

The Football Blueprint (“we”, “us”) provides software that helps football clubs manage teams, players, fixtures, training and communication. This policy explains how we handle personal information in line with the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs).

2. Information we collect

  • Account holders: name, email, role, and the club/teams you belong to.
  • Players (including children): name, date of birth, position, squad number, registration number, and photos where provided.
  • Sensitive information: player medical conditions, allergies and injury notes, and wellness check-ins — collected only to support player welfare and safety.
  • Guardians: name and contact details linked to a player.
  • Usage data: basic logs needed to operate and secure the service.

3. Children’s information & parental consent

The service is used by clubs to manage youth players. Player records (including any sensitive medical information) must only be entered by an authorised club official with the consent of the player’s parent or guardian. Guardians may request access to, correction of, or deletion of their child’s information at any time (see section 7).

4. How we use information

To provide the service (team and player management, scheduling, availability, wellness, communication and billing), to keep it secure, and to meet legal obligations. We do not sell personal information.

5. Disclosure & overseas processing (APP 8)

We use trusted service providers to run the platform. Some process data outside Australia:

  • Google Firebase (hosting, database, authentication) — data hosted in Australia.
  • Stripe (payments) — overseas.
  • Anthropic (AI features such as session and report drafting) — overseas (United States). We do not send children’s personal information to the AI service.
  • SendGrid / Twilio (transactional email) — overseas.
  • Dribl (optional competition/fixture sync) — where a club connects it.

6. Security

Each club’s data is logically isolated and access is controlled by role. Data is encrypted in transit. No system is perfectly secure; we work to protect information and to notify affected people of any eligible data breach as required by the Notifiable Data Breaches scheme.

7. Your rights

You may request access to or correction of your information, ask us to delete it, or make a complaint. Contact us using the details below. If you are not satisfied you may contact the Office of the Australian Information Commissioner (OAIC).

8. Retention

We keep personal information only as long as needed to provide the service or meet legal requirements, then delete or de-identify it.

9. Contact

For privacy enquiries or to exercise your rights, reach us via our contact form.

Terms of Service·Back to sign in