Internespo > Guide > FAQs > Privacy & Rights
Privacy & Rights
Internespo takes your privacy and rights very seriously. Learn how we comply with US and international privacy & data protection laws and how we adhear to the highest data protection standards.
Key Takeaways
- Internespo does not sell your personal information or other data
- Internespo adheres to the highest data protection standards (GDPR)
- Your can request to delete your profile, personal information or other data
Notes on Data Protection
Internespo.com is a free to use college soccer platform generally available to the public. Just like other social media platforms, Internespo’s primary purpose is to facilitate the creation and sharing of information, photos and videos as well as other contents by its users. Learn more about Internespo and how to use it in our FAQs under about Internespo.
We, Internespo.com, take the protection of your personal data seriously, and would like to take this opportunity to inform you about data protection in our company. We are a Florida, US based company, but have users from all over the world with great interest in college sports in the United States. In order to adhere to the highest data protection standards, we have committed to the national, as well as to the most stringent European data protection legislation – as described below.
As part of our responsibility under data protection law, the entry into force of the EU General Data Protection Regulation (Regulation (EU) 2016/279; hereinafter “GDPR”) has imposed obligations on us to protect the personal data of persons affected by processing (we also refer to these as “users” or “data subjects”). Insofar as we decide on the purposes and means of data processing either alone or together with others, this primarily includes the obligation to transparently inform you about the type, scope, purpose, duration and legal basis of the processing (consequently Art. 13 and Art. 14 DS-GVO).
Data processing differs between visitors and registered users of the internespo.com website. If you visit this website as a non-registered user, little happens to your personal data. However, as a registered user (see C.) or if you consciously contact us, e.g. write us an e-mail, for example via the contact form or the service mailbox, more data processing takes place. Therefore, our following data protection declarations have a modular structure. First of all, under A. General, we want to name, for example, those responsible and inform you about your rights. Under B. Visiting the website and C. Use of services, we explain the data processing in these cases.
Please note that registration is only possible from the age of 13. Please also see our Terms and Conditions (§ 3.3 Link to terms of use )
A. General Information
This part of our data protection information consists of information that we always have to provide you with, as it applies to every processing situation of personal data:
1. Name and address of the data processor
The responsible body for processing your personal data within the meaning of Art. 4 No. 7 GDPR is:
-
- Internespo LLC
- 4225 Amped Wy, Land O’ Lakes, FL 34638, United States
- Tel. +1 (813)-422-0554
- E-Mail: info@internespo.com
2. Contact details of the data protection officer
Our data protection officer is available at all times to answer any questions you may have and to act as your contact person on the subject of data protection.
2.1 Contact information:
Benedikt Breitschopf, E-Mail: benedikt.breitschopf@internespo.com
-
- Internespo LLC
- 4225 Amped Wy, Land O’ Lakes, FL 34638, United States
- Tel. +1 (813)-422-0554
- E-Mail: info@internespo.com
3. Legal basis for data processing
In principle, any processing of personal data is prohibited by law and is only permitted if the data processing falls under a legal justification. In the following, we will give you the applicable legal basis for the data processing operations carried out by us. Processing can also be based on several legal bases at the same time.
4. Data deletion and storage duration
For the data processing operations we carry out, we indicate below how long your data will be stored by us and when it will be deleted or blocked. If no explicit storage period is specified below, your data will be deleted or blocked as soon as the purpose or legal basis for the storage no longer applies. Your data will only be stored on our servers in the United States, subject to any transfer that may have taken place in accordance with the regulations in A. (6.) and A. (7.).
However, storage can take place beyond the specified time in the event of an (impending) legal dispute with you or other legal proceedings or if storage is provided for by statutory provisions to which we as the person responsible are subject. If the storage period prescribed by legal regulations expires, the personal data will be blocked or deleted unless further storage by us is necessary and there is a legal basis for this.
5. Data security
We use appropriate technical and organizational security measures in accordance with the state of the art to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or against unauthorized access by third parties. In doing so, we take into account the scope and purpose of the data processing as well as the existing risks of a data breach (including its probability and the effects on the person concerned). Our security measures are improved continuously in order to meet state-of-the-art requirements.
We will be happy to provide you with further information on request. For this purpose, please contact our data protection officer (see under A. (2.)).
6. Cooperation with processors
Our web server is in the United States. The hosting of the entire portal has been taken over by Google LLC 1600 Amphitheatre Parkway in Mountain View, California. An order processing contract in accordance with Art. 28 GDPR was concluded with them.
Insofar as we use external domestic and foreign service providers to process our business, they will act according to our instructions and have been contractually obliged to comply with data protection regulations within the meaning of Art. 28 GDPR.
7. Transfer of personal data
A transfer of your personal data to third parties for purposes other than those listed below does not take place. We will only pass on your personal data to third parties if you have given
-
- your express consent to do so in accordance with Art. 6 (1) p. 1 lit. a of the GDPR;
- the disclosure in accordance with art. 6 para 1 sentence 1 lit.f GDPR is required to assert, exercise or defend legal claims and there is no reason to assume that you have a predominantly legitimate interest in not disclosing your data;
- in the event that disclosure in accordance with art. 6 para. 1 s. 1 lit. c) of the GDPR is a legal obligation, as well as
- if this is legally permissible and in accordance with Art. 6 para. 1 s. 1 lit. b) of the GDPR, and is required for the development of contractual relationships with you, or
this is done for a service provider acting on our behalf and exclusively on our instructions, whom we have carefully selected (Art. 28 para. 1 GDPR) and with which we have entered into a corresponding contract for order data processing (Art. 28 Para. 3 GDPR) (see also A. 7.), which, among other things, obliges our contractor to implement appropriate security measures and grants us extensive control powers.
A transfer to the aforementioned service providers for the purpose of order processing takes place in the following areas:
-
- Contact requests via the contact form
- Inquiries via our service mailbox info@internespo.com
- Use of the mailing functionality for videos, pictures, comments.
8. Your rights
You can assert your rights as a data subject with regard to your processed personal data at any time using the contact details given in the entrance under A. 2. As a data subject, you have the right:
To request information about your data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the processing purposes, the category of data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of the data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details;
- In accordance with Art. 16 GDPR, to immediately request the correction of incorrect data or the completion of your data stored by us;
- In accordance with Art. 17 DS-GVO, to request the deletion of your data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal positions;
- In accordance with Art. 18 GDPR, to request the restriction of the processing of your data if you dispute the correctness of the data or the processing is unlawful;
- In accordance with Art. 20 GDPR, to receive your data that you have provided to us in a structured, common and machine-readable format or to request the transfer to another person responsible (“data portability”);
- To object to the processing in accordance with Art. 21 GDPR, provided that the processing is based on Art. 6 Para. 1 sentence 1 lit.e or lit.f GDPR. This is particularly the case if the processing is not only necessary to fulfill a contractual relationship with you. Unless it is an objection to direct marketing, if you exercise such an objection, please explain why you do not want us to process your data as we do. In the event of a justified objection, we will examine the situation and either discontinue or adapt the data processing or show you our compelling reasons worthy of protection on the basis of which we will continue the processing;
- According to Art. 7 para. 3 GDPR, your consent once given, i.e. your voluntary will, made understandable in an informed manner and unambiguously by a statement or other unambiguous confirming action, that you agree to the processing of the personal data concerned for one or more specific purposes – to be revoked at any time vis-à-vis us, if you have given such consent. As a result, we would then no longer be allowed to continue processing the data obtained previously on the basis of this consent and
- In accordance with Art. 77 GDPR, to complain to a data protection supervisory authority about the processing of your personal data in our company, for example to the data protection authority responsible for us:
9. Changes to this data protection notice
In the context of the further development of data protection law as well as technological or organizational uses, our data protection information is regularly reviewed for the need to adapt or supplement it. We will keep you informed of any changes on our website at Internespo.com. This data protection notice is dated Feb 2023. You can call up and print out the current data protection declaration at any time at https://guide-internespo.com/privacy-and-rights/
B. Visiting the website
During the informative use of our website, i.e. when you call up our website, information is automatically sent to our website server by the browser used on your end device.
1. Personal data processed
This is what is known as “log data”. This information is stored temporarily and anonymously as a so-called log data record (so-called server log files). This log record consists of:
-
- the page from which the page was requested (so-called referrer URL)
- IP address of the requesting computer, which is shortened in such a way that a personal reference can no longer be established
- Date and time of access
- Name and URL of the requested page describing the type, language and version of the web browser used
- The amount of data transmitted
- the operating system
- the message whether the call was successful (access status / http status)
- the GMT time zone difference.
Contact form data: When contact forms are used, the data transmitted through them are processed (e.g. gender, surname and first name, address, company, e-mail address and time of transmission).
2. Purpose and legal basis of data processing
We process the personal data specified above in accordance with the provisions of the GDPR, the other relevant data protection regulations and only to the extent necessary. Insofar as concerns the processing of personal data is based on Art. 6 Para. 1 sentence 1 lit.f GDPR (processing to safeguard legitimate interests), we also present the purposes mentioned below.
The data listed will be processed by us for the following purposes:
-
- ensuring a smooth connection to the website;
- ensuring convenient use of our website;
- Review and guarantee of system security and stability as well
- for other administrative purposes.
The legal basis for data processing is art. 6 para. 1, p. 1, lit. f of the GDPR. Our legitimate interest derives from the aforementioned purposes for data collection. Under no circumstances will we use the data collected for the purpose of drawing conclusions about you.
3. Duration of data processing
Your data will only be processed for as long as is necessary to achieve the above-mentioned processing purposes, for which the legal bases specified in the context of the processing purposes apply accordingly. With regard to the use and storage duration of cookies, please see point B. 5.
4. Transmission of personal data to third parties; Legal basis
The following categories of recipients, who are usually processors (see A. 6), may have access to your personal data:
-
- Service provider for the operation of our website and the processing of the data stored or transmitted by the systems (e.g. for data center services, payment processing, IT security). The legal basis for the disclosure is then Art. 6 para. 1 p. 1 lit.b or lit.f GDPR, unless it is a processor;
- government agencies / authorities, insofar as this is necessary to fulfil a legal obligation. The legal basis for the disclosure is then Art. 6 para. 1 p. 1 lit. c GDPR
- Persons employed to carry out our business operations (e.g. auditors, banks, insurance companies, legal advisors, supervisory authorities, parties involved in company acquisitions or the establishment of joint ventures). The legal basis for the disclosure is then Art. 6 para. 1 p. 1 lit.b or lit.f GDPR.
In addition, we will only pass on your personal data to third parties if you, according to Art. 6 Para. 1 S. 1 lit. a GDPR, have given your express consent to this.
5. Use of cookies and web analytics
a) General information on cookies
We use cookies on our website. Cookies are small text files that are assigned and saved on your hard drive to the browser you are using by means of a characteristic string of characters and through which certain information flows to the place that sets the cookie. Cookies cannot run programs or transfer viruses to your computer and therefore cannot cause any damage. They serve to make the Internet offer on our website more user-friendly and effective overall, i.e. more pleasant for you.
Cookies may contain data that make it possible to recognize the device used. In some cases, however, cookies only contain information on certain settings that cannot be related to individuals. However, cookies cannot identify a user directly. A distinction is made between session cookies, which are deleted again as soon as you close your browser, and permanent cookies, which are stored beyond the individual session. With regard to their function, a distinction is made between cookies
-
- and technical cookies: These are absolutely necessary in order to move around the website, to use basic functions and to guarantee the security of the website; they do not collect information about you for marketing purposes, nor do they store which websites you have visited;
- Performance cookies: These collect information about how you use our website, which pages you visit or, for example, whether errors occur when using the website; they do not collect any information that can identify you – all information collected is anonymous and is only used to improve our website and to find out what interests our users;
- advertising cookies, targeting cookies: These serve to offer the website user needs-based advertising on the website or offers from third parties and to measure the effectiveness of these offers; Advertising and targeting cookies are stored for a maximum of 12 months
- sharing cookies: These are used to improve the interactivity of our website with other services (e.g. social networks); Sharing cookies are stored for a maximum of 12 months
Any use of cookies that is not absolutely technically necessary constitutes data processing that is only permitted with your explicit and activated consent pursuant to Art. 6 (1) p. 1 lit. a GDPR. This applies in particular to the use of advertising, targeting or sharing cookies. We use the previously mentioned so-called session cookies and temporary cookies. If you visit our site again to use our services, it is automatically recognized that you have already visited us and which entries and settings you have made so that you do not have to enter them again.
The legal basis for the use of these cookies is Art. 6 Para. 1 p. 1 lit.f GDPR in order to make our website available to you in an appropriate manner. On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you, in order to further develop our offer and in particular our website. In this respect, the processing of these cookies is in our legitimate interest covered by Art. 6 (1) p. 1 lit. f GDPR. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. The complete deactivation of cookies, however, may result in you being unable to use all the features of our website.
b) Web analytics
We use various analysis services that use cookies to statistically record the use of our website, to evaluate it for the purpose of optimizing our offer and to further develop our offer and in particular our website. In this respect, the processing of these cookies is in our legitimate interests covered per 1 p. 1 lit.f GDPR:
c) Cookie overview
The name of the cookie. | Company | Classification | Purpose | Service life |
---|---|---|---|---|
_ga_* | Google Analytics | Statistics | With Google Analytics Data, user data can be indetefied anonymously. More information can be found here: www.google.com/intl/en/analytics/privacyoverview.html | 1 year |
_hjSession_* | Hotjar Ltd. | Functional | Holds current session data. Ensures subsequent requests in the session window are attributed to the same session. | The cookie is deleted as soon as the browser is closed or the user logs out. |
_hjIncludedInSessionSample | Hotjar Ltd. | Statistics | Determine if a user is included in the data sampling defined by your site’s daily session limit. | 30 mins |
nonce | Internespo LLC | Technical cookie | This cookie reduces the risk of remote code execution through cross-site scripting. | The cookie is deleted as soon as the browser is closed or the user logs out. |
XSRF-TOKEN | Internespo LLC | Technical cookie | This cookie increases the security of the website and is intended to prevent attacks by Cross-Site Request Forgery. | The cookie is deleted as soon as the browser is closed or the user logs out. |
_hjAbsoluteSessionInProgress | Hotjar Ltd. | Statistics | Used to detect the first pageview session of a user. | 30 mins |
_csrf | Internespo LLC | Technical cookie | This is an anti-CSRF token used to prevent Cross-Site Request Forgery (CSRF) attacks. | The cookie is deleted as soon as the browser is closed or the user logs out. |
_hjIncludedInPageviewSample | Hotjar Ltd. | Statistics | Set to determine if a user is included in the data sampling defined by your site’s pageview limit. | 30 mins |
_ga | Internespo LLC | Analytics cookie | With Google Analytics Data, user data can be indetefied anonymously. More information can be found here: www.google.com/intl/en/analytics/privacyoverview.html | The cookie is deleted as soon as the browser is closed or the user logs out. |
_hjSessionUser_* | Hotjar Ltd. | Functional | Persists the Hotjar User ID which is unique to that site. Ensures data from subsequent visits to the same site are attributed to the same user ID. | 1 year |
session | Internespo LLC | Technical cookie | This cookie is set when you log in to save the login session. | 5 days |
6. Social media
We do not use any social media plugins on our website. If our website contains symbols from social media providers (Instagram, Twitter, Facebook), we only use them for passive linking to the respective provider’s website.
You can find more information on the purpose and scope of data collection and its processing by the social provider in the data protection declarations of these providers. There you will also find further information about your rights in this regard and setting options to protect your privacy. The responsibility for the data protection-compliant operation of these services lies with the respective social media provider.
7. Integration of YouTube videos
We have included YouTube videos in our online service, which are stored on http://www.youtube.com and are playable directly from our website.
The legal basis for this is Art. 6 para. 1 p. 1 lit.f GDPR in order to make our website more interesting for visitors and users and to be able to transport content better. The integration of YouTube is based on a legitimate interest according to Art. 6 para. by Art. 6 (1) p. 1 lit. f GDPR.
If you call up a corresponding link on our website, a direct connection will be established between your browser and the YouTube server. This gives YouTube the information that you have visited our site with your IP address. Only when you play the video will data be transferred. We have no influence on this data transfer. This takes place, regardless of whether YouTube provides a user account, via which you are logged in, or if no user account exists. If you are logged into Google, your data will be assigned directly to your account. If you do not wish to be assigned to your profile on YouTube, you must log out there before activating the button. YouTube stores your data as usage profiles and uses it for the purposes of advertising, market research and/or requirements-oriented design of its website. Such evaluation also takes place (even for users who are not logged in) for the purposes of providing customized advertising and informing other social network users about activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise it.
You can find more information on the purpose and scope of data collection and processing by YouTube in their privacy policy. There you will also find further information about your rights in this regard and setting options to protect your privacy.
https://policies.google.com/ Google also processes your personal data in the USA.
8. GOOGLE RECAPTCHA
We use the Google RECAPTCHA function on our website to check and prevent automated access (by so-called bots). This service enables Google to find out on which website, at what time and with which IP address a request is being sent. Furthermore, the user behavior is evaluated in order to be able to distinguish human users from bots (e.g. mouse or touchpad movements, the time spent on the website, language settings and browser plug-ins, etc.). The legal basis for using Google RECAPTCHA is a legitimate interest in accordance with Art. 6 Para. 1, p. 1, lit. f of the GDPR. The legitimate interest here is the security of our website, in particular the defense against undesired, automated access and inquiries by bots, such as spam.
This service is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The parent company is Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Further information can be found at https://www.google.com/recaptcha. The Google Ireland privacy policy is available at https://policies.google.com/privacy.
9. Hotjar
We use Hotjar in order to better understand our users’ needs and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users’ experience (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback. Hotjar uses cookies and other technologies to collect data on our users’ behavior and their devices. This includes a device’s IP address (processed during your session and stored in a de-identified form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), and the preferred language used to display our website. Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually forbidden to sell any of the data collected on our behalf. For further details, please see the ‘about Hotjar’ section of Hotjar’s support site.
C. Processing
Processing when using individual services, especially as a registered user
Various services are available on our website Internespo.com, for which we collect personal data from you if you decide to use them. Below you will find the other services and the types of personal data processed, the purpose of processing, the legal basis and the time of deletion of the data. We have to transfer your data to third parties for various reasons. For information on this, please refer to the following explanations.
1. Registration of a profile
You can register on our website with a user account. With regard to the required mandatory information, we also refer to our terms of use, from which the relevant information can also be found. We collect the following data for the user account:
-
- First and last name
- Email address
- Date of birth
- Password
If you set up such an account, you will also be sent a so-called transaction email from our side.
These are emails in which you are asked, for example, to verify your e-mail address for a “double opt-in” or, for example, a link to reset your password using the “forgot password” function.
2. Deletion of user account
If you would like to have your user account deleted, you can contact us at any time:
-
- Internespo LLC
- 4225 Amped Wy, Land O’ Lakes, FL 34638, United States
- E-Mail: info@internespo.com
If we have retention obligations for certain data, the data is blocked instead of being deleted.
You May Also Like …
Cost & Fees – Its Free
Internespo is free for everyone. Every user or institution receives the same free rate. There are no hidden costs or fees associated with our services.
Table of Contents
In our table of contents you can find all articles that are posted in Internespo’s College Sports Guide
Coaches & Universities
Internespo offers a new way for colleges and coaches to engage with their community. Our free platform is specifically designed for colleges and their sports teams, creating a free space for students, athletes, friends and family, who want to be part of your community.