Privacy Policy

Last Updated: July 29, 2025

1. Who We Are

Welcome to sportpersonalities.com (“Website”). Your privacy is critically important to us. Our website address is: https://sportpersonalities.com. The company responsible for your information (the “data controller”) is:

Rozeta-2009 EOOD
33 Hemus St., Sofia 1000, Bulgaria
Email for privacy inquiries: [email protected]

2. What Personal Data We Collect and Why We Collect It

We collect information to provide and improve our personality tests, reports, and related services (collectively, the “Services”). Personal data is generated from your direct interactions (like taking a test), technical processes (like cookies), and from third parties (like our payment processor).

2.1. Information You Provide to Us

Personality Test Data (Free & Premium): We collect your answers to our personality test questions. Under California law, this may be considered “Sensitive Personal Information.” We collect this data to generate your personality report. The legal basis for processing this is the performance of a contract (to provide the report you requested). You may have the right to limit our use of this information, as detailed in Section 6.2.

Contact and Account Information:

  • Guest Users (Free Report): We do not require an email address to provide the free report on-screen. If you choose to have the free report summary emailed to you, we collect your email address based on your consent.
  • Guest Users (Paid Report): To process your payment and deliver your Paid Report, we collect your email address. Our payment provider, Stripe, processes this transaction. Your email and test results are stored to provide you with access to the premium report.
  • Registered Users: If you create an account, we collect an email address and a hashed password. This allows you to save and access your results permanently.

Contact Form Submissions: If you contact us via a contact form or directly by email, we collect your name, email address, and any other information you provide in your message to respond to your inquiry. We retain these submissions for customer service purposes but do not use them for marketing unless you provide separate consent.

Marketing Communications: If you actively tick a box to subscribe to our newsletter, we use your email address to send you marketing content based on your explicit consent. You can unsubscribe at any time.

2.2. Information We Collect Automatically

Device and Usage Data: When you visit our Website, we automatically collect technical information, such as your IP address, browser type, device type, and operating system. This is processed based on our legitimate interest to secure our website and improve our Services.

Cookies and Tracking Technologies: We use cookies to operate and personalize our Website. A cookie is a small text file stored on your device.

  • Essential Cookies: These are necessary for the Website to function. For example, we use a cookie named sp_guest_session_token to remember your test progress and link you to your results as a guest user. These do not require your consent.
  • Analytics & Advertising Cookies: Provided by services like Google Analytics and Meta (Facebook Pixel), these help us understand traffic and show you relevant ads. We will only place these non-essential cookies on your device with your explicit consent, managed via our cookie banner.

3. How We Use Your Information

  • To Provide and Deliver Services: To process test answers, generate reports, handle payments, and deliver purchased reports via email.
  • To Improve Our Services: We use anonymized and aggregated test data for internal research. This helps us refine our algorithms and enhance our reports without identifying individuals.
  • For Customer Support: To respond to your questions and resolve issues.
  • For Marketing: With your consent, we send newsletters and special offers.
  • For Security: To monitor performance, prevent fraud, and protect our Services.
  • To Comply with Legal Obligations: To retain financial records for tax and accounting purposes as required by Bulgarian law.

4. Who We Share Your Data With

We do not sell your personal data. We only share information with trusted third-party service providers who help us operate our business:

  • Payment Processor: We use Stripe (USA) to process payments. Your payment details are provided directly to Stripe. We do not store your full credit card information. You can review Stripe’s Privacy Policy here.
  • Hosting Provider: Our Website is hosted by Hetzner Online GmbH (Germany). All primary website data resides on their secure servers within the European Union.
  • Email Service Providers: We use SMTP2GO (New Zealand) for transactional emails (like sending your report) and may use Mailchimp (The Rocket Science Group LLC, USA) for marketing emails.
  • Analytics and Advertising Partners: We may use Google (USA) and Meta (USA) for analytics and advertising. These services are only activated with your prior consent.

5. How Long We Retain Your Data

We keep your personal data only as long as necessary for the purpose it was collected.

  • Free Guest User Data: Test results and associated session data are stored for 7 days to allow you time to review or purchase a premium report. After this period, this data is automatically deleted.
  • Paid Guest User Data: To ensure you can access your purchased premium report, your report data (including email and test results) is retained for 365 days from the date of purchase. You are sent an email with a permanent link to access this report.
  • Registered Account Data: We retain your information (username, email, test results) for as long as your account is active. If you delete your account, your personal data is permanently erased.
  • Transaction Data: In accordance with Bulgarian law, we are required to retain all information related to financial transactions (invoices, payment records) for 10 years.

6. Your Data Protection Rights

As a user of our Services, you have certain rights regarding your personal data.

6.1. Your Rights Under GDPR

For individuals in the European Economic Area, you have the following rights:

  • The Right to Access: You can request a copy of the personal data we hold about you.
  • The Right to Rectification: You can request that we correct any inaccurate or incomplete data.
  • The Right to Erasure (“Right to be Forgotten”): You can request that we delete your personal data, under certain conditions.
  • The Right to Restrict Processing: You can request that we limit the way we use your data.
  • The Right to Data Portability: You can request that we transfer your data to another organization, or to you.
  • The Right to Object: You have the right to object to our processing of your data where we are relying on a legitimate interest.
  • Right to Withdraw Consent: Where we rely on your consent (for marketing or non-essential cookies), you can withdraw it at any time.

To exercise any of these GDPR rights, please contact us at [email protected].

6.2. Your Rights Under U.S. State Privacy Laws

For residents of U.S. states with applicable privacy laws (such as California, Virginia, and Colorado), you may have the following rights, subject to certain exceptions:

  • The Right to Know and Access: You have the right to request what personal information we have collected, used, disclosed, and sold about you over the past 12 months.
  • The Right to Delete: You have the right to request the deletion of your personal information that we have collected.
  • The Right to Correct: You have the right to request the correction of inaccurate personal information.
  • The Right to Opt-Out of Sale or Sharing: You have the right to opt out of the “sale” or “sharing” of your personal information for cross-context behavioral advertising. We address this in Section 14.
  • The Right to Limit Use of Sensitive Personal Information: You have the right to limit our use and disclosure of your sensitive personal information (such as your personality test data) to that which is necessary to perform the services you requested.
  • The Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights.

Exercising Your Rights: To exercise these rights, please contact us at [email protected]. We will need to verify your identity before processing your request and may ask for information to match with our records. You may also designate an authorized agent to make a request on your behalf.

7. International Data Transfers

While our primary hosting is in the EU, some of our third-party service providers (like Stripe, Google, Meta, and Mailchimp) are based in the United States. When we transfer your data outside the European Economic Area (EEA), we ensure it is protected by implementing appropriate safeguards recognized by the European Commission, such as Standard Contractual Clauses (SCCs) or by verifying the provider adheres to a framework like the EU-U.S. Data Privacy Framework.

8. How We Protect Your Data

We have implemented appropriate technical and organizational security measures to protect your personal data. Our website uses SSL/TLS encryption to protect data in transit. Access to personal data is restricted to authorized personnel only, and we follow principles of data minimization. User passwords are securely hashed and never stored in plain text.

9. What Data Breach Procedures We Have in Place

In the event of a data breach, we have procedures in place to assess the risk and impact. This includes internal reporting systems and contact mechanisms. If a breach is likely to result in a high risk to the rights and freedoms of individuals, we will notify the affected individuals and the relevant supervisory authority (the CPDP) without undue delay, in accordance with GDPR requirements.

10. What Third Parties We Receive Data From

When a guest user completes a purchase, we receive the customer’s email address from our payment processor, Stripe, in order to create and grant access to the premium report. We do not receive financial details like your full credit card number.

11. Children’s Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. In the United States, this is in accordance with the Children’s Online Privacy Protection Act (COPPA), and we do not knowingly collect information from anyone under the age of 13. If we become aware that we have inadvertently collected data from a child, we will take steps to delete it as soon as possible.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the “Last Updated” date at the top. We encourage you to review this policy periodically.

13. How to Lodge a Complaint

If you have any concerns about our use of your information, we kindly ask that you contact us first at [email protected] so we can address your issue. If you are not satisfied with our response, you have the right to lodge a complaint with the Bulgarian data protection authority: Commission for Personal Data Protection (CPDP)
Address: 2 Prof. Tsvetan Lazarov Blvd., Sofia 1592, Bulgaria
Website: www.cpdp.bg

14. Notice Regarding “Sale” or “Sharing” of Personal Information (California)

Under California law, the use of certain advertising and analytics cookies may be considered a “sale” or “sharing” of personal information. We use tools like Google Analytics and Meta (Facebook Pixel) to analyze our website traffic and deliver relevant advertising to you.

You have the right to opt out of this sharing. You can do so at any time by:

  • Rejecting non-essential cookies via our cookie consent banner.
  • Adjusting your cookie preferences through a “Privacy Settings” or “Do Not Sell or Share My Personal Information” link in our website footer.

15. “Do Not Track” Signals

Some web browsers transmit “Do Not Track” (DNT) signals. At this time, there is no industry-standard response to DNT signals, and we do not alter our data collection or use practices when we receive such a signal. We will continue to monitor the development of DNT standards.

Scroll to Top