Mi-Equipo Beta

Privacy Policy

Last updated: 3 de abril de 2026

1. Data controller

Mi-Equipo is a sports platform operated from Spain. The data controller details are:

2. Data we collect

We only collect the data necessary to provide the service:

  • Name: to personalize your experience.
  • Email: to create your account and for service communications.
  • Country: to show you TV channels for your region.
  • Google ID: only if you sign in with Google OAuth.
  • Sports preferences: sports, teams and players you follow.
  • Technical data: IP and User-Agent in server error logs (for diagnostics).

3. Purpose of processing

  • Manage your user account and authentication.
  • Personalize your sports content (standings, matches, news).
  • Send transactional emails (password recovery).
  • Diagnose technical service errors.

4. Legal basis

  • Consent: by creating your account you accept the processing of your data.
  • Contract performance: we need your data to provide the service.
  • Legitimate interest: error logs to maintain service security and stability.

5. Third parties with data access

We only share data with strictly necessary services:

  • Google OAuth: social authentication (if you choose to sign in with Google).
  • Resend: transactional email delivery (password recovery).

6. Data retention

Your data is retained while your account is active. Error logs are automatically deleted after 90 days. If you request account deletion, we will erase all your data within a maximum of 30 days.

7. Your rights

As a user, you have the following rights under GDPR:

  • Access: know what data we hold about you.
  • Rectification: correct inaccurate data.
  • Erasure: request the deletion of your data.
  • Portability: receive your data in a structured format.
  • Objection: object to the processing of your data.

To exercise these rights, contact [email protected]. You may also file a complaint with the Spanish Data Protection Agency (aepd.es).

8. Security

We apply technical and organizational measures to protect your data: passwords hashed with bcrypt, secure cookies (HttpOnly, Secure, SameSite), encrypted communications with HTTPS/TLS, CSRF protection, and security headers (CSP, HSTS).