Living Football is our commitment to the people who love the beautiful game – and that includes the way we process your personal data. We’re proud that you trust us to look after your data and our team members work hard to keep all personal information safe and secure.
When it comes to data, we follow two main laws – the General Data Protection Regulation (GDPR) and the Swiss Data Protection Act (DPA) – as well as other national data protection legislation in the places where we operate.
Click on the boxes to find out more about the law, our policies and how we defend your data at FIFA. We may update this policy from time to time, but you’ll always find the latest information here on our website.
At FIFA, we always play by the rules. Data protection laws are complex, so all team members who deal with personal data get the right training to make sure they’re match fit when it comes to your information. Our approach is based on the following four data principles – the game plan we all strive to follow when it comes to data:
1. We process your data lawfully, fairly and transparently.
2. We collect data for a specific purpose. Once we’ve fulfilled that purpose, we won’t process your data again.
3. We keep your data accurate and up to date, only retaining it for as long as we need it.
4. We keep all personal data confidential, accurate and available.
The people we collect data from have the following rights under the DPA and GDPR:
• The right to be informed about how we collect and use data
• The right to access the data we hold on you
• The right to correct any inaccurate or incomplete data
• The right to have your data deleted
• The right to restrict processing of your data
• The right to obtain a copy of your data
• The right to object to us using your data for a particular purpose
• The right to remove consent for using your data
• The right to object to automated decisions and profiling
When it comes to your data, fair play is everything. We promise to collect, process and use your data lawfully, based on your consent and in compliance with all our legal obligations. That means we’ll only ever use your data to help us bring football to the world, improve our services or deliver a product or service that you’ve asked for.
To do this, we use data in lots of different ways. We’ll always tell you how your data will be used when we collect it.
We use data to:
· Share information about the game we all love
· Deliver the products, services and transactions you’ve asked for
· Up our game, by using your data to improve how we deliver services and information
· Allocate and sell tickets fairly – after all, no one wants to miss out!
· Manage your account and any memberships you have
· Enhance our digital services and make them even easier to use
· Create content, such as videos
· Let you know about products, events and offers
· Share news about products, events and offers from third parties we work with, with your consent
· Answer your questions and comments
· Keep our competitions safe and secure by stopping any potential illegal activity
· Customise the advertising you see
· Comply with our Terms of Service
The data we collect depends on the services you use.
Using our online services
Where applicable, we collect your email address, last name, first name, country of residence, date of birth, gender, screen name, password, IP address, gaming preferences, content preferences, credit card number and billing information.
Browsing our websites
Whether you have a FIFA account or not, we automatically collect some data when you visit our websites. This includes your IP address, web-browser software and referring website. We may also collect information about how you use our site – we use this to up our game and make our website even better.
Sometimes our website, or advertising on our site, has links to external websites. Third-party sites aren’t covered by our policy, so it’s a good idea to check the data protection information of any new site you visit.
We collect your title, first name, last name, organisation name (for group sales), date of birth, gender, email address, telephone number, nationality, address, preferred language, ticket details (for example, numbers, price category, match information, block, row, seat and barcode), your acceptance of legal documents, disclaimers and opt-ins, proof of eligibility (for applicants with accessibility needs), and any additional ticket-related requirements.
Paying for tickets or services
We may ask for your credit card details and billing information when you buy tickets, products or services.
· To provide the product or service you’ve requested
· When third parties process data on our behalf
· As a result of a subpoena, court order or other legal process
· To investigate, prevent or tackle illegal activity (e.g. fraud), emergency situations or violations of our terms
· With your consent, we share information with Coca-Cola and Panini for the Panini Digital Sticker Album
· When you give us your consent to share your data with other third parties
We’ve got all sorts of tactics to keep your data safe and we’re proud of the work our team members do to defend your data. But we can never guarantee that your data is safe from accidental loss and/or unauthorised access, use, alteration or disclosure. To help protect you from identity theft, we will never ask for your credit card information, account credentials or national identification/passport number by email or phone.
If you send sensitive information by unencrypted email, there’s always a risk that your data will be intercepted. If you send us an unencrypted email, we’ll take it that you’re happy to accept that risk.
If you suspect someone unauthorised is trying to access your data, please get in touch with us at firstname.lastname@example.org.
We don’t collect personal data from children under 16. Under-16s should always ask a parent/guardian for permission to use our digital services. We recommend that parents and guardians clear their browser cache of cookies to minimise the personal data collected. If we find out we’ve collected data from a child without permission, we’ll delete it.
We process information in Switzerland, the European Economic Area (EEA) and other places, depending on the location of our business partners and third parties. That means your data may be processed in places where the data protection laws aren’t as strict as in Switzerland and the EEA. We’ll take all reasonable steps to make sure your information is as safe there as it would be under the DPA and GDPR.
There’s nothing like the thrill of a FIFA competition – and sometimes, the competition for tickets is almost as fierce as the action on the pitch! When applying for tickets, you agree that your data will be used, processed and stored by FIFA and our third parties. We’ll use your data for things like ticket production, sales, allocation, customer care, safety, security and rights protection. If you consent, we’ll also use your data to tell you about other FIFA products and events, as well as products and services from our third parties.
Have we scored an own goal with your data? Or do you want to request a VAR review to see what’s happened to your information? If you’d like to submit a query or make a complaint, contact us at email@example.com. Our data protection referees may ask you to prove your identity before we can deal with your query/complaint.
If you’re not happy with our response, you have the right to complain to the Swiss Federal Data Protection and Information Commissioner, or to an EEA data protection authority. Under certain circumstances, we have the right to withhold access to your data.
• We wrote this policy in English, then translated it. If there are any translation issues, we’ll use the original English version to clear them up.
• This policy was issued in November 2020.
• We may amend this policy from time to time. If we make any changes, we’ll post them here on our website.
• If this policy conflicts with any of our third parties’ data protection policies, this policy will be used.
• This policy and all related matters are governed by Swiss law.
• Any dispute relating to this policy is subject to the jurisdiction of the Courts of the City of Zurich 1. You consent to this by using our site and services.
Got a question?
Contact our Data Protection Officer by email at firstname.lastname@example.org. You can also write to us at Fédération Internationale de Football Association (FIFA), FIFA-Strasse 20, 8044 Zurich, Switzerland.
We also have EU data protection representatives. Write to them at VGS Datenschutzpartner UG, Am Kaiserkai 69, 20457 Hamburg, Germany.