Football Agent Mate
Last Updated: 12 July 2026 (revised)
ELite Consulting Agency LLC (“we”, “us”, or “our”), a limited liability company registered in Wyoming, USA, operates the Football Agent Mate mobile application (the “App”) available on iOS and Android. Football Agent Mate is a trademark of ELite Consulting Agency LLC. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you use our App, and describes the rights available to you under applicable privacy law.
By downloading or using the App, you confirm that you have read and understood this Privacy Policy. If you do not agree with any part of it, please do not use the App.
This policy applies to users worldwide. Where local law grants you specific rights or imposes additional obligations on us, the relevant sections below address those requirements. We have designed this policy to comply with, among others:
Football Agent Mate is a mobile application owned and operated by ELite Consulting Agency LLC, a limited liability company registered in Wyoming, USA. For all privacy-related inquiries or data subject requests, please contact us at:
Operator: ELite Consulting Agency LLC
Registered in: Wyoming, USA
Support email: support@footballagentmate.com
Legal enquiries: info@elite-consulting-agency.xyz
Website: https://www.footballagentmate.com/
Football Agent Mate is designed exclusively for professional football agents and sports industry professionals. The App is not intended for, and should not be used by, anyone under the age of 18. We do not knowingly collect personal data from minors. If you believe a minor has created an account, please contact us immediately and we will delete the account and any associated data.
We collect data that you provide directly, data generated by your use of the App, and technical data collected automatically by our infrastructure and third-party services.
Note on future data collection: As the App evolves, we may collect additional categories of personal data — for example, additional profile fields (such as business address or professional certifications) or subscription and billing data. This Privacy Policy will be updated before any new category of data is collected, and where required by law you will be notified and asked to consent. We will never collect a new category of data silently.
When you register or complete your agent profile, we collect:
Note on gender data: Gender information is collected voluntarily to help personalise your experience. Under the GDPR and UAE PDPL, gender information when combined with other identifying data may be treated as personal data requiring explicit consent. By providing your gender, you explicitly consent to its collection and processing for the purposes described in this policy. You may update or remove this information at any time from your profile settings.
When you add players to your CRM, you provide and we store:
This data is strictly private to your account. It is never shared with other users of the App. It is subject to Firestore security rules that grant read/write access only to the agent who created the record.
As noted in Section 3.3 of our Terms of Service, you act as an independent data controller for all player data you store, including player gender. You are responsible for ensuring you have a lawful basis — such as contractual necessity or explicit consent from the player — to collect and store their gender information.
When you publish a market post, you choose which information to include. This may include:
If you select “anonymous posting”, the player's photo, Transfermarkt link, external links, and the link to your CRM player record are automatically stripped before the post is saved. Only the data you explicitly choose to share is visible to other agents.
When you send or receive messages within the App, we store:
Messages are immutable — they cannot be edited or deleted after sending.
We use Firebase Authentication to manage sign-in. Depending on the sign-in method you choose, we process:
We store your device's Firebase Cloud Messaging (FCM) token in a private, access-controlled subcollection of your user account. This token is never visible to other users and is used solely to deliver push notifications for new messages to your device. If the token becomes stale (device changed or notifications revoked), we delete it automatically.
The App is currently free. When paid subscription features are introduced, we will collect or receive through a third-party payment processor:
We will never store full payment card numbers, CVV codes, or bank account details. All payment processing will be handled by a PCI-DSS compliant third-party payment processor. We will receive only the tokenised billing references and summary data needed to manage your subscription.
The following data is collected automatically by the Firebase SDKs integrated into the App:
| Firebase Service | Data Collected | Purpose |
|---|---|---|
| Firebase Analytics | App instance ID, device model and OS version, screen views, session duration, general geographic region (derived from masked IP) | Understanding how agents use the App; improving features |
| Firebase Crashlytics | Crash stack traces, device and OS information, Crashlytics Installation UUID | Diagnosing and fixing bugs |
| Firebase Performance Monitoring | App startup time, HTTP request latency and response codes (excluding body content), device model, OS version | Monitoring and improving App performance |
| Firebase Remote Config | App version, platform | Delivering feature flags and configuration |
| Firebase App Check | Device attestation tokens | Preventing abuse and unauthorised API access |
| Firebase Authentication | Auth-related identifiers as described above | Identity management |
| Cloud Firestore | User IDs included with authenticated requests | Enforcing access control rules |
Firebase Performance Monitoring is disabled in debug builds and active only in production releases. Analytics and Crashlytics collection can be disabled at the application layer for GDPR opt-out purposes.
We use your data for the following purposes and on the following legal bases:
| Purpose | Legal Basis (GDPR) | PDPL Basis |
|---|---|---|
| Creating and managing your account | Performance of contract | Contractual necessity |
| Collecting and storing agent gender information | Explicit consent | Explicit consent |
| Collecting and storing player gender information (CRM) | Explicit consent (yours, as data controller for your players) | Explicit consent |
| Providing the Player CRM | Performance of contract | Contractual necessity |
| Publishing and displaying market posts you create | Performance of contract | Contractual necessity |
| Delivering real-time messages between agents | Performance of contract | Contractual necessity |
| Sending push notifications for new messages | Performance of contract / Legitimate interests | Contractual necessity |
| Diagnosing crashes and fixing bugs (Crashlytics) | Legitimate interests | Legitimate interests |
| Monitoring App performance (Firebase Performance) | Legitimate interests | Legitimate interests |
| Analysing aggregate usage to improve the App (Analytics) | Legitimate interests | Legitimate interests |
| Enforcing our Terms of Service and preventing abuse | Legitimate interests / Legal obligation | Legal obligation |
| Complying with applicable laws and responding to legal requests | Legal obligation | Legal obligation |
| Displaying your public agent profile to other authenticated agents | Performance of contract | Contractual necessity |
| Enforcing remote configuration (e.g. app version gating) | Legitimate interests | Legitimate interests |
| Managing your subscription and processing payments (future) | Performance of contract | Contractual necessity |
We do not use your personal data for advertising, behavioural profiling, or sale to third parties.
We do not sell your personal data. We share data only as described below.
The following information is visible to other authenticated football agents within the App:
Your phone number, email address, and FIFA licence number are never shared with other users.
We use the following third-party services to operate the App. Each acts as a data processor under an agreement with the applicable provider:
| Provider | Service | Data Shared | Location |
|---|---|---|---|
| Google LLC (Firebase) | Authentication, database (Firestore), file storage, push notifications (FCM), analytics, crash reporting, performance monitoring, app check, remote config | See Firebase section above | Data stored in EU (eur3 — Belgium) |
| Apple Inc. | Sign in with Apple (iOS) | Authentication tokens, email | United States |
| Google LLC | Google Sign-In | Authentication tokens, email | United States |
Our Firestore database is located in the eur3 (European multi-region, Belgium) region. All data at rest is stored within the European Union.
We may disclose your data if required to do so by law, court order, or governmental authority, or where we believe in good faith that disclosure is necessary to protect the rights, property, or safety of ELite Consulting Agency LLC, our users, or the public.
If ELite Consulting Agency LLC undergoes a merger, acquisition, or asset sale, your data may be transferred as part of that transaction. We will provide notice before your data is transferred and becomes subject to a different privacy policy.
The App is operated from the UAE, and our primary data infrastructure (Firebase) is hosted in the EU (eur3). When data is transferred between regions — for example, when you use Google Sign-In (processed in the United States) — we rely on Google's standard contractual clauses and its status as a provider with approved safeguards under applicable data protection law.
If you are located in the EU or UK, transfers to the United States are covered by Google's data processing agreements incorporating EU Standard Contractual Clauses.
If you are located in the UAE, we comply with Article 26 of the UAE PDPL regarding cross-border transfers by ensuring receiving parties offer an adequate level of protection equivalent to UAE standards.
We retain your data for as long as your account is active or as long as necessary to provide the services you have requested.
| Data Type | Retention Period |
|---|---|
| Account and profile data | Until account deletion |
| Player CRM records | Until manually deleted by you, or until account deletion |
| Market posts | Until closed or expired and then deleted at account deletion |
| Messages | Until account deletion (conversations persist between participants; upon deletion of your account, your messages remain but are disassociated from your profile) |
| Firebase Crashlytics data | 90 days (Google's default retention) |
| Firebase Analytics data | 14 months (Google's default retention; configurable) |
| Firebase Performance data | 90 days (Google's default retention) |
| FCM push notification tokens | Until the token becomes stale (auto-deleted) or until account deletion |
| Subscription and billing records (future) | For the duration of your subscription plus 7 years, as required by applicable financial record-keeping law |
When you delete your account, we perform a sequential deletion of: (1) your Firebase Storage files (profile photo, player photos, documents), (2) your Firestore user document and all subcollections, and (3) your Firebase Authentication record. Storage and Firestore deletion failures are logged as non-fatal errors but do not prevent account deletion from completing.
Depending on your location and applicable law, you may have the following rights in relation to your personal data:
| Right | Description |
|---|---|
| Access | Request a copy of the personal data we hold about you |
| Rectification | Request correction of inaccurate or incomplete data |
| Erasure | Request deletion of your personal data (you can also delete your account directly from the App's Settings screen) |
| Restriction | Request that we restrict processing of your data in certain circumstances |
| Portability | Receive your data in a structured, commonly used, machine-readable format |
| Objection | Object to processing based on legitimate interests |
| Withdraw Consent | Where processing is based on consent, withdraw that consent at any time without affecting the lawfulness of prior processing |
UAE PDPL Rights: If you are a UAE data subject, you have the rights listed above under Federal Decree-Law No. 45 of 2021, including the right to access your data, correct inaccuracies, object to processing, and request deletion. We will respond to verified requests within 30 days.
GDPR / UK GDPR Rights: If you are located in the EU or UK, you have the rights listed above and the right to lodge a complaint with your local supervisory authority (for EU users: your national data protection authority; for UK users: the Information Commissioner's Office at ico.org.uk).
To exercise any of these rights, contact us at support@footballagentmate.com. We may ask you to verify your identity before processing your request. We will respond within 30 days (or such shorter period as required by applicable law).
Most rights can be exercised directly within the App:
The App requests the following device permissions:
| Permission | Platform | Purpose |
|---|---|---|
| Photo Library | iOS | Selecting player photos, market post images, and profile pictures |
| Face ID / Touch ID | iOS | Optional app-lock re-authentication |
| Biometric (Fingerprint / Face Unlock) | Android | Optional app-lock re-authentication |
| Push Notifications | iOS & Android | Receiving new message alerts |
The App uses the system Photo Picker on Android (no READ_MEDIA_IMAGES permission required) and accesses the photo library on iOS for gallery image selection only. There is no in-app camera capture — the camera permission is not requested on either platform.
We implement the following measures to protect your data:
No method of transmission or storage is 100% secure. If you become aware of a security vulnerability or a breach affecting your data, please contact us immediately at support@footballagentmate.com.
The App integrates the following third-party SDKs that may collect device or usage data:
| SDK | Provider |
|---|---|
| Firebase Auth, Firestore, Storage, Analytics, Crashlytics, FCM, Performance, Remote Config, App Check | Google LLC |
| Google Sign-In | Google LLC |
| Sign in with Apple | Apple Inc. |
We do not integrate any advertising SDKs, ad networks, or data broker services. We do not use Apple's Advertising Identifier (IDFA) or Google's Advertising ID (GAID).
Firebase Analytics collects anonymised, aggregated usage data to help us understand how the App is used and improve it. This data is not linked to personally identifiable information beyond a random app instance ID.
To opt out of analytics collection:
Firebase Analytics GDPR opt-out support is wired into the App. If you are an EU/UK user and wish to disable analytics collection, contact us at support@footballagentmate.com and we will configure the opt-out for your account.
Football Agent Mate is not directed at children and is intended for use only by adults aged 18 and over. We do not knowingly collect personal data from anyone under 18. If we become aware that we have collected personal data from a minor, we will take immediate steps to delete it. If you believe a child has used the App, please contact us at support@footballagentmate.com.
We may update this Privacy Policy from time to time. When we make material changes, we will:
Your continued use of the App after the updated policy takes effect constitutes your acceptance of the revised terms. If you do not agree with the changes, you may delete your account at any time.
For any privacy-related questions, data subject requests, or concerns, please contact us at:
ELite Consulting Agency LLC
Support email: support@footballagentmate.com
Legal enquiries: info@elite-consulting-agency.xyz
Website: https://www.footballagentmate.com//contact
We aim to respond to all privacy enquiries within 5 business days and to fulfil data subject rights requests within 30 days (or such other period as required by applicable law).