Security Architecture

Enterprise-Grade Security by Default

๐Ÿ”
OAuth2 / OIDC Authentication
Industry-standard single sign-on with multi-factor authentication support. No passwords stored in LeaguEvo.
๐Ÿข
Multi-Tenant Data Isolation
Every organization's data is fully isolated. Cross-tenant access is blocked by architecture โ€” not just policy.
๐Ÿ›ก๏ธ
Role-Based Access Control (RBAC)
Hierarchical roles: Super Admin โ†’ Org Admin โ†’ League Admin โ†’ Club Admin โ†’ Team Captain โ†’ Player. Least-privilege by default.
๐Ÿ“‹
Policy-Based Authorization
Sensitive data access is controlled by role, org type, team assignment, consent status, classification, and purpose.
๐Ÿ”
Full Audit Trail
Every sensitive action is logged with who, what, when, and before/after values. Exportable for compliance reviews.
๐Ÿ”‘
Encryption at Rest & in Transit
All data encrypted in transit (TLS 1.3). Emergency contacts, medical info, and restricted fields encrypted at rest.
Privacy & Consent Management

Privacy Center โ€” Member View

โœ…
Privacy Policy Accepted
Version 2.1 โ€” Accepted March 1, 2026
โœ…
Photo Release Consent
Granted โ€” Match photos and social media use permitted
โš™๏ธ
Communication Preferences
Email: Match updates, Payment reminders ยท SMS: Disabled ยท Marketing: Opt-out
๐Ÿ“ฅ
Download My Data
Request a full export of your personal data stored in LeaguEvo
๐Ÿ—‘๏ธ
Delete My Data
Request deletion of personal data (subject to legal retention requirements)
๐Ÿ’ก Privacy Rights LeaguEvo supports data download, deletion requests, consent management, communication preferences, and marketing opt-out โ€” designed to meet CCPA/CPRA and Texas privacy law requirements from day one.
Data Classification & Protection Levels
ClassificationExamplesAccess ControlEncryptionAudit
Public Team name, match scores, standings Anyone In transit No
Internal Player roster, schedule drafts Authenticated members In transit Changes only
Confidential Financial records, board minutes, sponsor agreements Role-restricted (Officers, Treasurer) At rest + transit All access
Sensitive Emergency contacts, payment details, parent/guardian info Policy-based (need + role + consent) At rest + transit All access + views
Restricted Medical records, background checks, concussion history Explicit authorization required At rest + transit + field-level All access + views + exports
Youth Participant & Parent/Guardian Protection

COPPA-Compatible Safeguards

Parent/Guardian Controls

โœ… Parent/guardian as primary account holder for youth under 13
โœ… Parental consent required before creating child profiles
โœ… Parent controls communication preferences for minors
โœ… Emergency contacts encrypted at rest, audit-logged on view
โœ… Pickup authorization tracking for youth events
โœ… Parent can download or request deletion of child's data

Access Restrictions

๐Ÿ”’ Only assigned coaches/captains see youth player details
๐Ÿ”’ Medical/injury info requires explicit policy authorization
๐Ÿ”’ Background check records: restricted classification
๐Ÿ”’ No marketing communications to youth without consent
๐Ÿ”’ AI agents cannot access restricted youth data
๐Ÿ”’ All youth data views create audit entries
Regulatory Compliance Readiness
CCPA / CPRA
Ready
Privacy rights, opt-out, deletion
Texas Privacy
Ready
Consent, access, portability
PCI DSS
Compliant
No card data stored
COPPA
Supported
Parent-first consent model
FERPA
Available
School/district mode
SOC 2
On Track
Audit + access evidence
WCAG 2.2 AA
Target
Accessibility-first UI
501(c)(3)
Built-in
Form 990 readiness
RegulationWhat LeaguEvo DoesYour Benefit
CCPA / CPRA Data download, deletion requests, consent records, opt-out workflows, communication preferences Members can exercise privacy rights directly from their profile
PCI DSS Hosted payment flows via Stripe โ€” card numbers, CVV, and expiration never touch LeaguEvo servers Zero PCI scope for your organization. Only payment IDs and receipt URLs stored.
COPPA Parent/guardian-first accounts, verified consent before child profile creation, restricted marketing Youth programs can operate safely with proper parental controls
FERPA School-controlled access, audit trails, retention policies, parent access rights, export controls School and district deployments meet educational privacy requirements
501(c)(3) / IRS Board records, meeting minutes, donation tracking, Form 990 readiness checklist, UBIT risk flagging Nonprofits stay organized for annual filings and potential audits
Payment Security

PCI DSS Scope Reduction

โŒ Never Stored in LeaguEvo

โ€ข Credit/debit card numbers
โ€ข CVV / security codes
โ€ข Card expiration dates
โ€ข Bank account numbers
โ€ข Routing numbers

โœ… What We Store

โ€ข Stripe customer ID
โ€ข Payment intent / charge ID
โ€ข Invoice reference
โ€ข Receipt URL
โ€ข Transaction amount and status
All payment processing happens through Stripe's PCI-certified hosted flows. Webhook processing is idempotent โ€” no duplicate charges. Refunds follow a two-step approval process with full audit trail.
Data Retention & Lifecycle
Data TypeRetention PeriodAfter ExpiryConfigurable
Registration recordsDuration of membership + 3 yearsAnonymizedโœ… By org
Payment records7 years (IRS requirement)ArchivedโŒ Legal min
Match scores & statsIndefinitePublic recordโœ… By league
Emergency contactsActive season onlyDeletedโœ… By org
WaiversDuration of participation + 5 yearsArchivedโŒ Legal min
Audit logs3 years minimumArchivedโœ… Extend only
Board minutes / compliance docsPermanent (nonprofits)RetainedโŒ Legal req
Messages & notifications1 yearDeletedโœ… By org
โœ… Key Principle Data retention policies are configurable per organization type where legally appropriate. Legal minimums cannot be shortened. Organizations can always extend retention beyond the default.
Infrastructure & Reliability
Hosting
AWS (US regions)
Database
PostgreSQL 16
API Response
< 300ms
Encryption
TLS 1.3 + AES-256

Reliability

โœ… Critical operations are idempotent
โœ… Payment webhooks reconciled automatically
โœ… Background jobs are retryable
โœ… Failed notifications tracked and retried
โœ… Schedule generation runs asynchronously

Scalability

โœ… Multiple organizations supported
โœ… Multiple leagues per organization
โœ… Thousands of players, hundreds of teams
โœ… Paginated APIs for large data sets
โœ… Async report generation
Technical Integrations

Connected Services & Platforms

IntegrationPurposeHow It Works
Stripe Payment gateway Registration fees, team fees, membership dues, invoices, refunds. PCI-compliant hosted checkout. Webhook reconciliation.
Plaid Financial institution connections Link bank accounts to sync transaction data. Compare expected fees against actual deposits. Auto-classify transactions.
AWS Cognito Identity & authentication OAuth2/OIDC login, Google federated sign-in, MFA support, JWT-based stateless sessions. JIT user provisioning.
AWS S3 Document & media storage Logos, documents, compliance files, receipts, board minutes. Pre-signed URLs for secure uploads.
AWS SES / SNS Email & notifications Transactional emails (registration, payment, schedule), SMS notifications, delivery tracking, retry on failure.
CricClubs Stats import Import historical scorecards, player statistics, and season results from CricClubs into LeaguEvo.
Google Sign-In Social login One-click sign-in with Google accounts. Linked to Cognito for unified identity management.
OpenAPI / REST API platform Full OpenAPI 3.1 spec. All operations available via REST. Enables third-party integrations and custom workflows.
AI-Powered Operational Agents

In-App AI Agents

12 Agents Available
AgentWhat It DoesApproval
๐Ÿ—“๏ธ Scheduling Optimizer Generates balanced round-robin schedules respecting team blackouts, ground availability, home/away fairness, umpire conflicts, and time-slot balance Admin Review
๐Ÿ‘จโ€โš–๏ธ Umpire Assignment Assigns match officials ensuring no team umpires while playing, fair distribution, and conflict avoidance Admin Review
๐Ÿ“Š Finance Review Auto-classifies bank transactions, flags anomalies (missing receipts, cash without justification, UBIT risk, personal expenses), calculates audit score Auto + Flag
๐Ÿ“‹ Compliance Tracks nonprofit IRS readiness, missing documents, expired policies, annual filing deadlines, governance gaps, and Form 990 checklist status Automated
๐Ÿค Sponsorship Compliance Monitors sponsor deliverable deadlines, fulfillment status, agreement expiry, and potential unrelated business income risk Automated
๐Ÿงพ Donation Receipt Generates tax-deductible donation receipts, verifies donor records, tracks restricted vs unrestricted funds Treasurer Review
๐Ÿ“ง Communications Drafts schedule announcements, payment reminders, registration follow-ups, reschedule notices, and weekly summaries Admin Review
๐Ÿ Match Results Validates scorecard data (overs, runs, wickets consistency), updates standings, recalculates NRR, flags statistical anomalies Auto + Flag
๐Ÿ“ˆ Analytics Produces weekly performance insights, team comparison reports, qualification scenarios, fairness analysis, and sponsor impact metrics Automated
๐Ÿ”„ Integration Manages CricClubs data imports, Plaid sync orchestration, Stripe webhook processing, and external data flows Automated
๐Ÿ“ Registration Workflow Orchestrates player and team onboarding: tracks form completion, waiver status, payment, and eligibility โ€” sends reminders for incomplete steps Automated
๐Ÿ’ฌ Support Answers member questions about schedules, payments, registration status, and policies using only approved document citations Automated
๐Ÿ’ก AI Safety Principles All agents operate through approved APIs โ€” never bypassing RBAC or tenant isolation. Every agent action is traceable in the audit log. High-impact actions (schedule publication, financial changes) always require human approval. Agents support dry-run mode and rollback plans.
How LeaguEvo Is Different

LeaguEvo vs CricClubs, SportsKind & Other Platforms

CapabilityCricClubs / SportsKind / OthersLeaguEvo
Organization scope Scoring, league tables, and basic team management Full operating system: leagues + clubs + teams + finance + compliance + communications in one platform
Multi-sport support CricClubs: Cricket only. SportsKind: Multi-sport but limited to scheduling/registration Cricket, baseball, softball, basketball, volleyball, pickleball โ€” each with sport-specific scoring engines and configurable rules
Financial management Basic fee collection, no dashboards or bank connectivity Private dashboards per entity, bank connections (Plaid), auto-classification, budgets, reimbursements, audit scores, UBIT flagging
Nonprofit / IRS compliance Not supported Full 501(c)(3) readiness: board records, minutes, bylaws, donations, Form 990 checklist, annual reminders
Club governance Not supported Office bearers with terms, leadership requests, self-assign, board records, governance documents
Scheduling Manual fixture entry or basic round-robin without fairness optimization AI-powered round-robin generation with fairness scoring, ground allocation, umpire conflict detection, blackout respect
Privacy & data protection Basic privacy policy, no classification or retention CCPA/CPRA ready, COPPA for youth, FERPA for schools, data classification levels, consent management, retention policies
AI assistance None 12 operational AI agents: scheduling, finance review, compliance tracking, communications, match validation, analytics
Payment integration Basic PayPal, Square, or manual tracking Stripe with hosted checkout, ACH, auto-retry, webhooks, refund workflows, invoice generation, reminders
Bank connectivity Not available Plaid integration โ€” sync real bank activity, compare expected vs received, auto-flag discrepancies
Audit trail Limited or none Complete audit log of every action, exportable, with before/after values and AI agent traceability
Multi-tenant architecture Shared database, limited isolation True tenant isolation โ€” every query enforced by architecture, not policy. Cross-tenant access blocked by design.
White-label / branding Generic platform branding Per-organization branding: custom logos, colors, and themes applied across the platform
Youth protection Basic age tracking, waivers COPPA-compatible parent/guardian accounts, encrypted emergency contacts, restricted medical data, pickup authorization
Scoring engine CricClubs: Full cricket scoring. SportsKind: Basic score entry. Configurable sport-specific engines with custom points, tiebreakers, NRR, powerplays, qualification scenarios, and player statistics
Sponsor & donation management Not available Sponsor agreements, deliverable tracking, fulfillment status, donation records, restricted fund management, receipt generation
โœ… The Core Difference CricClubs is a cricket scoring tool. SportsKind is a registration and scheduling platform. LeaguEvo is a complete operating system for community sports organizations โ€” managing the entire season lifecycle from registration and finances through scheduling, scoring, compliance, and board governance. It's built for organizations that want to professionalize their operations without burning out volunteers.
๐Ÿš€ Coming Soon
๐Ÿ“ฑ

iOS & Android Apps

Native mobile apps for players, captains, and officials. Real-time score updates, push notifications, roster management, and match-day check-in โ€” all from your phone.

Q1 2027
โ€ข Live scoring from the field
โ€ข Push notifications for schedule changes
โ€ข Player availability responses
โ€ข Photo & media uploads
โ€ข Offline scorecard entry
๐Ÿ

Live Scoring Engine

Ball-by-ball live scoring with real-time standings updates, wagon wheel visualizations, partnership graphs, and live commentary feeds for spectators.

Q2 2027
โ€ข Ball-by-ball entry (mobile + web)
โ€ข Real-time NRR recalculation
โ€ข Live match page for spectators
โ€ข Wagon wheel & pitch map
โ€ข Partnership & run-rate graphs
โ€ข Instant standings update on result
๐ŸŒ

Public League Websites

Auto-generated public websites for each league and club. Schedules, standings, player stats, news, and sponsor logos โ€” branded and SEO-ready.

Q3 2027
โ€ข Custom domains per league/club
โ€ข Live standings & fixtures
โ€ข Player profile pages
โ€ข Sponsor visibility & logos
โ€ข Registration landing pages
โ€ข News & announcements