๐ Security, Privacy & Data Protection
How LeaguEvo protects your organization's data, ensures regulatory compliance, and gives members control over their personal information.
Security Architecture
Enterprise-Grade Security by Default
๐
OAuth2 / OIDC Authentication
Industry-standard single sign-on with multi-factor authentication support. No passwords stored in LeaguEvo.
๐ข
Multi-Tenant Data Isolation
Every organization's data is fully isolated. Cross-tenant access is blocked by architecture โ not just policy.
๐ก๏ธ
Role-Based Access Control (RBAC)
Hierarchical roles: Super Admin โ Org Admin โ League Admin โ Club Admin โ Team Captain โ Player. Least-privilege by default.
๐
Policy-Based Authorization
Sensitive data access is controlled by role, org type, team assignment, consent status, classification, and purpose.
๐
Full Audit Trail
Every sensitive action is logged with who, what, when, and before/after values. Exportable for compliance reviews.
๐
Encryption at Rest & in Transit
All data encrypted in transit (TLS 1.3). Emergency contacts, medical info, and restricted fields encrypted at rest.
Privacy & Consent Management
Privacy Center โ Member View
โ
Privacy Policy Accepted
Version 2.1 โ Accepted March 1, 2026
โ
Photo Release Consent
Granted โ Match photos and social media use permitted
โ๏ธ
Communication Preferences
Email: Match updates, Payment reminders ยท SMS: Disabled ยท Marketing: Opt-out
๐ฅ
Download My Data
Request a full export of your personal data stored in LeaguEvo
๐๏ธ
Delete My Data
Request deletion of personal data (subject to legal retention requirements)
๐ก Privacy Rights
LeaguEvo supports data download, deletion requests, consent management, communication preferences, and marketing opt-out โ designed to meet CCPA/CPRA and Texas privacy law requirements from day one.
Data Classification & Protection Levels
| Classification | Examples | Access Control | Encryption | Audit |
|---|---|---|---|---|
| Public | Team name, match scores, standings | Anyone | In transit | No |
| Internal | Player roster, schedule drafts | Authenticated members | In transit | Changes only |
| Confidential | Financial records, board minutes, sponsor agreements | Role-restricted (Officers, Treasurer) | At rest + transit | All access |
| Sensitive | Emergency contacts, payment details, parent/guardian info | Policy-based (need + role + consent) | At rest + transit | All access + views |
| Restricted | Medical records, background checks, concussion history | Explicit authorization required | At rest + transit + field-level | All access + views + exports |
Youth Participant & Parent/Guardian Protection
COPPA-Compatible Safeguards
Parent/Guardian Controls
โ
Parent/guardian as primary account holder for youth under 13
โ Parental consent required before creating child profiles
โ Parent controls communication preferences for minors
โ Emergency contacts encrypted at rest, audit-logged on view
โ Pickup authorization tracking for youth events
โ Parent can download or request deletion of child's data
โ Parental consent required before creating child profiles
โ Parent controls communication preferences for minors
โ Emergency contacts encrypted at rest, audit-logged on view
โ Pickup authorization tracking for youth events
โ Parent can download or request deletion of child's data
Access Restrictions
๐ Only assigned coaches/captains see youth player details
๐ Medical/injury info requires explicit policy authorization
๐ Background check records: restricted classification
๐ No marketing communications to youth without consent
๐ AI agents cannot access restricted youth data
๐ All youth data views create audit entries
๐ Medical/injury info requires explicit policy authorization
๐ Background check records: restricted classification
๐ No marketing communications to youth without consent
๐ AI agents cannot access restricted youth data
๐ All youth data views create audit entries
Regulatory Compliance Readiness
CCPA / CPRA
Ready
Privacy rights, opt-out, deletion
Texas Privacy
Ready
Consent, access, portability
PCI DSS
Compliant
No card data stored
COPPA
Supported
Parent-first consent model
FERPA
Available
School/district mode
SOC 2
On Track
Audit + access evidence
WCAG 2.2 AA
Target
Accessibility-first UI
501(c)(3)
Built-in
Form 990 readiness
| Regulation | What LeaguEvo Does | Your Benefit |
|---|---|---|
| CCPA / CPRA | Data download, deletion requests, consent records, opt-out workflows, communication preferences | Members can exercise privacy rights directly from their profile |
| PCI DSS | Hosted payment flows via Stripe โ card numbers, CVV, and expiration never touch LeaguEvo servers | Zero PCI scope for your organization. Only payment IDs and receipt URLs stored. |
| COPPA | Parent/guardian-first accounts, verified consent before child profile creation, restricted marketing | Youth programs can operate safely with proper parental controls |
| FERPA | School-controlled access, audit trails, retention policies, parent access rights, export controls | School and district deployments meet educational privacy requirements |
| 501(c)(3) / IRS | Board records, meeting minutes, donation tracking, Form 990 readiness checklist, UBIT risk flagging | Nonprofits stay organized for annual filings and potential audits |
Payment Security
PCI DSS Scope Reduction
โ Never Stored in LeaguEvo
โข Credit/debit card numbers
โข CVV / security codes
โข Card expiration dates
โข Bank account numbers
โข Routing numbers
โข CVV / security codes
โข Card expiration dates
โข Bank account numbers
โข Routing numbers
โ What We Store
โข Stripe customer ID
โข Payment intent / charge ID
โข Invoice reference
โข Receipt URL
โข Transaction amount and status
โข Payment intent / charge ID
โข Invoice reference
โข Receipt URL
โข Transaction amount and status
All payment processing happens through Stripe's PCI-certified hosted flows. Webhook processing is idempotent โ no duplicate charges. Refunds follow a two-step approval process with full audit trail.
Data Retention & Lifecycle
| Data Type | Retention Period | After Expiry | Configurable |
|---|---|---|---|
| Registration records | Duration of membership + 3 years | Anonymized | โ By org |
| Payment records | 7 years (IRS requirement) | Archived | โ Legal min |
| Match scores & stats | Indefinite | Public record | โ By league |
| Emergency contacts | Active season only | Deleted | โ By org |
| Waivers | Duration of participation + 5 years | Archived | โ Legal min |
| Audit logs | 3 years minimum | Archived | โ Extend only |
| Board minutes / compliance docs | Permanent (nonprofits) | Retained | โ Legal req |
| Messages & notifications | 1 year | Deleted | โ By org |
โ
Key Principle
Data retention policies are configurable per organization type where legally appropriate. Legal minimums cannot be shortened. Organizations can always extend retention beyond the default.
Infrastructure & Reliability
Hosting
AWS (US regions)
Database
PostgreSQL 16
API Response
< 300ms
Encryption
TLS 1.3 + AES-256
Reliability
โ
Critical operations are idempotent
โ Payment webhooks reconciled automatically
โ Background jobs are retryable
โ Failed notifications tracked and retried
โ Schedule generation runs asynchronously
โ Payment webhooks reconciled automatically
โ Background jobs are retryable
โ Failed notifications tracked and retried
โ Schedule generation runs asynchronously
Scalability
โ
Multiple organizations supported
โ Multiple leagues per organization
โ Thousands of players, hundreds of teams
โ Paginated APIs for large data sets
โ Async report generation
โ Multiple leagues per organization
โ Thousands of players, hundreds of teams
โ Paginated APIs for large data sets
โ Async report generation
Technical Integrations
Connected Services & Platforms
| Integration | Purpose | How It Works |
|---|---|---|
| Stripe | Payment gateway | Registration fees, team fees, membership dues, invoices, refunds. PCI-compliant hosted checkout. Webhook reconciliation. |
| Plaid | Financial institution connections | Link bank accounts to sync transaction data. Compare expected fees against actual deposits. Auto-classify transactions. |
| AWS Cognito | Identity & authentication | OAuth2/OIDC login, Google federated sign-in, MFA support, JWT-based stateless sessions. JIT user provisioning. |
| AWS S3 | Document & media storage | Logos, documents, compliance files, receipts, board minutes. Pre-signed URLs for secure uploads. |
| AWS SES / SNS | Email & notifications | Transactional emails (registration, payment, schedule), SMS notifications, delivery tracking, retry on failure. |
| CricClubs | Stats import | Import historical scorecards, player statistics, and season results from CricClubs into LeaguEvo. |
| Google Sign-In | Social login | One-click sign-in with Google accounts. Linked to Cognito for unified identity management. |
| OpenAPI / REST | API platform | Full OpenAPI 3.1 spec. All operations available via REST. Enables third-party integrations and custom workflows. |
AI-Powered Operational Agents
In-App AI Agents
12 Agents Available| Agent | What It Does | Approval |
|---|---|---|
| ๐๏ธ Scheduling Optimizer | Generates balanced round-robin schedules respecting team blackouts, ground availability, home/away fairness, umpire conflicts, and time-slot balance | Admin Review |
| ๐จโโ๏ธ Umpire Assignment | Assigns match officials ensuring no team umpires while playing, fair distribution, and conflict avoidance | Admin Review |
| ๐ Finance Review | Auto-classifies bank transactions, flags anomalies (missing receipts, cash without justification, UBIT risk, personal expenses), calculates audit score | Auto + Flag |
| ๐ Compliance | Tracks nonprofit IRS readiness, missing documents, expired policies, annual filing deadlines, governance gaps, and Form 990 checklist status | Automated |
| ๐ค Sponsorship Compliance | Monitors sponsor deliverable deadlines, fulfillment status, agreement expiry, and potential unrelated business income risk | Automated |
| ๐งพ Donation Receipt | Generates tax-deductible donation receipts, verifies donor records, tracks restricted vs unrestricted funds | Treasurer Review |
| ๐ง Communications | Drafts schedule announcements, payment reminders, registration follow-ups, reschedule notices, and weekly summaries | Admin Review |
| ๐ Match Results | Validates scorecard data (overs, runs, wickets consistency), updates standings, recalculates NRR, flags statistical anomalies | Auto + Flag |
| ๐ Analytics | Produces weekly performance insights, team comparison reports, qualification scenarios, fairness analysis, and sponsor impact metrics | Automated |
| ๐ Integration | Manages CricClubs data imports, Plaid sync orchestration, Stripe webhook processing, and external data flows | Automated |
| ๐ Registration Workflow | Orchestrates player and team onboarding: tracks form completion, waiver status, payment, and eligibility โ sends reminders for incomplete steps | Automated |
| ๐ฌ Support | Answers member questions about schedules, payments, registration status, and policies using only approved document citations | Automated |
๐ก AI Safety Principles
All agents operate through approved APIs โ never bypassing RBAC or tenant isolation. Every agent action is traceable in the audit log. High-impact actions (schedule publication, financial changes) always require human approval. Agents support dry-run mode and rollback plans.
How LeaguEvo Is Different
LeaguEvo vs CricClubs, SportsKind & Other Platforms
| Capability | CricClubs / SportsKind / Others | LeaguEvo |
|---|---|---|
| Organization scope | Scoring, league tables, and basic team management | Full operating system: leagues + clubs + teams + finance + compliance + communications in one platform |
| Multi-sport support | CricClubs: Cricket only. SportsKind: Multi-sport but limited to scheduling/registration | Cricket, baseball, softball, basketball, volleyball, pickleball โ each with sport-specific scoring engines and configurable rules |
| Financial management | Basic fee collection, no dashboards or bank connectivity | Private dashboards per entity, bank connections (Plaid), auto-classification, budgets, reimbursements, audit scores, UBIT flagging |
| Nonprofit / IRS compliance | Not supported | Full 501(c)(3) readiness: board records, minutes, bylaws, donations, Form 990 checklist, annual reminders |
| Club governance | Not supported | Office bearers with terms, leadership requests, self-assign, board records, governance documents |
| Scheduling | Manual fixture entry or basic round-robin without fairness optimization | AI-powered round-robin generation with fairness scoring, ground allocation, umpire conflict detection, blackout respect |
| Privacy & data protection | Basic privacy policy, no classification or retention | CCPA/CPRA ready, COPPA for youth, FERPA for schools, data classification levels, consent management, retention policies |
| AI assistance | None | 12 operational AI agents: scheduling, finance review, compliance tracking, communications, match validation, analytics |
| Payment integration | Basic PayPal, Square, or manual tracking | Stripe with hosted checkout, ACH, auto-retry, webhooks, refund workflows, invoice generation, reminders |
| Bank connectivity | Not available | Plaid integration โ sync real bank activity, compare expected vs received, auto-flag discrepancies |
| Audit trail | Limited or none | Complete audit log of every action, exportable, with before/after values and AI agent traceability |
| Multi-tenant architecture | Shared database, limited isolation | True tenant isolation โ every query enforced by architecture, not policy. Cross-tenant access blocked by design. |
| White-label / branding | Generic platform branding | Per-organization branding: custom logos, colors, and themes applied across the platform |
| Youth protection | Basic age tracking, waivers | COPPA-compatible parent/guardian accounts, encrypted emergency contacts, restricted medical data, pickup authorization |
| Scoring engine | CricClubs: Full cricket scoring. SportsKind: Basic score entry. | Configurable sport-specific engines with custom points, tiebreakers, NRR, powerplays, qualification scenarios, and player statistics |
| Sponsor & donation management | Not available | Sponsor agreements, deliverable tracking, fulfillment status, donation records, restricted fund management, receipt generation |
โ
The Core Difference
CricClubs is a cricket scoring tool. SportsKind is a registration and scheduling platform. LeaguEvo is a complete operating system for community sports organizations โ managing the entire season lifecycle from registration and finances through scheduling, scoring, compliance, and board governance. It's built for organizations that want to professionalize their operations without burning out volunteers.
๐ Coming Soon
๐ฑ
iOS & Android Apps
Native mobile apps for players, captains, and officials. Real-time score updates, push notifications, roster management, and match-day check-in โ all from your phone.
Q1 2027
โข Live scoring from the field
โข Push notifications for schedule changes
โข Player availability responses
โข Photo & media uploads
โข Offline scorecard entry
โข Push notifications for schedule changes
โข Player availability responses
โข Photo & media uploads
โข Offline scorecard entry
๐
Live Scoring Engine
Ball-by-ball live scoring with real-time standings updates, wagon wheel visualizations, partnership graphs, and live commentary feeds for spectators.
Q2 2027
โข Ball-by-ball entry (mobile + web)
โข Real-time NRR recalculation
โข Live match page for spectators
โข Wagon wheel & pitch map
โข Partnership & run-rate graphs
โข Instant standings update on result
โข Real-time NRR recalculation
โข Live match page for spectators
โข Wagon wheel & pitch map
โข Partnership & run-rate graphs
โข Instant standings update on result
๐
Public League Websites
Auto-generated public websites for each league and club. Schedules, standings, player stats, news, and sponsor logos โ branded and SEO-ready.
Q3 2027
โข Custom domains per league/club
โข Live standings & fixtures
โข Player profile pages
โข Sponsor visibility & logos
โข Registration landing pages
โข News & announcements
โข Live standings & fixtures
โข Player profile pages
โข Sponsor visibility & logos
โข Registration landing pages
โข News & announcements