LEGAL
Data Security
How we protect fan data at every layer.
1. Encryption
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). DMs use end-to-end encryption with keys managed per club.
2. Infrastructure
FANOS runs on AWS with multi-region redundancy. Database backups are encrypted and stored in separate availability zones.
3. Access Control
Role-based access control (RBAC) ensures only authorized staff can access fan data. All access is logged with timestamps and user IDs.
4. Compliance
FANOS complies with GDPR, SOC 2 and ISO 27001 standards. We undergo regular third-party security audits and penetration testing.
5. Incident Response
In the event of a security incident, we notify affected clubs within 24 hours and follow GDPR breach notification protocols.
6. Contact
Report security issues: security@fanos.tr