Data Protection and Privacy Policy

1. Scope: This policy applies to all personal data collected, processed, stored, or shared by 9 Miles Swimming Academy in the course of its operations. It ensures compliance with applicable data protection laws and regulations.

2. Data Collection and Consent: The academy will collect personal data from participants, parents/guardians, and staff members only for legitimate purposes related to academy activities. Consent will be obtained before collecting any personal data, and individuals will be informed about the purpose of data collection and their rights regarding their personal information.

3. Data Storage and Security: Personal data will be securely stored and protected against unauthorized access, loss, or disclosure. Appropriate technical and organizational measures will be implemented to safeguard personal data from risks and threats.

4. Data Use and Disclosure: Personal data collected by the academy will be used solely for the purposes it was collected for, such as managing registrations, providing services, communicating with participants and parents/guardians, and fulfilling legal obligations. Personal data will not be disclosed to third parties without explicit consent, unless required by law or for legitimate purposes.

5. Data Retention: Personal data will be retained for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. Upon reaching the retention period, personal data will be securely deleted or anonymized to protect individual’s privacy.

6. Data Accuracy and Updates: The academy will take reasonable steps to ensure the accuracy and currency of personal data. Individuals have the right to access and update their personal information held by the academy, and any inaccuracies will be promptly corrected.

7. Individual Rights: Individuals have the right to access, rectify, erase, or restrict the processing of their personal data, as well as the right to data portability. Requests to exercise these rights should be submitted to the academy’s designated contact person, who will respond promptly and in accordance with applicable laws.

8. Data Breach Notification: In the event of a data breach that poses a risk to individual’s rights and freedoms, the academy will promptly notify the affected individuals and the relevant authorities as required by law. The academy will take appropriate measures to mitigate the impact of the breach and prevent future occurrences.

9. Staff Training and Awareness: The academy will provide training and guidance to its staff members on data protection and privacy matters. Staff will be educated on their responsibilities regarding the handling of personal data and the importance of maintaining confidentiality.

10. Third-Party Processors: When engaging third-party processors for data processing activities, the academy will ensure they adhere to similar data protection standards and privacy principles. Data processing agreements will be established to outline the responsibilities and obligations of all parties involved.

The Data Protection and Privacy Policy underscores 9 Miles Swimming Academy’s commitment to protecting personal data and respecting individual’s privacy rights. By implementing this policy, the academy aims to maintain the confidentiality, integrity, and security of personal data and promote a trustworthy environment for all stakeholders.