Welcome to users of Supclass.com (“our site”). Our site (Supaclass Platform) is owned and operated by Aloha Hola Tech S.L. a company registered in Barcelona, Spain under company number B16904377, whose registered office is at Calle Casp 156, 4-3, Barcelona, 08013, Spain.(“we,” “us,” or “our”)
In this policy we describe what information we collect and what uses we put it to.
What Information We Collect and How We Collect It
When fitness training service providers register and create a profile on our site, we ask them to select a username, and enter their name, age, date of birth, and a password.
We collect personally identifiable information from our users at several different points on our site including registration, and any contact made by users in relation to any comments, questions or complaints they have.
When you use Supaclass Platform, we may collect your IP address (mostly, in an anonymised form). We use such information to identify the country where you are based, make location-specific content available to you, analyse the technical aspects of your use of Supaclass Platform, direct you to the correct domain name, and ensure the security of Supaclass Platform.
We do not collect or have access to any special categories of personal data from you. Sensitive data is information that relates to your health, genetics, biometrics, religious and political beliefs, racial origins, membership of a professional or trade association, sex life, or sexual orientation. If you decide, at your sole discretion, to submit such data to us (e.g., via email), we will automatically eliminate this content.
If you request to be sent updates by email, we will collect your email address in order to do so.
We occasionally obtain details of fitness service providers from their own websites, or their listings on other services such as Google Maps.
We act in the capacity of a data controller with regard to the personal data processed through Supaclass Platform in terms of the applicable data protection laws, including the EU General Data Protection Regulation (GDPR). We are responsible for the collection of your personal data through Supaclass Platform and their further use. We make decisions about the types of personal data that should be collected from you and purposes for which such personal data should be used. Therefore, we act as a data controller with regard to the personal data collected directly through Supaclass Platform (e.g., when you sign up or send us an inquiry). We comply with the data controller’s obligations set forth in the applicable laws.
Supaclass Platform is not intended for use by children under the age of 18 or by any person who is not of legal age in their country of origin. Therefore, we do not knowingly collect children’s personal data. If you become aware that the child under 18 has submitted his/her personal data to us, please contact us immediately. We will delete the child’s personal data from our systems without undue delay.
We use Google Analytics, which is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our website.
You block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site.
How we Use the Information we Collect
Upon activation of an account, the information submitted will be used by us to allow the registered user to use our site.
Additionally, we may use the information for the following purposes:
to help us identify users and any accounts held with us;
research, statistical analysis and behavioural analysis;
customer profiling and analysing user’s purchasing preferences;
billing and order fulfilment;
customising this site and its content to user’s particular preferences;
notifying users of any changes to this site or to our services that may affect them;
investigating any complaints that another person has been defamed, or another person’s rights have been infringed, by any submission you make to the site; and
improving our services.
Marketing and opting out
If you have given permission, we may contact you by email about updates regarding Supaclass. If you prefer not to receive any direct marketing communications from us, you can opt out at any time. For more details see ‘Your rights’, below.
Disclosure of your personal data
We may disclose your personal data as follows:
If our business is sold or integrated with another business your details may be disclosed to our advisers and any prospective purchasers and their advisers and will be passed on to the new owners of the business.
Keeping your data secure
We will use technical and organisational measures to safeguard your personal data, for example:
access to your account is controlled by a password and username that are unique to you; and
we store your personal data on secure servers of our hosting partners.
While we will use all reasonable efforts to safeguard your personal data, you acknowledge that the use of the internet is not entirely secure and for this reason we cannot guarantee the security or integrity of any personal data that are transferred from you or to you via the internet. It remains your responsibility to:
Ensure nobody else will use our site while you are logged into your account (we advise our users to take extra care when using public computers/devices and to NOT leave themselves logged in; it is your responsibility to ensure this does not happen);
Log out and exit your account on the site when you are not using it, on any private and/or public computer or device; and
Keep your password and any account details or access details secret and to yourself.
How long do we keep your data
In certain cases, we are required by law to store your personal data for a certain period of time. Thus, we keep your personal data for the time period stipulated by the applicable law and securely delete it as soon as the required storage period expires.
We may monitor and record communications with you (such as telephone conversations and emails) for the purpose of quality assurance, training, fraud prevention and compliance.
Information about other individuals
If you give us information on behalf of someone else you confirm that the other person has appointed you to act on his/her behalf and has agreed that you can:
give consent on his/her behalf to the processing of his/her personal data;
receive on his/her behalf any data protection notices; and
give consent to the transfer of his/her personal data abroad.
Links to Other Sites
The Legal Basis on which we Process your Information
On some occasions, we may process personal information with consent (for example, when you submit information through the site or agree to receive email updates about the service). You have the right to withdraw your consent at any time by contacting us on the email address below.
On other occasions, we may process personal information when we need to do this to fulfil a contract (for example, if you are a Service Provider to promote your business) or where we are required to do this by law.
We also process your personal information when it is in our legitimate interests to do this and when we consider these interests are not overridden by your data protection rights. Those legitimate interests include using your information for the purposes of improving the Solosalon service, which we aim to do in a way that works to your benefit and those of other users.
Processing of your data outside the European Economic Area
We may transfer your personal information to the USA, outside the European Economic Area (EEA), for the purposes of our use of the Mailchimp email service.
The USA does not have the same data protection laws as the United Kingdom and EEA. Whilst the European Commission has not given a formal decision that the USA provides an adequate level of data protection similar to those which apply in the United Kingdom and EEA, any transfer of your personal information will be subject to appropriate safeguards as permitted under the General Data Protection Regulation that are designed to help safeguard your privacy rights and give you remedies in the unlikely event of a misuse of your personal information.
The providers of Mailchimp (The Rocket Science Group LLC) are certified under the EU-US Privacy Shield. The Privacy Shield requires them to provide similar protection to personal data shared between Europe and the US. For more details see here – https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/eu-us-privacy-shield_en
If you would like further information please contact us (see ‘How to contact us’ below).
Under the General Data Protection Regulation you have a number of important rights free of charge. In summary, those include rights to:
Right of access: you can get a copy of your personal data that we store in our systems and a list of purposes for which your personal data is processed;
Right to rectification: you can rectify inaccurate personal data that we hold about you;
Right to erasure (‘right to be forgotten’): you can ask us to erase your personal data from our systems;
Right to restriction: you can ask us to restrict the processing of your personal data;
Right to data portability: you can ask us to provide you with a copy of your personal data in a structured, commonly used and machine-readable format and move that personal data to another processor;
Right to object: you can ask us to stop processing your personal data;
Right to withdraw consent: you have the right to withdraw your consent, if you have provided one;
Right to complaint: you can submit your complaint regarding our processing of your personal data.
For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.
If you would like to exercise any of those rights, please:
email, call or write to us at [email protected],
let us have enough information to identify you (your email address),
let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill), and
let us know the information to which your request relates.
If you would like to unsubscribe from any email newsletter you can also click on the ‘unsubscribe’ button at the bottom of the newsletter.
How to complain
We hope that we can resolve any query or concern you raise about our use of your information.
The General Data Protection Regulation also gives you right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in Spain is La Agencia Española de Protección de Datos (AEPD)r who may be contacted at https://www.aepd.es/es/la-agencia/en-que-podemos-ayudarteor or by telephone: 901 100 099 and 912 663 517
How to contact us
If you wish to contact us please send an email to [email protected].