Privacy Policy

1. Introduction

FreedivingFlow (Aleksei Barulin, OSVČ, Czech Republic) respects your privacy and protects your personal data in accordance with GDPR (EU General Data Protection Regulation).

2. Data We Collect

• Contact information: name, email, phone number
• Payment information: processed through Stripe, we do not store card details
• Booking data: selected courses, dates, notes

3. How We Use Your Data

• Processing bookings and payments
• Sending confirmations and reminders
• Communication regarding courses
• Improving our services

4. Legal Basis for Processing

• Contract: processing is necessary to fulfill bookings
• Legitimate interest: service improvement, security
• Consent: for marketing communications (optional)

5. Data Retention

We retain your data for 3 years after the last interaction for accounting and legal purposes. You can request data deletion at any time.

6. Your Rights (GDPR)

• Right to access your data
• Right to rectify inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing

7. Third Parties

We use the following services:

• Stripe — payment processing
• Vercel — website hosting
• SMTP/Email — email delivery

8. Cookies

We only use essential cookies for website functionality (sessions, language). We do not use advertising or tracking cookies.

9. Security

Your data is protected through encryption (HTTPS), secure password storage, and regular security updates.

10. Contact

For privacy inquiries, please contact:

Email: info@freedivingflow.com
Data Controller: Aleksei Barulin