top of page

Privacy Policy

Privacy Policy for Self Defense Academy Colorado Springs

Last Updated: January 5, 2025

This Privacy Policy describes how Self Defense Academy Colorado Springs ("we," "us," or "our") collects, uses, and shares personal data of visitors and customers ("you" or "your") of our website www.selfdefenseacademycos.com (the "Website"). We are committed to protecting your privacy and ensuring the security of your personal data in accordance with the General Data Protection Regulation (GDPR).1

1. Data Controller

The data controller responsible for the processing of your personal data is:

Self Defense Academy Colorado Springs

525 N Cascade Ave

Colorado Springs, CO, 80903

Email: selfdefenseacademycos@gmail.com

2. Personal Data We Collect

We may collect the following categories of personal data:

  • Contact Information: Name, email address, phone number,3 postal address. This is collected when you contact us through our website, sign up for classes, or request information.

  • Account Information: Username and password (if you create an account on our website).

  • Payment Information: Credit card details or other payment information (processed by secure third-party payment processors; we do not directly store your full payment information).

  • Usage Data: Information about how you use our Website, including your IP address, browser type, operating system, referring URLs, pages visited,4 and the dates/times of your5 visits. This is often collected through cookies and similar technologies.

  • Communication Data: Records of our correspondence with you, including emails and other communications.

  • Marketing Preferences: Information about your preferences for receiving marketing communications from us.

  • Health-Related Information (Potentially): In some specific cases, such as when enrolling in certain classes, we might ask for limited health-related information relevant to your safe participation. We will only collect this with your explicit consent and will process it with utmost care and confidentiality.

  • Photographs and Videos (Potentially): With your explicit consent, we may take photographs or videos during classes or events for promotional purposes.

3. Purposes of Processing Your Personal Data and Legal Basis

We process your personal data for the following purposes based on the following legal bases under the GDPR:

  • Performance of a Contract:

    • To process your registration for self-defense classes.

    • To manage your account on our Website.

    • To provide you with the services you have requested.

  • Legitimate Interests:

    • To respond to your inquiries and provide customer support.

    • To improve our Website and services.

    • To analyze Website usage and trends.

    • To send you important administrative information about your account or our services.

    • To prevent fraud and ensure the security of our Website.

    • For direct marketing purposes regarding similar services, subject to your right to opt-out (see section 6).

  • Consent:

    • To send you marketing communications (where you have actively consented).

    • To collect and process any sensitive personal data, such as health-related information (where explicitly provided).

    • To use cookies and similar tracking technologies (subject to our Cookie Policy).

    • To use photographs and videos for promotional purposes.

  • Compliance with a Legal Obligation:

    • To comply with applicable laws and regulations.

4. How We Share Your Personal Data

We may share your personal data with the following categories of recipients:

  • Service Providers: Third-party companies that provide services on our behalf, such6 as website hosting, payment processing, email marketing, analytics, and customer support. These providers are contractually obligated to process your data only according to our instructions and to maintain its confidentiality and security.

  • Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred to the acquiring7 entity. We will inform you of such a transfer and any changes to the processing of your personal data.

  • Legal Requirements: We may disclose your personal data if required to do so by law or in response to valid requests by public authorities (e.g.,8 law enforcement or regulatory agencies).

  • With Your Consent: We may share your personal data with third parties when you have given us your explicit consent to do so.

5. International Transfers of Personal Data

Your personal data may be transferred to and processed in countries outside of the European Economic Area (EEA) that may not have data protection laws9 that provide the same level of protection as those in the EEA. In such cases, we will ensure that appropriate safeguards are in place to protect your personal data in accordance with10 the GDPR, such as:

  • Standard Contractual Clauses: Implementing data transfer agreements based on the Standard Contractual Clauses approved by the European Commission.

  • Adequacy Decisions: Transferring data to countries that the European Commission has deemed to provide an adequate level of data protection.11

We will inform you if your data is being transferred outside the EEA and the safeguards in place.

6. Your Rights Under the GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right to Access: You have the right to12 request access to the personal data we hold about you13 and to receive a copy of it.

  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal14 data we hold about you.

  • Right to Erasure ("Right to be Forgotten"): You have the right to request that we delete your personal data15 under certain circumstances (e.g., when the data is no longer necessary for the purposes for which it was collected, or if you withdraw your consent).

  • Right to Restriction16 of Processing: You have the right to request that we restrict the processing of your personal17 data under certain circumstances (e.g., while we are verifying the accuracy of your data).

  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format18 and to transmit it to another controller.

  • Right to Object: You have the right to object to the processing of your personal data19 for certain purposes, including direct marketing.20

  • Right Not to be Subject to Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which21 produces legal effects concerning you or similarly significantly affects22 you.

  • Right to Withdraw Consent: If we are processing your personal data based on your consent, you have the right to withdraw your consent at any23 time. The withdrawal of your consent will not affect the lawfulness of processing based on consent before its withdrawal.24

  • Right to Lodge a Complaint with a Supervisory Authority: You have the right to lodge a complaint with a competent data protection supervisory authority25 if you believe that our processing of your personal data infringes the GDPR. The lead supervisory authority for our processing activities within the EU would likely be in the member state where our main establishment is located (if applicable). However, as you are based in Colorado Springs, you also have rights under US privacy laws.

To exercise any of these rights, please contact us using the contact details provided in Section 1. We will respond to your request without undue delay and within the timeframes required by applicable law. We may need to verify your identity before processing your request.

7. Data Security

We have implemented appropriate technical and organizational measures to protect your personal data against26 accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.27 These measures include:

  • Secure Socket Layer (SSL) encryption for data transmitted between your browser and our Website.

  • Regular security assessments and updates to our systems.

  • Access controls to limit access to your personal data to authorized personnel only.

  • Data encryption at rest where appropriate.

While we strive to protect your personal data, please be aware that no method of transmission over the internet or method of electronic storage28 is completely secure.

8. Data Retention

We will retain your personal data for as long as necessary to fulfill the purposes for which it was collected,29 including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized30 use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal requirements.31

Typically, we will retain:

  • Contact and account information for as long as you have an active account or are receiving our services.

  • Payment information for as long as necessary to process transactions and comply with financial regulations.

  • Usage data for a limited period for analytical purposes.

  • Communication data for as long as necessary to address your inquiries.

  • Marketing preferences until you opt-out.

  • Health-related information and photographs/videos will be retained only for the specific purpose for which consent was given and will be securely deleted when no longer needed for that purpose.

9. Cookies and Similar Technologies

Our Website uses cookies and similar tracking technologies to enhance your browsing experience,32 analyze Website traffic, and personalize33 content. We have a separate Cookie Policy that provides detailed information about the types of cookies we use, their purpose, and how you can manage your cookie preferences.34 By using our Website, you consent to the use of cookies as described in our Cookie35 Policy.

10. Links to Other Websites

Our Website may contain links to other websites that are not operated by us. We are not responsible for the privacy36 practices of these third-party websites. We encourage you to review the privacy37 policies of any website you visit.

11. Children's Privacy

Our services are generally aimed at adults. We do not knowingly collect personal data from children under the age of 16 without verifiable parental consent. If you are a parent or guardian and believe that your child has provided us with personal data without your consent, please contact us immediately, and we will take steps to remove such38 data and terminate the child's account.

12. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal39 requirements. We will post any changes on this page and update the "Last Updated" date at the top of the policy. We encourage you to review this Privacy Policy periodically. Significant changes will be notified to you more prominently where required by law.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us at:

Self Defense Academy Colorado Springs

525 N Cascade Ave

Colorado Springs, CO, 80903

Email: selfdefenseacademycos@gmail.com

By using our Website, you acknowledge that you have read and understood this Privacy Policy.

Important Considerations:

  • Cookie Policy: Make sure to create a separate and detailed Cookie Policy that explains the types of cookies you use, their purpose, duration, and how users can manage their preferences. Link to this policy from your Privacy Policy and provide a cookie consent banner on your website.

  • Third-Party Processors: Ensure you have written contracts in place with all third-party service providers who process personal data on your behalf, outlining their obligations under the GDPR (e.g., data security, confidentiality).

  • Consent Mechanisms: Implement clear and affirmative consent mechanisms for marketing communications, the collection of sensitive personal data (if applicable), and the use of photographs/videos. Provide users with easy ways to withdraw their consent.

  • Website Forms: Ensure that any forms on your website that collect personal data have clear privacy notices and, where necessary, consent checkboxes.

  • Regular Review: Regularly review and update your Privacy Policy to ensure it remains accurate and compliant with evolving regulations.

Self defense Academy COS Jiu jitsu
bottom of page