GDPR Compliance
Sportynix is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR). This page outlines your rights and how we protect your data in our venue booking mobile app.
Our Commitment
We process your personal data lawfully, fairly, and transparently. We collect only what's necessary, keep it accurate, and protect it with industry-standard security measures.
Your Rights Under GDPR
As a resident of the European Economic Area (EEA), you have the following rights regarding your personal data:
Right to Access
You have the right to request a copy of all personal data we hold about you.
Right to Rectification
You can request correction of inaccurate or incomplete personal data.
Right to Erasure
You can request deletion of your personal data in certain circumstances.
Right to Restriction
You can request that we limit the processing of your personal data.
Right to Portability
You can request your data in a structured, machine-readable format.
Right to Object
You can object to processing of your personal data in certain situations.
Lawful Basis for Processing
We process your personal data under the following legal bases:
- Contract: Processing necessary to provide our services to you
- Consent: Where you have given explicit consent for specific purposes
- Legitimate Interest: For improving our services and preventing fraud
- Legal Obligation: When required by law
Data We Collect
| Category | Data Types | Purpose | Retention |
|---|---|---|---|
| Identity | Name, email, phone, profile photo | Account management | Until account deletion |
| Authentication | Google OAuth data, JWT tokens | Secure login | Until logout/expiry |
| Booking | Reservations, slots, venues | Service delivery | Until account deletion |
| Communication | Chat messages, voice notes | Team & venue chat | Until account deletion |
| Technical | Device info, OneSignal ID | Push notifications | Until app uninstall |
| Location | GPS coordinates | Find nearby venues | Session only |
International Transfers
Your data may be transferred to and processed in countries outside the EEA, including the United States. We ensure adequate protection through:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Data Processing Agreements with all sub-processors
- Regular compliance assessments
Data Protection Officer
We have appointed a Data Protection Officer (DPO) to oversee our data protection strategy and ensure GDPR compliance.
Exercising Your Rights
You can exercise your GDPR rights through multiple channels:
In-App Settings
Open the Sportynix app → Profile → Settings → Privacy to manage your data preferences, request data export, or delete your account.
Email Request
Send your request to our support team or DPO. We will respond within 30 days.
privacy@sportynix.appdpo@sportynix.appData Breach Notification
In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours and affected individuals without undue delay if the breach is likely to result in high risk to their rights and freedoms.
Supervisory Authority
You have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated. Our lead supervisory authority is:
Irish Data Protection Commission
21 Fitzwilliam Square South
Dublin 2, D02 RD28, Ireland
www.dataprotection.ieUpdates to This Notice
We may update this GDPR notice from time to time. We will notify you of any material changes via email or in-app notification. The "Last updated" date at the top indicates when this notice was last revised.