This Privacy Policy describes how Divelife S.L. collects, uses, and protects your personal data in accordance with the GDPR (EU) 2016/679 and Organic Law 3/2018 (LOPDGDD).
01
Data Controller
Divelife S.L.
CIF: B75915629
AV Altos Hornos de Vizcaya Num 33, 48901 Barakaldo, Vizcaya, Spain
Contact: Connect@divelifer.com
Represented by: Javier Prats Nebot — ID: 48244907S
02
Personal Data We Collect
Registration Data
- Full name
- Email address
- Password
- Country of residence
Profile Data
- Profile picture
- Diving certifications
- Experience and level information
- Logbook (dive records)
- Personal statistics
- Ratings and reviews
User-Generated Content
- Photos and videos
- Comments, posts and reviews
Booking Data
- Booked activities and booking history
- Check-in forms
- Insurance information (if provided)
- Payment information processed by external providers
Technical and Usage Data
- IP address and device type
- Operating system and technical identifiers
- In-app activity logs
03
Device Permissions
The app may request the following permissions, only activated when you voluntarily use the corresponding feature:
Camera
- Upload photos or videos of dives
- Scan or photograph certifications
Gallery / Storage
- Select existing images or videos
- Save user-generated content
Notifications
- Booking confirmations and reminders
- Dive validations and group messages
- Relevant operational communications
You can manage these permissions at any time through your device settings.
04
Purpose of Processing
- Create and manage user accounts
- Enable dive logging (logbook)
- Manage bookings and group activities
- Facilitate communication between users, instructors, and dive centers
- Enable ratings and validations
- Send activity-related notifications
- Comply with legal obligations
- Improve platform security and performance
05
Legal Basis
- Performance of the user agreement
- User consent (e.g., uploading content or receiving notifications)
- Legitimate interest in ensuring platform security and improvement
- Compliance with legal obligations
06
Data Retention
- While the user account remains active
- For the legally required retention periods
- Until the user requests account deletion, unless legal obligations require retention
07
Data Sharing
- Payment service providers (e.g., Stripe)
- Hosting and infrastructure providers
- Dive centers when users make bookings
- Public authorities when legally required
Divelife does not sell personal data to third parties.
08
International Data Transfers
If providers located outside the European Economic Area are used, appropriate safeguards will be implemented in accordance with GDPR, such as Standard Contractual Clauses or other valid legal mechanisms.
09
User Rights
- Right of access
- Right to rectification
- Right to erasure
- Right to restriction of processing
- Right to object
- Right to data portability
To exercise these rights, contact: Connect@divelifer.com
You also have the right to lodge a complaint with the Spanish Data Protection Authority (AEPD).
10
Security
Divelife applies reasonable technical and organizational measures to protect personal data against unauthorized access, loss, alteration, or improper disclosure.
11
Account Deletion
You may request account deletion by sending an email to Connect@divelifer.com.
Deletion will result in the removal of personal data, except where retention is required by law.
12
Changes to This Policy
Divelife may update this Privacy Policy when necessary for legal, technical, or business reasons. Users will be informed of significant changes through the app or other appropriate means.