GetOut

Privacy Policy

Last revised: July 16, 2024

1. Data Controller

The data controller for your personal data is determined by the country of the sports venue you use: GetOut France (SAS, SIRET 940 361 678 00011, 1 Allée Nicéphore Niépce, 94300 Vincennes, France) for users accessing venues in France and Europe, and GetOut, Inc. (3321 S Emerald Avenue Apt 2, Chicago, IL 60616, USA) for venues in the United States. Email: [email protected]. This policy describes the types of information collected when you visit getout.sport, use the GetOut Sport mobile application, and our practices for collecting, using, maintaining, protecting, and disclosing that information.

2. Data Collected

We collect the following categories of data:

  • Identifiers: name, email address, phone number, IP address, account ID
  • Commercial data: booking history and requested services
  • Geolocation: physical location or movements (with your consent)
  • Network activity: browsing history, searches, site interactions
  • Sensitive data: precise geolocation, login credentials, financial information (processed by our PCI-DSS certified payment provider)

3. How We Use Your Data & Legal Basis

We use your data for the following purposes, each associated with a legal basis under GDPR:

  • Facilitate services such as booking sports facilities (legal basis: contract performance)
  • Ensure security and prevent fraud (legal basis: legitimate interest)
  • Personalize your user experience (legal basis: legitimate interest)
  • Improve our products, services and content (legal basis: legitimate interest)
  • Contact you about your account (legal basis: contract performance)
  • Send you commercial offers and information (legal basis: consent)

4. Data Sharing

We do not sell or lease your personal data. We may share it with:

  • Our subsidiaries and related entities for service delivery
  • Sports facility partners offering services through the platform
  • Service providers: hosting, payment processing, analytics, customer support
  • Competent authorities when required by law, fraud prevention or security protection

5. Your Rights (GDPR)

Under GDPR and applicable laws, you have the following rights:

  • Right of access: obtain a copy of your personal data
  • Right to rectification: correct inaccurate or incomplete data
  • Right to erasure: request deletion of your data
  • Right to portability: receive your data in a structured format
  • Right to object: object to the processing of your data
  • Right to withdraw consent: withdraw consent at any time by emailing [email protected]

6. Data Retention

We retain your personal data for as long as reasonably necessary for the purposes described in this policy. After that period, your data is deleted or anonymized.

7. Security

We implement reasonable technical, administrative and physical safeguards to protect your data against loss, unauthorized access, use, alteration and disclosure. No system can guarantee 100% security.

8. International Transfers

Your data may be transferred to and processed in the United States by GetOut, Inc., our partner company. These transfers are governed by Standard Contractual Clauses (SCCs) adopted by the European Commission, in accordance with Articles 44 to 49 of the GDPR. Our technical providers (Google Cloud, Stripe) also have appropriate safeguards in place for data transfers outside the European Economic Area.

9. Minors

We do not knowingly collect data from individuals under 16 without parental or guardian consent. If we learn that data from a minor has been collected, we will take steps to delete it.

10. Contact

For any questions about this policy or to exercise your rights, contact us at [email protected] or by mail at GetOut France, 1 Allée Nicéphore Niépce, 94300 Vincennes, France. EU residents may also file a complaint with their country's supervisory authority (CNIL in France: www.cnil.fr).