Privacy Policy

Data Controller

The data controller responsible for processing your personal information pursuant to the General Data Protection Regulation (GDPR) is:

Leipzig International Tennis

Gretschelstraße 1
04315 Leipzig
Germany

Email: leipzig.int.tennis@gmail.com
Phone: +49 152 23 18 20 62

1. Information We Collect

We collect personal information in various ways:

Information You Provide

• Booking & Registration: Name, email address, phone number, age, and tennis level

• Payment Information: Billing address and payment details (processed securely via Stripe)

• Communication: Messages via WhatsApp, email, or contact forms

• Preferences: Training preferences, scheduling availability, and goals

Information Collected Automatically

• Website usage data and analytics

• Device information (browser type, IP address)

• Cookies and similar tracking technologies

2. How We Use Your Information

We use your personal data for the following purposes:

Service Delivery

• Managing training bookings and memberships

• Processing payments and invoicing

• Providing coaching and training services

• Sending session reminders and updates

Communication

• Responding to inquiries and support requests

• Sharing important service updates

• Community announcements and events

Improvement & Analytics

• Understanding how you use our services

• Improving our website and offerings

• Personalizing your experience

3. Legal Basis for Data Processing

Pursuant to Article 6 of the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

Performance of a Contract (Article 6(1)(b) GDPR)

• Processing necessary to manage your training bookings and memberships

• Payment processing and invoice generation

• Delivery of coaching and training services

Consent (Article 6(1)(a) GDPR)

• Marketing communications and newsletters (you can withdraw consent at any time)

• Non-essential cookies and analytics

• WhatsApp communication and community messaging

Legitimate Interests (Article 6(1)(f) GDPR)

• Improving our website, services, and user experience

• Analyzing usage patterns to enhance service quality

• Fraud prevention and security measures

• Responding to inquiries and providing customer support

Legal Obligation (Article 6(1)(c) GDPR)

• Compliance with German tax law (invoicing and bookkeeping requirements)

• Compliance with accounting regulations

• Response to lawful requests from authorities

4. Data Security

We take your data security seriously. Payment information is processed securely through Stripe and is never stored on our servers. We use industry-standard encryption and security measures to protect your personal information.

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security.

5. International Data Transfers

Some of our service providers, including Stripe (payment processing), Google Analytics, and WhatsApp (Meta), may process your personal data outside the European Economic Area (EEA). We ensure that all international data transfers are protected by appropriate safeguards in accordance with GDPR requirements, including Standard Contractual Clauses or Adequacy Decisions where applicable.

By using our services, you acknowledge and consent to the transfer of your data to jurisdictions outside the EEA where necessary for service delivery.

6. Data Sharing

We do not sell or share your personal data with third parties for marketing purposes. Your data may be shared only when:

• Payment Processing: With Stripe for secure payment handling

• Legal Requirements: When required by law or to protect our rights

• Service Providers: With trusted partners who assist in delivering our services (under confidentiality agreements)

7. Data Retention and Deletion

We retain your personal information only as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. Specific retention periods include:

Payment & Invoicing Records

Retained for 10 years in accordance with German tax law (Handelsgesetzbuch - HGB § 257).

Customer Account Data

Retained for the duration of your membership and coaching relationship, plus 3 years for dispute resolution purposes.

Marketing Communications

Retained until you withdraw consent or unsubscribe.

Analytics Data

Aggregated, anonymized data retained indefinitely; personal analytics data deleted after 14 months.

When data is no longer needed, we securely delete or permanently anonymize it.

We retain your personal information only as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. When data is no longer needed, we securely delete or anonymize it.

8. Cookies and Analytics

Our website may use cookies and similar tracking technologies to enhance your browsing experience. We distinguish between:

Essential Cookies

Necessary for website functionality. Used without requiring consent.

Non-Essential Cookies & Analytics

Including Google Analytics and similar technologies, are only used with your explicit consent where required by law. You can withdraw consent at any time through your browser settings or by contacting us.

Important: If we implement additional tracking technologies (Google Analytics, Meta Pixel, TikTok Pixel, etc.), we will display a cookie consent banner and disclose these services specifically in this section.

9. WhatsApp Communication

If you contact us via WhatsApp, please be aware that:

• WhatsApp is owned and operated by Meta Platforms, Inc.

• Your messages may be processed and stored by Meta in accordance with their privacy policies

• Meta may use your data for purposes beyond our control (e.g., platform improvements, advertising)

• By contacting us through WhatsApp, you acknowledge and accept Meta's privacy practices and terms of service

For sensitive information, we recommend contacting us via email instead.

10. Your Rights

Under GDPR and applicable data protection laws, you have the right to:

• Access: Request a copy of your personal data

• Correction: Request correction or updating of inaccurate data

• Deletion: Request deletion of your data ("right to be forgotten")

• Portability: Receive your data in a structured, portable format

• Restriction: Restrict processing of your data

• Objection: Object to processing of your data

To exercise any of these rights, contact us using the information below.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of external sites. We encourage you to review their privacy policies before providing any information.

12. Children's Privacy

Our services may be used by minors (under 18) with parental consent. We do not knowingly collect personal information from children without parental permission. If we become aware of collecting data from a minor without consent, we will promptly delete it.

13. Policy Changes

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes via email or by posting a prominent notice on our website. Your continued use of our services indicates acceptance of the updated policy.