PRIVACY POLICY

Last updated: 10 September, 2024.

Please read our Privacy Policy that explains how we collect, use, share and protect your personal information. All undefined and capitalized terms contained in this Privacy Policy shall have the meaning set forth in the Sunny Future Terms of Use.

1. HOW WE COLLECT YOUR PERSONAL INFORMATION

We collect your personal information when you interact with Sunny Future’s Website, such as when you book a course or an experience. 

2. PERSONAL INFORMATION WE COLLECT FROM YOU

We collect personal information via Sunny Future’s website.  We collect and use different kinds of personal data: identity data, contact data, transaction data, technical data, profile data, usage data, user generated content. Data is provided in different ways:

  • Visiting our spaces

  • Booking and paying for an experience or a course

  • Third Party Data (booking via affiliate partners)

3. USE OF YOUR PERSONAL INFORMATION

Sunny Future uses personal information for the following purposes:

  • Processing payments

  • Marketing and communications

  • Course group allocation

  • Customer support

  • New product development

  • Financial analysis and investor relations

  • Safety and security

4. LEGAL BASIS FOR THE COLLECTION OF YOUR INFORMATION

We will always collect personal information from you only where we either:

i) have your consent to do so;

ii) need the personal information to perform a contract with you (such as payment processing and experience delivery);

iii)need to collect your data for our legitimate interests (for instance to improve our services, or to ensure the safety and security of our customers, partners and employees);

iv) need to use your information to comply with any legal obligation or regulatory requirement to which we are subject.

5. SHARING YOUR PERSONAL INFORMATION 

We may disclose your personal data to any partner or provider that makes available an experience or course you book or use through our Site, or to third parties who provide data processing services to us (such as Stripe, Airtable, Yayem or Luma).

6. PROCESSING YOUR PAYMENTS

We use Luma and Stripe, a third party payment processor, to monetize experiences and courses booked directly with us. You can access Luma’s privacy policy here https://lu.ma/privacy-policy. We do not store card details. Credit and debit card payments are processed by Stripe on their secure payments server and all card details are fully encrypted and stored by them. Your payment will be processed by Stripe, who collect, use and process your information, including payment information, in accordance with their privacy policies. You can access their privacy policy here https://stripe.com/gb/privacy 

Experiences and courses can also be booked through affiliates. We will always ensure that affiliated partners conform with our privacy guidelines. You can access Yayem’s privacy policy here https://yayem.co/privacy 

7. INTERNATIONAL DATA TRANSFER

Information you submit to us is stored within the European Economic Area on our third-party hosting provider’s servers. This means that your personal data will be fully protected under the GDPR or to equivalent standards by law.

Additional member data may also be stored on custom databases built for CRM purposes. Our database provider is Airtable; they may transfer data outside the EEA, pursuant to appropriate safeguards adopted by the European Commission. Their privacy policy is available here: https://www.airtable.com/privacy 

Stripe’s services in Europe are provided by a Stripe affiliate—Stripe Payments Europe Limited (“Stripe Payments Europe”) - an entity located in Ireland. In providing Stripe Services, Stripe Payments Europe transfers personal data to Stripe, Inc. in the US.

8. RETENTION OF YOUR PERSONAL INFORMATION

We will retain your personal information as long as needed to fulfill the purposes explained in Section 3 above, where we have an legitimate interest or for a period specifically required by applicable regulations or laws. 

When determining the relevant retention periods, we will take into account:

  • our contractual obligations and rights in relation to the information involved;

  • legal obligation(s) under applicable law to retain data for a certain period of time;

  • statute of limitations under applicable law(s);

  • our legitimate interests 

  • (potential) disputes; and

  • guidelines issued by relevant data protection authorities.

We will securely delete your personal information where we no longer require it for the purposes collected.

9. YOUR RIGHTS 

You have the following data protection rights:

  • access or request a copy or your information

  • update or delete your personal information

  • restrict or stop the processing of information

  • opt-out of marketing communications

  • where we have asked for your consent, withdraw this consent at any time

  • complain to your data protection authority

  • any other rights, as provided by applicable legislation

10. CHANGES TO OUR PRIVACY POLICY

We may update our Privacy Policy from time to time. If we make significant changes, we will notify you in advance of the changes, such as email. We encourage you to periodically review our Privacy Policy for the latest information.

Use of our services after an update amounts to consent to the updated Privacy Policy to the extent permitted by law.

Contact details

If you have any questions or concerns about our Privacy Policy or how we use your personal information more generally, you can contact us at nicolas@sunnyfuture.io