Privacy Policy

Privacy Policy

The privacy notice for o2sessions activity bookings, presented in a single publication-ready section using the same visual treatment as the full terms page.

Last updated: July 6, 2026

This Privacy Policy explains how o2sessions ("Platform", "we", "us", "our") collects, uses, and protects personal data in connection with the activity booking services available through our website.

1. Data Controller

The data controller is:

CREATIVE APPS

EURL

48 rue de saintonge, 75003 Paris

SIREN: 791767684

VAT: FR44791767684

Email: hello@o2sessions.com

2. Personal Data We Collect

We may collect the following categories of personal data:

  • Identity data: name, surname
  • Contact data: email address, phone number
  • Booking data: selected services, dates, participant details (including minors where applicable)
  • Payment data: payment information (processed securely via third-party providers; we do not store full card details)
  • Technical data: IP address, browser type, device information
  • Communication data: messages sent via customer support

3. Purposes and Legal Basis

We process personal data for the following purposes:

  • Booking management and service delivery

    Legal basis: performance of a contract

  • Customer support and communication

    Legal basis: contract and legitimate interest

  • Payment processing and fraud prevention

    Legal basis: contract and legal obligation

  • Compliance with legal obligations

    Legal basis: legal obligation

  • Improvement of services and analytics

    Legal basis: legitimate interest

  • Marketing communications (if applicable)

    Legal basis: consent

4. Data Sharing

We may share personal data with:

  • Activity providers ("Providers") for service delivery
  • Payment processors (Stripe)
  • IT and hosting providers
  • Analytics tools (if used)

All third parties are contractually bound to protect your data.

5. International Transfers

If data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards (such as Standard Contractual Clauses) are in place.

6. Data Retention

We retain personal data only as long as necessary:

  • Booking data: for the duration necessary to manage bookings, then as required for legal, accounting, tax, and dispute-management purposes
  • Customer communications: for the duration necessary to handle the request and protect legal rights
  • Marketing data: until consent is withdrawn

7. Your Rights

Under GDPR, you have the right to:

  • Access your data
  • Rectify inaccurate data
  • Request deletion ("right to be forgotten")
  • Restrict processing
  • Object to processing
  • Data portability

To exercise your rights, contact: hello@o2sessions.com

You also have the right to lodge a complaint with your local data protection authority (e.g., CNIL in France).

8. Cookies

We use cookies and similar technologies to:

  • Ensure proper website functionality
  • Analyze traffic and usage
  • Improve user experience

For more details, see our Cookie Policy.

9. Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse.

10. Minors

Personal data relating to minors is processed only with the authorization of a parent or legal guardian.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be published on this page with a revised date.

12. Contact

For any questions regarding this Privacy Policy, contact us at:

📧hello@o2sessions.com

o2sessions legal page for privacy policy information.

Contact support
o2sessions
Explore
Billing planTermsPrivacyLegal notice
Support

Questions about bookings, school launches, or tide-led scheduling? We are happy to help.

Talk to the team

o2sessions. All rights reserved.

Surf schools, Snowboarding schools in France.