Privacy Policy

How SculptClub handles your personal data when you use our website, contact us, or book the studio.

1. Who we are

SculptClub is a private training studio in Amsterdam (Jordaan). We are responsible for the processing of personal data described in this policy (the “data controller” under the GDPR).

2. What data we collect

We only collect data that is needed to run the studio, process bookings, communicate with you, and keep the space secure.

• Contact details: name, email address, phone number, and any details you send us by form, email, WhatsApp, or phone.
• Booking details: booked date/time, booking type, credits/discount code usage, and related booking history.
• Payment and invoice data: payment status, transaction references, invoice details, and billing information (where applicable).
• Website usage data: technical data such as IP address, browser/device information, and basic site logs/cookies needed for the site to work.
• Camera footage (CCTV): video recordings from the studio/entrance for security, safety, and incident handling.

3. Why we use your data (purposes)

• To process bookings and manage access to the studio
• To send practical information (for example booking confirmation, access instructions, support messages)
• To answer questions and provide customer support
• To process payments and keep financial records
• To improve website performance, usability, and reliability
• To protect the studio, equipment, and visitors (including via CCTV)
• To comply with legal obligations (for example administration and tax obligations)

4. Legal bases (GDPR)

We process personal data only when we have a valid legal basis under the GDPR, including:

• Contract: to process your booking, provide access, and deliver the service you requested.
• Legal obligation: to keep records required by Dutch tax and administrative laws.
• Legitimate interests: to secure the studio, prevent misuse, handle incidents, and improve our website and operations.
• Consent: where required (for example for certain cookies or marketing communications, if used).

5. Camera surveillance (CCTV)

SculptClub uses camera surveillance for security, safety, access control support, and incident investigation. This helps us protect visitors, trainers, equipment, and the premises in a self-service setup.

• Camera footage is used only for legitimate security and operational purposes.
• Access to footage is limited to authorized persons only.
• Footage is kept for a limited period, unless we need to retain it longer for an incident, dispute, investigation, or legal obligation.
• We do not use camera footage for marketing purposes.

6. Who we share your data with

We do not sell your personal data.

We may share personal data with service providers that help us operate SculptClub, only where necessary, for example:

• booking and scheduling tools
• payment providers
• website hosting / technical service providers
• form and communication tools
• accounting or administrative service providers

These parties process data on our behalf or as independent controllers where relevant (for example payment providers), under their own legal obligations and privacy terms.

7. Cookies and website tracking

Our website may use essential cookies and similar technologies to make the site function properly (for example navigation, form handling, or booking flow support).

If we use non-essential cookies (such as analytics or marketing cookies), these should only be placed after consent where legally required. You can manage your cookie choices through our cookie banner/settings (if shown on the site).

8. Embedded content and third-party tools

Pages on this site may contain embedded content or services (for example Google Maps, booking widgets, forms, reviews, or payment links). These third parties may process personal data (such as IP address, usage data, and cookies) as if you visited their service directly.

Please review the privacy policies of those providers if you want more detail on how they handle your data.

9. How long we keep your data

• Booking / customer communication data: as long as necessary to provide support and manage the customer relationship.
• Invoice and transaction records: for the period required by Dutch tax and administrative law.
• Contact requests: as long as needed to handle your request and reasonable follow-up.
• CCTV footage: for a limited retention period, unless longer retention is needed for an incident, dispute, investigation, or legal requirement.

10. International transfers

Some service providers we use may process data outside the European Economic Area (EEA). If that happens, we aim to use providers and safeguards that meet GDPR requirements (for example contractual safeguards and security measures).

11. Your rights under the GDPR

Subject to the conditions in the GDPR, you may have the right to:

• access your personal data
• correct inaccurate personal data
• request deletion of your personal data
• restrict processing
• object to processing
• request data portability
• withdraw consent (where processing is based on consent)

To exercise your rights, email us at contact@sculptclub.nl. We may ask for additional information to verify your identity before we process your request.

If you believe your privacy rights are being violated, you also have the right to lodge a complaint with the Dutch data protection authority (Autoriteit Persoonsgegevens).

12. Data security

We take reasonable technical and organizational measures to protect personal data against unauthorized access, misuse, loss, or disclosure. No system is 100% secure, but we aim to keep data access limited and appropriate to the purpose.

13. Children

SculptClub is not intended for children booking independently. If you believe personal data of a child has been shared with us in error, please contact us so we can review and remove it where appropriate.

14. Changes to this Privacy Policy

We may update this Privacy Policy from time to time, for example when our website, booking process, or legal obligations change. The latest version will always be published on this page.