Privacy Policy

DiveStreams ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our dive shop management platform ("Service").

Please read this Privacy Policy carefully. By using the Service, you consent to the data practices described in this policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.

2.1 Information You Provide

We collect information you voluntarily provide when you:

• Create an account: Name, email address, phone number, business name, and billing information
• Use our Service: Customer data, booking information, equipment records, and business data you enter
• Contact us: Communications you send via email, support tickets, or other channels
• Subscribe: Payment card details (processed securely through Stripe)

2.2 Information Collected Automatically

When you access the Service, we automatically collect:

• Device information: Browser type, operating system, device type, and unique device identifiers
• Log data: IP address, access times, pages viewed, and referring URL
• Usage data: Features used, actions taken, and time spent on the Service
• Location data: General geographic location based on IP address

2.3 Information from Third Parties

We may receive information from third-party services you connect to DiveStreams, such as:

• Payment processors (transaction status and billing information)
• Email service providers (delivery status)
• Analytics services (aggregated usage patterns)

We use the collected information to:

• Provide, maintain, and improve the Service
• Process transactions and send related information
• Send administrative messages, updates, and security alerts
• Respond to your comments, questions, and support requests
• Monitor and analyze usage patterns and trends
• Detect, prevent, and address technical issues and fraud
• Personalize and improve your experience
• Send promotional communications (with your consent)
• Comply with legal obligations

We use cookies and similar tracking technologies to collect and store information about your interactions with the Service.

Types of Cookies We Use:

• Essential cookies: Required for the Service to function properly (authentication, security)
• Functional cookies: Remember your preferences and settings
• Analytics cookies: Help us understand how you use the Service
• Marketing cookies: Used to deliver relevant advertisements (only with consent)

You can control cookies through your browser settings. However, disabling certain cookies may affect the functionality of the Service.

We may share your information in the following circumstances:

• Service providers: With third-party vendors who perform services on our behalf (hosting, payment processing, email delivery, analytics)
• Business transfers: In connection with a merger, acquisition, or sale of assets
• Legal requirements: When required by law or to respond to legal process
• Protection of rights: To protect the rights, property, and safety of DiveStreams, our users, or others
• With your consent: When you explicitly authorize the sharing

We do not sell your personal information to third parties.

Our Service integrates with third-party services that have their own privacy policies:

• Stripe: Payment processing (Stripe Privacy Policy)
• SendGrid: Email delivery
• Google Analytics: Usage analytics (if enabled)

We encourage you to review the privacy policies of these third-party services.

We implement appropriate technical and organizational security measures to protect your information, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Regular security assessments and penetration testing
• Access controls and authentication requirements
• Secure data centers with physical security measures
• Employee training on data protection practices

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

We retain your information for as long as your account is active or as needed to provide the Service. We may also retain information as necessary to:

• Comply with legal obligations
• Resolve disputes
• Enforce our agreements
• Maintain business records

After account deletion, we will delete or anonymize your data within 90 days, except where retention is required by law.

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information
• Portability: Request a machine-readable copy of your data
• Restriction: Request restriction of processing in certain circumstances
• Objection: Object to processing based on legitimate interests
• Withdraw consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at privacy@divestreams.com. We will respond to your request within 30 days.

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

When we transfer data internationally, we implement appropriate safeguards, such as standard contractual clauses, to ensure adequate protection of your information.

The Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected information from a child, we will delete it promptly.

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information held by businesses
• Right to opt-out of the sale of personal information
• Right to non-discrimination for exercising your rights

To exercise your CCPA rights, contact us at privacy@divestreams.com.

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last updated" date
• Sending an email notification (for significant changes)

We encourage you to review this Privacy Policy periodically for any changes.

If you have questions about this Privacy Policy or our data practices, please contact us:

DiveStreams
Email: privacy@divestreams.com
Support: support@divestreams.com

For data protection inquiries in the European Union, you may also contact our Data Protection Officer at dpo@divestreams.com.