Privacy Policy
Last updated: 22 November 2025
Quick Summary
- We collect minimal data to run classes and reply to enquiries.
- Lawful bases: contract, legitimate interest, consent (for marketing).
- We never sell your data. UK/EU hosting where possible.
- You can access, rectify or erase your data at any time.
Controller
MotionVault Dance UK, London, United Kingdom. Contact: [email protected], +44 20 7946 0958.
Data We Process
Identity (name), contact (email, phone), preferences (classes, schedule), and device data (cookies/analytics if accepted). If you book a paid event, your payment is processed by a PCI DSS compliant payment provider; we receive only limited transaction metadata (no full card details).
Purposes
- Provide and manage dance courses and bookings.
- Respond to support and accessibility requests.
- Improve our services through aggregate analytics (if accepted).
- Send service communications (e.g., schedule changes, safety notices).
- Optional marketing updates if you consent, with easy opt-out in each message.
Lawful Bases
- Contract: to set up accounts, take bookings, and deliver classes.
- Legitimate interests: to keep services secure, prevent abuse, and understand aggregate usage.
- Consent: for non-essential cookies/analytics and marketing communications.
- Legal obligation: to retain certain records for tax and accounting.
Sources of Data
We collect data directly from you (forms, emails, phone) and from your device (cookies/analytics if accepted). We may receive limited updates from payment processors about transaction status.
Sharing
We use vetted processors under data processing agreements. Typical categories include: hosting and cloud infrastructure, email and customer support, payment services, analytics (if accepted), and error monitoring. We do not sell personal data.
International Transfers
We prefer UK/EU data centres. If transfers outside the UK/EU occur, we rely on adequacy regulations or Standard Contractual Clauses with additional safeguards.
Security
We apply layered security controls: encryption in transit, access controls on a need-to-know basis, routine updates, and staff training. No method is 100% secure; we promptly assess and act on incidents.
Retention
We keep enquiry records up to 24 months; legal/transactional records up to 6 years.
- Enquiries: up to 24 months
- Account/booking records: while active plus up to 24 months
- Financial records: up to 6 years to meet legal obligations
- Marketing preferences: until you opt out or request deletion
Your Rights
Under UK GDPR you have the right to access, rectification, erasure, restriction, portability and objection. You can also withdraw consent at any time (this does not affect prior lawful processing). To exercise rights, email [email protected] or use the “Data rights request” button on this page.
Automated Decision-Making
We do not conduct automated decision-making producing legal or similarly significant effects.
Children
Our services are primarily for adults and older teens under appropriate supervision. If you believe a child’s data was provided without proper authorisation, please contact us and we will act promptly.
Cookies
See our cookie banner and preferences. Necessary cookies are always on; analytics/marketing are optional. You can update preferences at any time via the cookie settings link in the footer (when available). Current preference snapshot for this browser is shown below.
Complaints
If you have concerns, contact us first at [email protected]. You also have the right to complain to the UK Information Commissioner’s Office (ICO). See ico.org.uk or call 0303 123 1113.
Changes to This Notice
We may update this policy to reflect changes in law or our services. Material updates will be highlighted on this page. The “Last updated” date shows the latest revision.
Contact
If you have questions, email [email protected]. We aim to reply within one UK business day.