Privacy Policy | Baby And Toddler Classes | Calmababy

Login to your account

To access your account, download our iOS or Android apps using the links below.

Download from the App Store Download from Google Play

Not a member?

To book online, view class availability and gain access to our full range of services requires a Calmababy account. To set this up, please contact the Centre on 01733 707808 or email [email protected]

I'm a Parent...

With a Baby

Find out more

With a Toddler

Find out more

Privacy Policy

Calmababy Privacy Policy

This privacy policy describes how Calmababy Ltd (‘we’ and ‘us’) collect, retain, use and store your information when you (whether you are a person or a business) interact with Calmababy via our website, booking software and mailing lists, or visit the Centre for classes and courses.

Calmababy is fully compliant with the General Data Protection Regulations (GDPR). We process personal client data to facilitate the booking of our classes and courses. We do not share any data we hold with third parties.

Our website

We collect very little information from viewers’ visits to our website. Absolutely no personal information is collected from our visitors. The website statistics gathered by our web hosting company records server requests only, e.g. the IP address and date of visit. This is similar to every other server on the web.

Our booking software

Our client data is stored via a secure third-party cloud software application whose privacy policy is available upon request. Data we collect from you to book our classes and courses:
  • Your name
  • Your address
  • Telephone numbers (usually you’re mobile)
  • Email addresses
  • Your children’s names and dates of birth
  • Medical history for you and your children (if applicable)

Our mailing lists

Our mailing lists are stored via secure third-party cloud software and email clients whose privacy policies are available upon request. Data stored in these applications contain the following information only:
  • First name
  • Last name
  • Email address
We keep the number of communications we send to a minimum, and will only send you information related to the following:
  • Booking confirmations and reminders
  • Payment receipts
  • Calmababy Newsletters
  • Offers and promotions

Data relating to children

We will not collect data relating to children without the express permission of a parent or legal guardian. In practice, we only process the following information relating to children:
  • Child’s name
  • Date of birth
  • Medical history (if appropriate)

Card payments and purchases

Calmababy is PCI compliant, in accordance with these regulations, we do not store debit or credit card details on site. If you have given us consent to retain your debit or credit card, your details are stored via secure third-party merchant providers on their systems. They are encrypted, except for the last four digits of the card number and its expiry date, and cannot be viewed by any member of the Calmababy team.

Our lawful basis for processing your data

When you visit our Centre, join as a member or contact us via email or social media we may ask permission to store your details in our booking software and mailing lists.

For existing customers who are attending classes and courses, we store, retain and use your data to provide the services agreed in your contract with us.

For new customers, all our systems require an affirmative opt-in before we can send you communications. We will undertake this process with you for each system during your initial registration.

For lapsed customers, we may from time to time, send you communications about our products and services which we believe you have a legitimate interest in receiving. You can opt out of these communications at any time.

Special category data

Calmababy does not collect special category data in the course of its routine operations. Following the COVID-19 pandemic, HM Government requires businesses to collect data for their Test & Trace scheme.

Our risk assessment recognises the need to potentially ask health screening questions to help make the Centre COVID secure. This data is defined as Special Category Data as it concerns the health of our staff and customers.

Our lawful basis for processing this data under Article 9 of GDPR is (i) Public health (with a basis in law). We delete all data collected for Test & Trace after 21 days.

Protecting your data

Your data is stored via a small number of third-party cloud software applications with whom we have individual contracts and service level agreements. Each provider has separate security and privacy policies, copies of which are available upon request by contacting the Centre.

Any internal data we hold is stored either on our hardware or via cloud storage. All our internal systems are password-protected, and user access is restricted.

Data retention

We do not hold your data any longer than is necessary to provide you with our services or to comply with applicable law. We would expect to retain, store and use your data for the lifespan of your children’s swim journey with us, or for the duration of any classes and courses you attend.

While we do not place a specific timeframe on the retention of our data, we periodically review our records to edit, archive or delete data we deem surplus to requirements.

Calmababy Ltd is also required, by law, to retain financial information relating to its business practices for up to 7 years.

Your rights

Under the GDPR you have the following rights:
  • to be provided with access to your personal data held by us;
  • to request the rectification or erasure of your personal data held by us;
  • to object to the collection of your data and request that we cease processing your data;
  • to request that we restrict the processing of your personal data while we investigate your concerns with this information;
  • to object to solely automated processing; and
  • to request that your data be transferred to a third party (data portability).
We will not use any personal information obtained via this website, our booking software or mailing lists for any purpose other than that stated when the data is collected. We adhere to the terms of the GDPR and take the security and value of any information you supply us very seriously. We will not share your information with any third party unless required to do so by legal requirement.

If you'd like to swim with us for Term 3 starting 22nd May, please get in touch! More Info