GDPR

General Data Protection Regulation (GDPR) 2018

In May 2018, new Europe-wide guidelines came into place regarding how your Data is acquired, stored, retrieved and accessed. These new guidelines give the Data Owner (you) more control over what information is kept.

This document sets out what personal data collected from all classes, private sessions and workshop participants is handled by Sophie Dubillot Yoga, and to reassure you of GDPR compliance.

  1. What Data is Acquired?
    i) General Class Data – Paper
    When you first attend a class, be it a group setting, a private session, a corporate session or a workshop, you will fill in a PARQ/Medical History form which details any important medical details, your contact details and the expectations you have from the classes.
    ​ ii) Electronic Data
    Your email address and name is collected from the PARQ form for email marketing purposes by Sophie Dubillot.

2. How is this Data used?

i) Medical Forms
The information provided on the medical forms help me to teach appropriate techniques for various medical conditions, and to understand what the general expectations for classes are, which will inform my teaching.

​ ii) Electronic Data
The email addresses stored on mailchimp.com are used to send out regular newsletters to inform you of any new classes, workshops or events that are coming up, and also to share the occasional piece of inspiration.

​ iii) Contact Details
The mobile numbers are used to contact you in the event that a class is cancelled at short notice and also an emergency contact number is used in case of your emergency.

Please note that never, ever will any of your data be shared with a third party, unless I am required to do so by law.

​3. How is the Data Stored?
i) Medical Forms
The paper medical forms are stored securely in a locked safe at my home office.

​ii) Electronic Data
Your electronic data is stored securely at the Mailchimp.com.

​4. How Long is the Data retained?
i) Medical Forms
For insurance purposes, all Medical Information must be retained for 7 years. After 7 years, the forms will be shredded and incinerated.​

ii) Electronic Data
Class and Workshop Booking data is regularly removed and deleted from the Mailchimp application.

Email addresses can be removed from the Mailchimp.com application by clicking unsubscribe at the bottom of the email, or by contacting me for a manual deletion.

​Payment details and purchase histories are stored, by law, for 7 years, for accounting purposes.

​iii) Contact Details
Your contact details will be retained for as long as you are a regular attendee at the classes. Once you leave the class, your mobile number will be removed from the contact document.

​5. Accessibility
A major change in the regulations regarding data collection, is that we all have more control over the personal data that is stored about us. To this end, you can gain access to any of the data that I hold about you, at any time, by requesting it in the following ways:-

​i) Medical Forms
Please email your request to me at sophiedubillot@hotmail.com detailing your name and what class you currently attend or have attended in the past. Once I have located the form, I will send a scanned copy back to you via email.

​ii) Electronic Data
Please email your request to me at sophiedubillot@sophiedubillot.com and I will email you the document file that is held by email.