FR

Privacy Policy

Last updated: January 3, 2026

OSS Academy SAS ("we", "our", "us") is committed to protecting your privacy. This privacy policy explains how we collect, use, store, and protect your personal data when you use our mobile application and website (together, the "Service").

1. Data Collected

Registration Data

When creating your account, we collect your email address, first name, last name, and a password (stored in encrypted form).

Profile Data

You can complete your profile with: date of birth, country, phone number, gender, weight category, age category, belt color, and profile photo.

Activity Data

We record your class attendance, your ratings on educational resources, your participation history, and your training statistics.

Payment Data

Payments are processed by Stripe. We never store your credit card information directly. Only a Stripe customer identifier is kept.

Technical Data

We securely store session information on your device to maintain your connection and send you notifications. In case of application crashes or errors, technical data (device type, OS version, error trace) is automatically collected to help us improve the Service.

2. Data Usage

We use your data to:

  • Provide and maintain the Service
  • Manage your account and class registrations
  • Process your subscription payments
  • Send you transactional emails (verification, password reset)
  • Send you class reminder notifications
  • Calculate statistics and rankings
  • Improve our Service

3. Legal Basis for Processing (GDPR)

Contract Execution

Processing your registration, profile, and activity data is necessary for the execution of the service contract.

Consent

Push notifications and certain communications are based on your consent, which you can withdraw at any time.

Legitimate Interest

Improving our Service and preventing fraud are based on our legitimate interest.

4. Data Sharing

We share your data only with the following providers:

Stripe (Payments)

For secure payment processing.

Brevo (Emails)

For sending transactional emails (email verification, password reset).

Expo (Notifications)

For sending push notifications to your device.

Sentry (Monitoring)

For detecting and analyzing application errors and crashes to improve its stability.

We never sell your personal data.

5. Your Rights

GDPR Rights (European Union)

You have the following rights:

  • Right to access your data
  • Right to rectify inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to data portability
  • Right to object to processing
  • Right to restriction of processing
  • Right to withdraw your consent

CCPA Rights (California)

California residents have additional rights, including the right to know what data is collected and the right to request its deletion.

How to Exercise Your Rights

Contact us at contact@oss-academy.com. We will respond within 30 days.

6. Security

We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, modification, disclosure, or destruction.

7. Data Retention

Your data is retained as long as your account is active. After account deletion, we retain certain data for a limited period for legal obligations (accounting, potential litigation).

8. Local Storage Technologies

Our application uses your device's local storage to maintain your session, save your preferences, and remember your active academy. This data remains on your device and is deleted upon logout.

9. Changes to This Policy

We may update this privacy policy. In case of significant changes, we will notify you via in-app notification or email.

10. Contact

For any questions regarding this privacy policy or to exercise your rights, contact us:

OSS Academy SAS

Email: contact@oss-academy.com