campus logotype

Privacy policy

date

The present Privacy Policy (the “Policy”) is intended to formalize our commitment to respecting the privacy of users of the website https://campus.coach – Campus.coach (the “Site”), and the web and mobile Application (the “Application”), operated by Campus Running Addict Inc., a company incorporated in Canada, identified under number 1146898-7, with its registered office located at 4388 rue Saint-Denis, Suite 200 #768, Montréal (Québec), H2J 2L1, Canada.

The Policy and the General Conditions of the Site form a contractual set. All capitalized terms not defined in this Policy are defined in the General Conditions accessible here: General Conditions. In the context of providing our Site, we process your personal data in compliance with applicable privacy laws, namely the General Data Protection Regulation 2016/679 of April 27, 2016 ("GDPR"), Canada’s Personal Information Protection and Electronic Documents Act (“PIPEDA”), Quebec’s Act Respecting the Protection of Personal Information in the Private Sector, and under the conditions outlined below.

Personal data refers to any information relating to an identified or identifiable natural person. We collect and process personal data within the scope of providing our Services or communications about these Services exclusively, in strict compliance with applicable laws.

We collect only personal data that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.

The personal data processing carried out is based on the following legal grounds, in accordance with the GDPR:

  • Performance of a contract: account creation, access to Services, subscription management, customer support.

  • Consent: sending newsletters, promotional messages, placement of non-essential cookies.

  • Legal obligation: retention of billing and payment data for accounting and tax purposes.

  • Legitimate interest: improvement of Services, Site and Application security, fraud prevention, anonymized audience statistics.

By registering on the Site, you authorize us to process your personal data in accordance with the Policy. If you refuse the terms of this Policy, please refrain from using the Site or Services.

1. Under what circumstances do we collect your personal data and what data is collected?

We may collect and store your personal data, in particular when you browse the Site and the Application, fill in your runner profile data, or contact us.

We use your personal data to enable the implementation and management of the Services of the Site and the Application and to respond to your specific requests. We also use your personal data to operate and improve our Services, Site, our Application, and approach. This information allows us to better tailor our Services to your expectations.

If you have opted to receive emails and messages from us when creating your Account, you will then receive electronic and alphanumeric communications about our products and promotions. We will then use the personal data you provided during your registration. You can unsubscribe from these communications at any time.

1.1 Browsing on the Site

Connection data. 

Each time you connect to our Site or Application, we collect personal data such as, namely, the date and the time of connection, as well as information on the browser or store you are using. The legal basis for this processing is legitimate interest.

Navigation data. 

We also collect information identifying how you access the Site or the Application, which pages are visited and for how long. In this framework, we may resort to the use of cookies as specified in paragraph 6 below. The legal basis for this processing is legitimate interest.

1.2 Creating an account

Access to some of our Services requires the prior creation of an Account. In accordance with the General Conditions, you will be asked to provide certain personal data when creating your Account, including your first and last names, your country, your email address, and your phone number.

1.3 Payment

Some of the Services available are subject to a fee. To this purpose, you agree that we may use external service providers who may collect personal data in order to ensure the proper functioning of credit card or other payment method services and, where applicable, product or service delivery.

To pay for your purchase, you must provide your billing information as well as your payment details, and namely your card number, expiration date, and the security code in case of card payments. Your payment details are stored and secured by our payment provider https://stripe.com/fr, as well as the details of the purchases you make. The Site or the Application does not have access to your sensitive payment data such as your credit card number, nor does it store it.

The details of transactions are kept and secured at the provider https://stripe.com/fr. This retention is for internal purposes, including accounting, compliance, and legal purposes, as stated in paragraph 5 of this Policy.

1.4 Subscription to our newsletter

During the creation of your Account, you can give your prior consent to receiving our newsletters regarding news, new products, services, and promotions, within the framework of Services.

You can also consent directly to receiving our newsletters by updating your communication preferences at the designated place on the Site or the Application.

In any case, you have the right to withdraw your consent to receive such newsletters at any time and without fee in the conditions set out in paragraph 6 of the Policy.

1.5 Contacts

To follow up on the requests you may make to our Customer Service and to confirm the information about you, we may use your first name, last name, and email address.

1.6 Processing of data in the context of customer support using artificial intelligence

Description of the processing

As part of customer support, the Service uses a conversational assistant (chatbot) based on artificial intelligence technology to automatically answer certain user questions.

This service is operated by the provider Crisp Chat (https://crisp.chat), acting as a technical processors, in compliance with the applicable legal provisions regarding the protection of personal data.

Data processed

The data likely to be processed includes:

  • messages sent by the Customer via the chat,

  • profile information necessary to understand the context (e.g., training goals, fitness level),

  • technical metadata (timestamp, session ID, etc.).

Purposes of processing

  • Providing automatic and personalized responses to Customer questions,

  • Improving the quality and relevance of the responses provided,

  • Ensuring the follow-up of support requests and their transmission to a human customer service agent if necessary.

Legal basis for processing

This processing is based on:

  • the execution of the contract between the Client and the Operator for the support provided, 

  • and, where applicable, the legitimate interest of the Operator in improving the efficiency of its customer support.

Automated nature and transparency

The Client is informed that certain responses may be generated automatically by an artificial intelligence system. You may request to speak to a member of our team at any time.

This processing does not produce legal effects or automated individual decisions within the meaning of Article 22 of the GDPR.

Recipients and processors

Exchanges with the chatbot may be processed by technical service providers acting as processors.

These providers are subject to strict confidentiality and security obligations, and the data is hosted within the European Union (or in a country recognized by the European Commission as providing an adequate level of protection).

2. How do we protect your personal data?

We have implemented technical and organizational security measures to ensure the security, integrity, and confidentiality of all your personal data, preventing them from being distorted, damaged, or accessed by unauthorized third parties. We ensure an appropriate level of security, taking into account the state of knowledge, implementation costs, and the nature, scope, context, and purposes of processing as well as the risks and their probability.

However, it is specified that no security measure is infallible, and we cannot guarantee absolute security for your personal data.

Moreover, it is your responsibility to ensure the confidentiality of the password allowing you to access your Account. Do not share this information with anyone. If you share your computer, don't forget to log out before leaving a Service.

3. Under what circumstances do we share your personal data?

3.1 Sharing your personal data with third-party companies

When browsing the Site or the Application, your personal data may be transmitted to external service providers, commercial partners, technical partners, suppliers, and independent third parties that contribute to our contractual relationships.

This includes in particular:

  • technical providers involved in hosting and maintaining the Site;

  • payment service providers, in connection with the payment of your Subscription;

  • marketing solution providers;

  • commercial prospecting and social media communication management providers.

We take the necessary measures to adequately protect your data by adopting specific contractual measures and limiting sharing to what is necessary to provide the Services.

These providers may be located in Europe, within the European Economic Area, or sometimes outside the European Union. In the latter case, providers located outside the European Union have access to users’ personal data exclusively for the purpose of performing the services entrusted to them, and under conditions ensuring a sufficient and appropriate level of data protection. In such cases, we carry out a privacy impact assessment where required by law to protect data confidentiality.

In any event, these transfers are limited and governed by legal tools.

In accordance with the GDPR, all transfers of personal data to a country outside the European Union and/or not offering a level of protection deemed sufficient by the European Commission are governed by cross-border transfer agreements compliant with the standard contractual clauses issued by the European Commission. 

3.2 Sharing with authorities

We may be led to disclose your personal data to administrative or judicial authorities when their disclosure is necessary for the identification, apprehension, or prosecution of any individual likely to harm our rights, any other user, or a third party. We may also be legally required to disclose your personal data and cannot oppose it in that case.

4. How long do we retain your personal data?

We will only retain your personal data for the time of your registration on the Site to ensure your identification when connecting to your Account and to allow the provision of Services.

Thus, if you unsubscribe from the Site, your personal data will be deleted and only archived to establish proof of a right or contract.

In any event, we will hold your personal data for no longer than necessary for the purposes for which they are processed, in accordance with the uses set forth in this Policy and in compliance with laws and regulations.

5. Cookies: how do we use them?

5.1 What is a cookie?

A cookie is a text file that can be deposited on a terminal during the consultation of an online service with browsing software. A cookie file allows its issuer, during its validity period, to recognize the relevant terminal each time it accesses digital content containing cookies from the same issuer.

In any event, cookies deposited on your browsing terminal with your consent are destroyed 13 months after their deposit on your terminal.

5.2 What are the cookies issued on our Site used for?

The cookies we issue allow us to:

  • establish statistics and volumes of use and traffic of various elements composing our Site and Application (sections and contents visited, paths), allowing us to improve the interest and ergonomics of the Site and Application and, where applicable, of our products and services;

  • adapt the presentation of our Site and Application to your terminal's display preferences (language used, display resolution, operating system used, etc.) during your visits to our Site and Application, according to the equipment and software of display or reading that your terminal includes; 

  • remember information related to a form that you have filled out on our Site and/or Application (registering or accessing your account) or to products, services, or information you have chosen on our Site and Application (subscribed service, content of a shopping cart, etc.);

  • allow you to access reserved and personal areas of our Site and Application, such as your Account, with identifiers or data that you possibly previously entrusted to us and implement security measures, for example, when you are asked to log in again to content or a service after a certain period.

During your navigation on the Site and the Application, social network cookies may be generated, particularly through share buttons that collect personal data.

5.3 How can you control the cookies used?

Upon your first visit to the Site and the Application, a cookie banner will appear on the homepage. A clickable link allows you to learn more about the purpose and operation of cookies. You may or may not consent to the activation of some of these cookies.

Warning: Any setting is likely to modify your Internet browsing and conditions of access to certain Services requiring the use of cookies. We decline all responsibility for any consequences related to the degraded functioning of our Services resulting from the impossibility to record or consult the cookies necessary for their operation that you have refused or deleted. That would be the case if you tried to access our content or Services that require identification. That would also be the case when we (or our providers) could not recognize, for technical compatibility, the type of browser used by your terminal, its language and display settings, or the country from which your terminal seems connected to the Internet.

6. What are your rights?

You have rights over your personal data. In accordance with applicable laws and after proving your identity, you have the right to request access to the personal data concerning you, rectification, or deletion thereof.

Within the limits set by law, you also have the right to object to processing, to limit it, to withdraw your consent at any time, and the right to data portability of the personal data provided.

In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, you have the following rights:

  • Right of access: allows you to know what data concerning you is processed by the Site, obtain a copy, and verify its accuracy.

  • Right to rectification: you may request rectification of personal data concerning you when it is inaccurate or incomplete. If you have a subscriber account, you may access the section corresponding to your personal data to modify or update it. You must ensure that this data is true and accurate. You also undertake to inform us of any change or modification of this data. As a reminder, in principle you must communicate only your own personal data and not that of a third party. Any damage or loss resulting from the communication of inaccurate or incomplete information in our data collection forms is the sole responsibility of the Client of our Platform.

  • Right to erasure (or “right to be forgotten”): you may request the erasure of personal data concerning you if one of the grounds provided for in Article 17(1) of the GDPR applies.

  • Right to object: you may object at any time to the processing of your personal data under Article 21 of the GDPR.

  • Right to data portability: if processing is based on your consent or the performance of a contract and is carried out by automated means, you may request receipt of your data in a structured, commonly used, and machine-readable format.

To exercise your rights, you may contact us at: support@campus.coach 

(Proof of identity may be required to prevent fraudulent requests.)

You may unsubscribe from our newsletter at any time by clicking the unsubscribe link at the bottom of each email.

7. Can we modify the Policy?

We reserve the right to modify the Policy at any time. It is therefore recommended to consult it regularly. In case of modification, we will publish these changes on this page and in other places we deem appropriate, depending on the nature and significance of the changes made.

Your use of the Site and the Application after any modification signifies that you accept these changes. If you do not accept certain substantial changes made to this Policy, you must stop using the Site and the Application.