Privacy Policy DO

Dive Odyssea: Data Protection Policy

The data held by Dive Odyssea is used for contact purposes, to track customers’ dive education progress, to facilitate agreed booking contracts with third party travel companies, and no other purposes.

The data controller for Dive Odyssea will be the proprietor of the business.

Access to the stored customer data will be limited to the data controller themselves and any qualified staff delegated by the data controller to assist in the day to day running of the business.

Data held electronically is restricted to:

  • Customer names
  • Customer dates of birth (required for regulatory purposes within the dive industry)
  • Customer contact details including:
    • Home or contact address
    • Telephone numbers
    • Email address
  • Emergency contact details including:
    • Home or contact address
    • Telephone numbers
  • Dive Certification achievement

Customers have the right, at any time, to ask for a copy of any data held by Dive Odyssea.

It is the responsibility of the individual (or parent/guardian of a minor) to inform Dive Odyssea of any changes to their information. 

Dive Odyssea only shares minimal data with the relevant diving International Governing Body, the Professional Association of Dive Instructors Europe, Middle East and Africa (PADI EMEA) to provide a certification service, and international recognition of customers’ certifications.

Typically, this data is restricted to:

  • Customer names
  • Customer dates of birth (required for regulatory purposes with the dive industry)
  • Customer contact details including:
    • Home or contact address
    • Email address (for industry quality assurance purposes)
  • Confirmation of relevant dive educational achievement to obtain correct certification

With respect of any personal data processed by Dive Odyssea and PADI EMEA, Dive Odyssea and PADI EMEA will respectively each be a controller in respect of such processing. Dive Odyssea and PADI EMEA agree to comply with the requirements of the Data Protection Laws applicable to controllers in respect of the provision of their respective services and otherwise in connection with this Agreement. For the avoidance of doubt, Dive Odyssea and PADI EMEA each have their own, independently determined privacy policies for the personal data they hold and are each a data controller (and not joint data controllers).

Travel companies accepting business from Dive Odyssea will be subject to their own independently determined privacy policies for the personal data they hold and will be held to be data controllers in their own right.

Dive Odyssea will not knowingly do anything or permit anything to be done which might lead to a breach by another party.

Revised November, 2021