Privacy Policy

Company and Services

• Company: LAB Disrupt Ltd
• Website: www.mysessionapp.com
• App: MySession App

1. Definitions

• “User(s)” – any person who uses MySession App, including individuals, parents/guardians, dependents, and instructors.
• “Instructor” – a user who creates and manages a “space” and offers sessions.
• “Dependent(s)” – persons (usually children) linked to a parent/guardian’s account for whom sessions can be booked.
• “Space” – an instructor’s hub/profile where they host sessions.
• “Personal Data” – information relating to an identified or identifiable natural person.
• “Processing” – any operation performed on personal data, such as collection, storage, use, disclosure.

2. Information We Collect

We collect the following categories of information:

• Personal Information: name, email, phone number, profile photo (optional), payment details (processed via third-party providers).
• Dependent Information: name, year of birth, relationship to account holder.
• Instructor Information: team/organisation name, logo (optional), website (optional), space details.
• Booking Data: session selections, bookings, attendance, payments.
• Usage Data: IP address, device type, OS, app version, log data, activity in the app.
• Communications Data: notifications, reminders, messages.

3. How We Use Your Information

• Provide services (bookings, payments, session management, communications).
• Manage accounts and dependent profiles.
• Process secure payments and surcharges.
• Communicate updates, reminders, cancellations.
• Analyse and improve the app (analytics, bug fixes, feature development).
• Ensure compliance with UK law.

4. Legal Basis for Processing

Under UK GDPR, our lawful bases for processing include: contractual necessity, consent, legitimate interests, and legal obligations.

5. How We Share Information

We do not sell your personal data. We share it with:

• Payment providers (Stripe, Apple Pay, Google Pay) for transactions.
• Instructors (relevant booking details, dependents’ names, attendance).
• Service providers (hosting, analytics, notifications).
• Legal authorities if required.

6. Data Retention

We retain personal data only as long as necessary or legally required. You may request deletion; we will delete or anonymise data unless law requires otherwise.

7. Data Security

We implement encryption, secure payment gateways, and access controls to protect your data. However, no system is fully secure.

8. International Transfers

Data may be processed outside the UK. We ensure appropriate safeguards such as Standard Contractual Clauses.

9. Your Rights

You have rights under UK GDPR: access, correction, erasure, restriction, objection, portability, withdraw consent, and complain to the regulator the Information Commissioner’s Office (ICO).

10. Children’s Privacy

Dependent data is managed by a parent/guardian. Children cannot create accounts independently.

11. Cookies & Tracking

We may use cookies/technologies on our website and app for functionality, analytics, and performance.

12. Updates to This Policy

We may update this policy from time to time. Updates will be posted on our website with a revised effective date.

13. Contact Us

If you have any questions or requests, please contact us: