GDPR Compliance

GDPR Compliance

Last Updated: May 18, 2025

This GDPR Compliance Policy explains how GOLFSIX complies with the European Union's General Data Protection Regulation (GDPR). We are committed to protecting and respecting your privacy and ensuring we process your personal data in accordance with applicable data protection laws.

Data Controller

For the purposes of the GDPR, GOLFSIX is the data controller for the personal data processed through our platform. As a data controller, we determine the purposes and means of processing your personal data.

Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right to Access: You have the right to request copies of your personal data.
  • Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete any information you believe is incomplete.
  • Right to Erasure: You have the right to request that we erase your personal data, under certain conditions.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
  • Right to Data Portability: You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

How We Process Personal Data

We process personal data for the following purposes:

  • To provide and maintain our service
  • To notify you about changes to our service
  • To provide customer support
  • To gather analysis or valuable information so that we can improve our service
  • To monitor the usage of our service
  • To detect, prevent, and address technical issues

Lawful Basis for Processing

We process personal data on the following legal bases:

  • Consent: We may process your data when you have given us specific consent to use your personal information for a specific purpose.
  • Legitimate Interests: We may process your data when it is reasonably necessary to achieve our legitimate business interests and those interests do not outweigh your interests and fundamental rights and freedoms.
  • Performance of a Contract: We may process your personal information where we are in a contractual relationship with you and need to process your information to fulfill our contractual obligations.
  • Legal Obligations: We may disclose your information where we are legally required to do so to comply with applicable law, governmental requests, judicial proceedings, or court orders.

International Data Transfers

If we transfer your personal data to countries outside the European Economic Area (EEA), we ensure a similar degree of protection is afforded to it by implementing safeguards such as:

  • EU-US Privacy Shield (where applicable)
  • Standard Contractual Clauses approved by the European Commission
  • Binding corporate rules for transfers within our group of companies

Data Retention

We will retain your personal data only for as long as is necessary for the purposes set out in this GDPR Policy. We will retain and use your personal data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions related to this GDPR Policy. If you have any questions about this GDPR Policy, please contact our DPO at:

dpo@golfsix.com
GOLFSIX Data Protection
123 Golf Street
San Francisco, CA 94103
USA

Filing a Complaint

If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law, you have the right to lodge a complaint with the supervisory authority in your country of residence.