Privacy Policy

Last updated: 1st January 2026

Introduction

infinitespark B.V. ("we," "our," or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website infinitespark.world or use our recovery and mobility training services.

We are the data controller for the purposes of the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Data Collection

The data we collect includes personal information that you voluntarily provide to us when you register for our services, express an interest in obtaining information about us or our services, or otherwise contact us.

Specifically, we may collect the following types of personal information:

  • Contact information (name, email address, phone number, postal address)
  • Health and fitness information relevant to our training services
  • Communication preferences
  • Payment and billing information
  • Website usage data through cookies and similar technologies
  • Any other information you choose to provide

How We Use Your Information

We process your personal data for various purposes, depending on how you interact with our services. The specific purposes for how we use your information include:

  • Providing and maintaining our recovery and mobility training services
  • Processing payments and managing billing
  • Communicating with you about our services
  • Responding to your enquiries and providing customer support
  • Improving our website and services
  • Compliance with legal obligations
  • Marketing our services (with your consent where required)

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use, please refer to our Cookie Policy.

Legal Basis for Processing

Under the GDPR, we process your personal data on the following legal bases:

  • Contract: To perform our contractual obligations to you
  • Legitimate interests: To operate our business and improve our services
  • Consent: Where you have given specific consent for marketing communications
  • Legal obligation: To comply with applicable laws and regulations

Data Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except in the following circumstances:

  • Service providers who assist us in operating our website and conducting our business
  • Healthcare professionals (with your explicit consent)
  • Legal requirements or to protect our rights and safety
  • Business transfers (mergers, acquisitions, etc.)

Data Retention

We will retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, including:

  • For the duration of our contractual relationship
  • As required by law or regulation
  • To resolve disputes or enforce our agreements
  • For legitimate business purposes

Generally, we retain client data for up to 7 years after the end of our service relationship, unless a longer retention period is required by law.

Your Rights

Under the GDPR and other applicable data protection laws, you have the following rights regarding your personal data:

  • Right of access: Request copies of your personal data
  • Right to rectification: Request correction of inaccurate data
  • Right to erasure: Request deletion of your personal data
  • Right to restrict processing: Request limitation of processing
  • Right to data portability: Request transfer of your data
  • Right to object: Object to processing of your personal data
  • Right to withdraw consent: Withdraw consent at any time

To exercise any of these rights, please contact us using the information provided below.

Data Security

We implement appropriate technical and organisational security measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. However, no method of transmission over the internet or electronic storage is completely secure.

International Data Transfers

If we transfer your personal data outside the European Economic Area (EEA), we will ensure that appropriate safeguards are in place to protect your information in accordance with applicable data protection laws.

Children's Privacy

Our services are not intended for children under the age of 16. We do not knowingly collect personal information from children under 16 without appropriate parental consent.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Contact Information

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

infinitespark B.V.

Schoolstraat 243

2540 DU The Hague

South Holland, Netherlands

Email: privacy@infinitespark.world

Phone: +31 70 432 8066

Data Controller: infinitespark B.V.
Registration Number: KvK76413289
VAT Number: NL768245319B02

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe that our processing of your personal data violates applicable data protection laws. In the Netherlands, the supervisory authority is:

Autoriteit Persoonsgegevens (Dutch Data Protection Authority)

Website: autoriteitpersoonsgegevens.nl