Skip to main content
← Back to home

Privacy Policy

Last updated: April 2026

1. Who we are

Aequus Archery (“we”, “us”, “our”) provides an online booking platform for archery clubs and their members in the United Kingdom. We act as a data processor on behalf of the archery clubs (data controllers) whose sessions are listed on this platform.

If you have questions about how your data is handled, please contact us at privacy@aequusarchery.com.

2. What personal data we collect

When you make a booking through our platform we collect the following information about each participant:

  • Name — first name and last name, used to identify each participant in the booking.
  • Email address — used to send booking confirmations and session reminders.
  • Phone number — used for urgent communication related to your session (for example, a last-minute cancellation).
  • Date of birth — used to determine whether a participant is a junior (under 18) for pricing purposes and to assign age-appropriate equipment and groupings.
  • Height (cm) — used to prepare appropriately sized archery equipment before your session.
  • Wingspan (cm) — used alongside height to size bows and arrows correctly.
  • Shooting hand preference — used to allocate the correct bow type (right- or left-handed).

We also collect technical data such as IP addresses and browser information through standard server logs, and we use cookies where necessary for the platform to function.

3. Why we collect your data (lawful basis)

We process your personal data on the following grounds:

  • Performance of a contract — to process your booking, take payment, and communicate with you about your session.
  • Legitimate interests — to ensure participant safety by having correctly sized equipment, and to provide age-appropriate grouping for sessions involving minors.
  • Legal obligation — to retain transaction records as required by applicable financial and tax regulations.

4. How long we keep your data

Booking records (including personal and payment data) are retained for seven years from the date of the booking to comply with UK financial record-keeping requirements. After this period, data is securely deleted.

If you request erasure of your data and there is no legal obligation to retain it, we will delete it within 30 days of your request.

5. Third parties we share data with

We share your data with the following third-party service providers only to the extent necessary to operate the platform:

  • Stripe, Inc. — payment processing. Your card details are entered directly on Stripe’s hosted checkout page and are never stored on our servers. Stripe is PCI DSS Level 1 certified. See Stripe’s Privacy Policy.
  • Amazon Web Services (AWS) — cloud infrastructure hosting the platform, and AWS Simple Email Service (SES) for transactional emails. AWS data centres used are located within the EU/EEA.
  • The archery club you are booking with — your booking details are visible to the club’s coaching staff so they can prepare for your session.

We do not sell your personal data to any third party.

6. Your rights under UK GDPR

Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, you have the following rights:

  • Right of access — you can request a copy of the personal data we hold about you.
  • Right to rectification — you can ask us to correct inaccurate data.
  • Right to erasure — you can ask us to delete your data where there is no legal reason for us to keep it.
  • Right to data portability — you can request your data in a structured, commonly used format.
  • Right to restrict processing — you can ask us to limit how we use your data in certain circumstances.
  • Right to object — you can object to processing based on legitimate interests.

To exercise any of these rights, please email privacy@aequusarchery.com. We will respond within 30 days. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk.

7. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. All data is transmitted over HTTPS and stored with encryption at rest.

8. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date at the top of this page. Continued use of the platform after any changes constitutes your acceptance of the revised policy.

See also our Terms of Service.