Privacy Policy.

The data controller responsible for processing your personal information is FF Movements, the operator of this website and the golf reservation platform accessible at ffmovements.com.

For any data protection enquiry, including the exercise of your rights, contact us at: privacy@ffmovements.com

Identity and contact data: full name, email address, telephone number, and country of residence, collected when you create an account, submit a contact form, or request a demo.

Booking data: golf course preferences, tee time selections, booking history, and payment references. We do not store full payment card numbers.

Authentication credentials: encrypted password and secure session token.

Usage data: pages visited, features accessed, device type, browser version, and approximate geographic location derived from IP address.

Communication preferences: marketing consent and preferred contact channel.

Account management and service delivery — necessary for the performance of a contract (Art. 6(1)(b) GDPR).

Processing reservations and payments — necessary for the performance of a contract and to comply with legal obligations (Art. 6(1)(b) and (c) GDPR).

Transactional communications such as booking confirmations and reminders — necessary for the performance of a contract (Art. 6(1)(b) GDPR).

Marketing communications — based on your explicit consent (Art. 6(1)(a) GDPR). You may withdraw consent at any time without affecting the lawfulness of prior processing.

Platform analytics and improvement — based on our legitimate interest in understanding how users interact with our services (Art. 6(1)(f) GDPR).

Legal compliance — to fulfil obligations imposed by applicable law (Art. 6(1)(c) GDPR).

Your personal data may be shared with the following categories of processors and recipients: payment processors for secure transaction handling; cloud hosting and infrastructure providers; email service providers for transactional and marketing communications; and analytics providers who receive anonymised or pseudonymised data.

We do not sell your personal data to third parties. Where transfers outside the European Economic Area are necessary, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

Account data is retained for the duration of your active account and for up to 3 years following deletion, unless a longer retention period is required by applicable law.

Booking and transactional records are retained for 7 years to comply with financial and fiscal obligations.

Marketing consent records are kept until you withdraw consent or until 3 years of account inactivity.

Analytics data is retained in aggregated or anonymised form for statistical and improvement purposes.

You have the right to request access to the personal data we hold about you, to request correction of inaccurate or incomplete data, and to request erasure of your data where there is no compelling legal basis for its continued processing.

You also have the right to restrict or object to processing, the right to data portability in a structured machine-readable format, and the right to withdraw consent at any time where processing is consent-based.

To exercise any of these rights, write to us at privacy@ffmovements.com. We will respond within 30 days. You also have the right to lodge a complaint with the competent data protection supervisory authority in your country of residence.

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, loss, or destruction. These include AES-GCM encryption for session data, enforced HTTPS across all services, and strict access controls limiting data access to authorised personnel only.

No method of data transmission over the internet is entirely secure. While we apply industry-standard safeguards, we cannot guarantee absolute security against all possible threats.

We use cookies and similar tracking technologies on our website. Please refer to our full Cookie Policy for details on what cookies we place, their purpose, and how to manage your preferences.

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable legislation. We will notify registered users of material changes via email or an in-platform notice. The date shown at the top of this page indicates when the policy was last revised.

Continued use of the platform following any update constitutes acceptance of the revised policy.