Virtual Classroom

Privacy Policy

Last updated: 16/01/2026

This policy applies to padelmba.com, academy.padelmba.com, and customer service channels (mail, forms, WhatsApp and others) operated by PNPN SPORTSMBA, S.L. (“PADELMBA”). We process the data in accordance with the RGPD, the LOPDGDD and the LSSI.

1. Responsible, delegate and contact

Responsible: PNPN SPORTSMBA, S.L. (PADELMBA) - CIF B-88558713 - Address: Plaza del Comercio, 6 - 28729 Venturada (Madrid).

Privacy contact: rgpd@padelmba.com. We process requests and exercise of rights from this address or by mail to the address indicated (Ref. “Data Protection”).

Data Protection Officer (if applicable): at present, their designation is not mandatory for our activity. Any questions can be directed to the privacy channel indicated.

2. Origin and categories of data

Origin: the data is obtained (i) directly from you when you create an account, purchase, write to us or attend events; (ii) generated by your use of the Academy (progress, ratings); and (iii) from third parties when necessary for the performance (e.g., certification platforms confirming your passing) or when you expressly submit it to us.

  • Identifiers: name, surname, identification document (only if required for invoicing/certification), country, city.
  • Contacts: email, telephone, communication preferences.
  • Account and use: User IDs, passwords hash, accesses, progress, results, certificates issued.
  • Transactions: product/service, amounts, payment method (tokenized). We do not store full card numbers; They are managed by the certified gateway.
  • Support: tickets, messages, voluntary recordings in online sessions.
  • Technicians: IP, logs, device/browser, session identifiers (see Cookies).
  • Supporting documentation (optional): qualifications/experience to access certain certifications.

We do not request data from Art. 9 GDPR (health, ideology, etc.). If you exceptionally communicate any (e.g. allergies for campus), we will limit it to the stated purpose, with an appropriate basis and enhanced measures.

3. Purposes, legal basis and details

  • Provision of the service and execution of the contractThe following services are available: user registration, access to the Academy/LMS, call management, issuance of diplomas/certificates, customer service and support, shipping logistics if physical material is available. Base: art. 6.1.b RGPD.
  • Administrative management and legal complianceInvoicing, accounting, taxation, consumption, fraud prevention. Base: art. 6.1.c RGPD (legal obligation) and, where appropriate, legitimate interest (6.1.f) weighted.
  • Operational communicationsService announcements, relevant changes in convocations, security incidents, academic reminders. Base: 6.1.b and 6.1.c.
  • Commercial communications about PADELMBA's products/services by electronic means: if you gave consent (6.1.a) or where there is a prior contractual relationship for similar products (art. 21.2 LSSI, legitimate interest 6.1.f). You may object at any time.
  • Continuous improvement, statistics and analytics to understand the use of the website/Academy, resolve errors and optimize content. Aggregated or pseudonymized data where possible. Base: legitimate interest 6.1.f (may object) or consent via cookie panel for non-essential analytics.
  • Events, image and testimonials (e.g., photos/classroom recordings): only with their consent (6.1.a), revocable without retroactive effect.
  • Self-renewal of subscriptions (if you contract plans with renewal): secure storage of the payment method by the gateway and management of periodic charges; prior renewal notices when applicable. Base: 6.1.b and 6.1.f. You may cancel the renewal at any time with effect from the end of the period.

4. Profiling and automated decisions

We can perform basic segmentations (e.g., by contracted course, level, country or email interaction) to personalize communications or recommend content. We do not make decisions with legal effect or that significantly affect you based solely on automated processing. You can object to profiling for marketing purposes at any time by writing to rgpd@padelmba.com.

5. Transfers to third parties and suppliers

PADELMBA does not sell your data. It only communicates them when it is essential, legitimate and proportional to the purposes described:

  • Data processors (contracts art. 28 RGPD): hosting and cloud, email delivery, CRM, LMS/Academy, support tools, messaging/packaging, certified payment gateways (PCI-DSS), analytics and security. An updated list of vendor categories is available upon request from rgpd@padelmba.com.
  • Certification bodies and academic partners when the contracted course/service requires it (e.g., external homologations or diplomas). They are provided with only essential information.
  • Authorities and judicial bodies by legal obligation or valid requirement.
Assignment necessary to use products/services of third parties

When you contract through PADELMBA products or services owned by third parties (external platforms, certifications, logistics, academic sponsors), it is essential communicate your personal data strictly necessary (identification, contact, progress/skills and, if applicable, minimum academic data) to the corresponding provider to enable access, support, certification, issuance of diplomas and invoicing. Each third party will act as responsible of its own processing in accordance with its privacy policy, which we recommend you read.

6. International Transfers

If any supplier or partner is outside the EEA, we guarantee an adequate level of service through Adequacy Decisions of the European Commission (e.g. EU-U.S. Data Privacy Framework) or Standard Contractual Clauses updated, and, where necessary, additional measures (encryption, pseudonymization, minimization and transfer impact assessments).

7. Conservation periods

  • Account/Academy and contract: during the relationship and, after its termination, blocked during the statute of limitations for liability (in general 6 years mercantile, 4 years tax).
  • Certifications and academic records: as long as it is necessary to certify their suitability and issue diplomas; longer retention times may be justified by verification requirements.
  • Support and complaints: to 12-24 months according to the nature of the case.
  • Marketing: until it is terminated or opposed; periodic reviews to purge lists.
  • Security and logs: minimum time periods required for security and audit purposes.

After the deadlines have elapsed, the data will be will remove or anonymize safely.

8. Commercial communications

We will send commercial communications from PADELMBA by electronic means if (i) you checked the consent box or (ii) there is a previous contractual relationship and they are products/services. similar (art. 21.2 LSSI). You can unsubscribe at any time from the link included in each email or by writing to rgpd@padelmba.com. We do not make unsolicited shipments from third parties.

9. Minors and parental control

Registration is only allowed to over 14 years old. For children under 14, we require verifiable consent We may request authorization documentation from the parent/guardian and may request authorization documentation. If we detect records that do not meet the requirements, we will cancel the account and delete the data.

10. Security and breaches

We apply appropriate technical and organizational measures (TLS, encryption at rest when applicable, hardening server, access control, password policies, backups, logging and monitoring). In case of security breach that entails a risk to persons, we will notify the AEPD in ≤72 h and, if applicable, to those affected without undue delay, indicating measures taken.

11. Rights of individuals

You may exercise access, rectification, deletion, opposition, limitation, limitation, portability, etc. and not to be subject to exclusively automated decisions by writing to rgpd@padelmba.com or to Plaza del Comercio, 6 - 28729 Venturada (Madrid). Attach proof of identity. If you are acting on behalf of a representative, please provide a valid document.

We will respond in maximum 1 month (extendable to 2 months depending on complexity, informing you of the reason). You may withdraw your consent at any time without affecting the previous lawfulness.

If you believe your rights have been violated, you may file a complaint with the AEPD: www.aepd.es.

12. Cookies and similar technologies

We use our own and third-party cookies for the following purposes technicians (necessary), of preferences, analytics and, if applicable, advertising. You can visit configure/revoke your consent at any time from the preferences panel. See the Cookies Policy for detailed information about each cookie, responsible, legal basis, term and transfers.

13. WhatsApp and other channels

WhatsApp and other messaging services are used as a channel complementary of attention/notices relating to the contracted services. You are not obliged to use them and may object at any time. The treatment in such channels is governed by this policy and by the WhatsApp Terms of Use. For formal communications, we will maintain the following e-mail address support@padelmba.com.

14. Policy changes

We may modify this policy to reflect legal or operational changes. We will post the current version with an updated date and, when changes are material, we will notify you by reasonable means (banner/email) and, if necessary, seek your consent again.