Privacy Policy

1. Introduction

Digital Envision, LLC, a Delaware limited liability company ("MoveMentors," "we," "us," or "our"), operates the MoveMentorsplatform, including the website at movementors.com, the iOS and Android mobile applications, the Model Context Protocol (MCP) server, the embeddable studio widget, and any related services (collectively, the "Service").

This Privacy Policy describes the personal information we collect when you use the Service, how we use and share it, the legal bases on which we rely, the rights you have over your information, and the choices we offer you.

We are the controller of the personal information described in this Policy unless we say otherwise. For data created by Mentors and Studios in the course of running their classes (for example, their own client notes or marketing lists they build outside the Service), those parties are independent controllers and their own privacy notices apply.

2. Who This Policy Covers

This Policy applies to three groups of users:

• Clients (Students): people who book classes, subscribe to mentor packages, or browse the public directory.
• Mentors: individual instructors who publish classes, accept payments via Stripe Connect, and use MoveMentorstools (calendar sync, financial reports, the MCP server, etc.).
• Studios: businesses that publish classes, manage in-house mentors (real or custom), and may use the embeddable booking widget on their own websites.

The Service is intended for use by adults aged eighteen (18) or older. We do not knowingly collect personal information from children under 18. See Section 14 (Children's Privacy).

3. Information We Collect

3.1 Information You Provide Directly

• Account details: name, email address, password (stored as a bcrypt hash, never in plain text), preferred locale, preferred currency, account type (Client / Mentor / Studio), and your acceptance of the Terms and this Policy.
• Profile information: display name, bio, profile photo, city and country, certifications, training history, social links, and any other content you choose to publish on your MoveMentors profile.
• Class and studio data: class titles, schedules, descriptions, pricing, capacity, location coordinates, photos, cancellation policy, equipment lists, and add-ons.
• Booking data: classes you book, attendance status, party size, additional attendee names you supply, notes you leave for the host, and the payment method you choose.
• Payment data: we use Stripe (and Stripe Connect for Mentor and Studio accounts) to process card payments. Card numbers, CVCs, and full bank details are submitted directly to Stripe and never reach our servers. We retain non-sensitive identifiers such as the Stripe customer ID, Stripe Connect account ID, charge IDs, payout schedule preferences, and the last four digits / brand of cards on file as surfaced to us by Stripe.
• Identity verification: Stripe performs Know Your Customer (KYC) checks on Mentors and Studios. Government ID, date of birth, address, and tax identification are submitted to Stripe; we receive only pass/fail/pending signals and the resulting capabilities (charges enabled, payouts enabled).
• Communications: messages you send through our inquiry forms, private-session requests, support requests, mentor messages, reviews, ratings, class reports, and booking disputes.
• Marketing preferences: whether you opted in to receive marketing emails at signup, your notification toggles (email and push), and any subsequent changes.
• Consent records: the version of the Terms and Privacy Policy you accepted, the timestamp, and the IP address from which you accepted them. These are retained as proof of consent.

3.2 Information Collected Automatically

• Device and connection data: IP address, user agent, browser type and version, operating system, device model, screen size, time zone, and language settings.
• Usage data: pages and screens you view, classes you look at, search queries, filters you apply, click and scroll events, the referring URL, and the timestamp of each interaction.
• Approximate location:derived from your IP address to default the directory to nearby classes. The mobile app may request precise (GPS) location with your explicit consent to power "near me" search; you can deny or revoke this at any time in your device settings.
• Security and abuse signals: failed login attempts, rate-limit hits, reCAPTCHA scores, and audit-log events (sign-in, password reset, OAuth grants, and privileged admin actions).
• Cookies and similar technologies: see Section 9.

3.3 Information from Third Parties

• Google (Sign in with Google): if you sign in with Google we receive your name, email address, and profile photo URL. We do not receive your Google password.
• Google Calendar (with Meet): if a Mentor enables Google calendar sync we receive an OAuth refresh token allowing us to read free/busy information on the calendars they explicitly select and to create calendar events with embedded Google Meet links for confirmed online-class bookings. Scopes requested are limited to read and write of calendar events; we do not request access to Gmail, Contacts, Drive, or any other Google service. You can revoke our access at any time from your Google Account.
• Apple Calendar (iCloud via CalDAV): Apple does not offer OAuth for third-party calendar access. If a Mentor enables Apple calendar sync we collect their Apple ID email and an Apple-issued app-specific password (a token shaped like xxxx-xxxx-xxxx-xxxx that the user generates from their Apple ID account). Both values are encrypted at rest with AES-256-GCM and used solely to authenticate CalDAV requests to caldav.icloud.comfor free/busy reads. We do not receive the user's Apple ID password.
• Zoom Video Communications, Inc.: if a Mentor enables the Zoom integration we receive (a) an OAuth refresh token and access token scoped to meeting:write:meeting, meeting:read:meeting, and user:read:user, and (b) the Mentor's Zoom display name and Zoom-registered email so the integration can attribute meetings to the correct account. We use these credentials only to create scheduled meetings on the Mentor's Zoom account when a Client books an online class set to Zoom, and to read meeting metadata for that booking. Zoom rotates refresh tokens on every refresh; we re-persist the rotated token and discard the prior one. Tokens are encrypted at rest with AES-256-GCM. You can revoke our access at any time from marketplace.zoom.us → Manage → Added Apps, or by clicking Disconnect from the MoveMentors Connections page. If you uninstall the app from Zoom, Zoom notifies us via our deauthorization webhook and we wipe the stored credentials immediately.
• Stripe and Stripe Connect: charge status, refund status, payout state, account capabilities, and dispute notifications for Mentors and Studios who connect their Stripe accounts.
• OAuth clients (MCP / third-party apps): when you authorise a client such as Claude Desktop or ChatGPT, we record the client identifier, scopes granted, last-used timestamp, and audit log of each tool call. We do not receive any data from those clients beyond what is necessary to authenticate them.
• Push notification providers: Apple Push Notification service and Firebase Cloud Messaging issue device tokens we store to deliver notifications. We do not receive additional data from these services.

4. How We Use Your Information

We use personal information for the following purposes:

• Providing the Service: creating and authenticating accounts, publishing profiles, listing and searching classes, taking and managing bookings, processing payments via Stripe, issuing confirmations and reminders, syncing calendars, and powering the embeddable widget.
• Mentor subscriptions and packages: processing recurring subscriptions and one-off class packs a Mentor offers to Clients, including quota tracking and access gating.
• Platform subscriptions: charging Mentors and Studios for MoveMentors platform tiers (Free / Pro / Premium) and any one-off boosts or visibility products we offer.
• Trust and safety: verifying instructor accounts, detecting fraud, applying rate limits, running reCAPTCHA, handling booking disputes and class reports, and enforcing our Terms.
• Customer support: responding to inquiries, audit questions, and complaints, and operating support tickets.
• Personalisation: defaulting the directory to your area, surfacing classes similar to those you have booked, and ranking mentors near you.
• Service improvement and analytics: understanding which features people use, diagnosing performance issues, and prioritising the roadmap. Where analytics cookies require consent, we do not load them until you opt in.
• Communications: sending transactional emails and push notifications that you cannot opt out of without losing core Service functionality (for example, booking confirmations, payment receipts, password resets, dispute outcomes), and, if you opt in, marketing emails such as newsletters and recommended classes.
• Legal compliance: meeting tax, accounting, consumer-protection, anti-money-laundering, and other legal obligations, and responding to lawful requests from public authorities.

5. Legal Bases (GDPR / UK GDPR)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, the legal bases on which we rely depend on the purpose of processing:

• Performance of a contract (Art. 6(1)(b)): providing the Service to you, processing bookings and payments, fulfilling your subscription, and operating Mentor and Studio accounts.
• Legitimate interests (Art. 6(1)(f)): security, fraud prevention, abuse detection, analytics on aggregated usage, defending legal claims, and operating a sustainable marketplace. You may object at any time (see Section 10).
• Legal obligation (Art. 6(1)(c)): retention of financial records, tax reporting, responding to legal requests, and compliance with consumer-protection law.
• Consent (Art. 6(1)(a)): marketing emails, non-essential cookies, push notifications, precise GPS location on mobile, and any sensitive data you choose to share in profile text or messages. You may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.

We do not engage in automated decision-making that produces legal or similarly significant effects on you. AI assistants connected via the MCP server act on your explicit instructions and are scoped by the OAuth permissions you grant.

6. How We Share Your Information

6.1 With Other Users

• Your public profile (display name, photo, bio, city, certifications, reviews) is visible to anyone, including search engines.
• When you book a class, the Mentor or Studio sees your name, email, party size, the names of additional attendees you supply, your payment method, any notes you leave, and the booking history relevant to their account.
• When you leave a review, your display name and the review text are public.
• When you message a Mentor or Studio through an inquiry or private-session form, they receive your name, email, and the message body and may reply to your email address directly.

6.2 With Service Providers (Subprocessors)

We rely on the following subprocessors. Each is contractually bound to process personal information only on our instructions and to apply appropriate safeguards.

We maintain an up-to-date subprocessor list and will notify customers with active Mentor or Studio accounts of material changes before they take effect. Email dpo@movementors.com for the current list and our standard data processing addendum.

6.3 With OAuth Clients You Authorise

If you connect a third-party application via our OAuth flow (most commonly, an AI assistant via the MCP server), that application receives a token scoped to the permissions you explicitly grant. It cannot see data outside those scopes. You can revoke any connected app at any time from your account settings, and we keep an audit log of every tool call.

6.4 For Legal Reasons

We may disclose personal information when we believe in good faith that disclosure is necessary to: comply with a legal obligation, court order, or lawful request from a public authority; protect the rights, property, or safety of MoveMentors, our users, or the public; investigate and defend against legal claims; or enforce our Terms.

6.5 In a Business Transfer

If we are involved in a merger, acquisition, financing, or sale of assets, personal information may be transferred as part of that transaction. We will ensure that the recipient honours this Policy or provides equivalent protection, and we will notify users in advance where required by law.

We do not sell personal information for money, and we do not share personal information with advertisers for cross-context behavioural advertising.

7. International Data Transfers

We are headquartered in the United States, and our primary infrastructure runs in the United States with global edge points for performance. When we transfer personal information out of the European Economic Area, the United Kingdom, Switzerland, or Australia we rely on:

• the Standard Contractual Clauses adopted by the European Commission and the UK International Data Transfer Addendum, where applicable, between MoveMentors and our subprocessors;
• the EU-US Data Privacy Framework and its UK extension where a recipient is self-certified;
• transfer impact assessments and, where appropriate, supplementary technical measures such as encryption in transit and at rest.

You may request a copy of the safeguards applied to a transfer by emailing dpo@movementors.com.

8. Data Retention

We keep personal information only as long as we have a legitimate need. The table below summarises our retention practices.

9. Cookies and Similar Technologies

We use cookies, local storage, and similar technologies for three purposes:

• Strictly necessary: session authentication (NextAuth session cookie), CSRF protection, locale and currency preference, cookie-banner state, and the reCAPTCHA token used to protect public forms. These cannot be turned off without breaking the Service.
• Functional: remembering UI choices such as accessibility settings or the last directory filter you used. These are optional and can be disabled in your browser.
• Analytics and performance: aggregated usage data to help us understand which features are useful and to diagnose errors. We use two analytics providers:
  • Google Analytics 4 (Google LLC), product ID G-GBLE7HGJZY. Loads only after you grant analytics consent in our cookie banner. Collects pageviews, device and browser information, language, country-level geography derived from IP, and named conversion events such as sign-up, login, search, view_item (mentor / class / studio profile views), begin_checkout, purchase (booking), subscribe (mentor or studio plan), boost_purchased, and generate_lead (contact form). Purchase events carry a monetary value and currency so we can measure revenue, but never carry your name, email, or payment details.
  • Vercel Web Analytics and Speed Insights(Vercel, Inc.). Cookieless, first-party, and privacy- preserving. Loads on every page and measures pageviews, referrers, country-level geography, and Core Web Vitals. Does not use cookies and does not require consent under GDPR / UK GDPR.

We use Google Consent Mode v2. Until you grant analytics consent, Google Analytics defaults to denied state and is not loaded. Marketing / advertising storage is always denied; we do not use third-party advertising cookies. Stripe sets its own cookies on its hosted checkout pages and is the controller of those cookies; their use is governed by Stripe's privacy notice.

You can manage your cookie preferences at any time from the in-page cookie banner or your browser settings. Disabling strictly-necessary cookies will prevent you from signing in.

10. Your Rights

10.1 EEA, United Kingdom, and Switzerland (GDPR / UK GDPR)

Subject to applicable law, you have the right to:

• Access: obtain confirmation of whether we process your personal information and request a copy.
• Rectification: have inaccurate or incomplete personal information corrected.
• Erasure: request the deletion of your personal information, subject to our legal-retention obligations.
• Restriction: ask us to limit how we use your personal information in certain circumstances.
• Objection: object to processing based on our legitimate interests, including for profiling.
• Portability: receive a structured, machine-readable copy of personal information you provided to us.
• Withdraw consent: withdraw any consent you gave us at any time, without affecting earlier processing.
• Lodge a complaintwith your local supervisory authority. A list of EEA authorities is maintained by the European Data Protection Board. UK residents can complain to the Information Commissioner's Office (ICO).

10.2 California Residents (CCPA / CPRA)

In the previous 12 months we collected the categories of personal information described in Section 3 (identifiers, customer records, commercial information, internet activity, geolocation, audio / visual information you upload, professional information for Mentors, and inferences drawn from the foregoing). We disclosed those categories to the subprocessors listed in Section 6.2 for business purposes only. We have not sold or shared personal information for cross-context behavioural advertising in the past 12 months.

California residents have the right to:

• Know what personal information we collect, the sources, the purposes, and the categories of recipients;
• Access a copy of your personal information;
• Delete personal information we hold about you;
• Correct inaccurate personal information;
• Limit the use and disclosure of sensitive personal information to permitted purposes;
• Opt out of the sale or sharing of personal information (we do not currently sell or share, but you may still submit the request);
• Be free from retaliation for exercising any of the above rights.

You may exercise these rights through your account settings or by emailing privacy@movementors.com. You may authorise an agent to act on your behalf; we will verify both your identity and the agent's authority before responding.

10.3 Other US States

Residents of states with comprehensive privacy laws (including Colorado, Connecticut, Virginia, Utah, Texas, Oregon, and Montana) have analogous rights to access, correct, delete, and obtain a portable copy of personal information, and to opt out of targeted advertising, sale, or profiling. Submit requests to privacy@movementors.com.

10.4 Australia (Privacy Act 1988 and the Australian Privacy Principles)

We handle personal information of Australian residents in accordance with the Australian Privacy Principles (APPs). You may ask for access to or correction of your personal information by emailing privacy@movementors.com. If we cannot resolve a complaint to your satisfaction you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au. We participate in the Notifiable Data Breaches scheme and will notify the OAIC and affected individuals of any eligible data breach as required.

10.5 How to Submit a Request

Most rights can be exercised directly from your account dashboard (export, delete, change marketing preferences, manage connected apps). For anything you cannot self-serve, email privacy@movementors.com. We aim to respond within 30 days. We may extend this period by up to 60 days for complex requests, and we will tell you if we do.

11. Marketing Communications

We will send you marketing emails only if you opted in at signup or later in your notification preferences. Every marketing email includes a one-click unsubscribe link, and you can also turn marketing off from your notification settings. Transactional messages (booking confirmations, payment receipts, password resets, account-security alerts) are not marketing and continue even after you unsubscribe from marketing.

12. Data Security

We apply technical and organisational measures designed to protect personal information against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures include:

• TLS encryption in transit and at-rest encryption of stored data and backups.
• Bcrypt password hashing with a high work factor; passwords are never written to disk in plain text.
• SHA-256-hashed password-reset and verification tokens; raw tokens never leave the user's inbox.
• Field-level encryption for selected sensitive attributes via our application key.
• OAuth scopes, audit logging, rate limiting, and reCAPTCHA v3 on public forms.
• Least-privilege database roles and segregated production credentials.
• Regular dependency scanning and patching, and a coordinated vulnerability-disclosure email.

No method of transmission or storage is perfectly secure. If we become aware of a personal-data breach that is likely to result in risk to your rights and freedoms we will notify you and the relevant supervisory authorities as required by law.

13. Mobile App Permissions

Our iOS and Android applications may request the following permissions. Each is optional unless noted, and you can revoke any of them in your device settings.

• Notifications for booking reminders, new-booking alerts, and other transactional or opt-in marketing messages.
• Camera and photo library if you choose to upload a profile photo or class cover from your device.
• Precise locationif you opt in to "near me" class search. We do not track your location in the background.

We do not request access to contacts, the microphone, your system calendar (calendar sync uses the Google Calendar API, the iCloud CalDAV API, or the Zoom API directly with your consent, not the on-device calendar), SMS, call logs, or background location.

14. Children's Privacy

The Service is not directed to children under 18 and we do not knowingly collect personal information from anyone under 18. If we learn we have collected personal information from a person under 18 we will delete it promptly. If you believe a minor has provided us with personal information, contact privacy@movementors.com.

15. Third-Party Sites and Embedded Content

The Service contains links to third-party websites (for example, Stripe-hosted checkout, an Instagram link on a Mentor's profile, or a Studio's own site embedding our widget). Those services have their own privacy notices and we are not responsible for their practices. The MoveMentors embeddable widget collects only the limited analytics described in our help-center article on the embed widget; it does not place advertising cookies on the host site.

16. Changes to This Policy

We may update this Policy from time to time. When we do, we will change the "Last updated" and "Effective" dates above. If changes are material we will notify you in advance by email or through an in-product banner. Continued use of the Service after the effective date constitutes acceptance of the updated Policy. Older versions are available on request.

17. Contact Us

For privacy-related questions or to exercise any of your rights, contact us:

• Operator: Digital Envision, LLC, a Delaware limited liability company
• Registered address: 16192 Coastal Highway, Lewes, DE 19958, United States of America
• Privacy and data subject requests: privacy@movementors.com
• Data Protection Officer: dpo@movementors.com
• General support: support@movementors.com

See also our Terms of Service.