Bright Star Swim Academy Privacy Policy

BRIGHT STAR SWIM ACADEMY, LLC

Last Updated: June 1, 2026

Bright Star Swim Academy, LLC (“we,” “our,” or “us”) is committed to protecting the privacy of our users and their families. This Privacy Policy explains how we collect, use, share, store, and safeguard information when you use our website (brightstarswimacademy.com), digital forms, and online learning programs—including the Adaptive Swim Readiness Program—purchase items through our online store, and when you book mobile, in-person swim instruction through our website. By accessing or using our services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of our services. Capitalized terms used but not defined in this Privacy Policy have the meanings ascribed to them in the Terms and Conditions.

1. INFORMATION WE COLLECT

We collect information to provide safe, personalized, and effective swim instruction, to support our online education courses and parent education programs, including the Adaptive Swim Readiness Program, and to facilitate the booking and delivery of mobile, in-person swim instruction, designed to help families build water comfort, early water-safety awareness, and positive developmental experiences around water. Additionally, we collect information to process transactions and fulfill orders through our online store.

A. Personal Information You Provide

We may collect the following categories of personal information directly from you:

  • Parent or guardian name
  • Child’s name and age (provided exclusively by a parent or legal guardian)
  • Contact information (email address, phone number, mailing address)
  • Physical address for mobile, in-person swim lessons
  • Emergency contact details
  • Medical, sensory, or safety-related information voluntarily shared for lesson readiness or adaptive lesson planning
  • Information you voluntarily submit to us through online course activities, worksheets, reflections, or progress tracking
  • Transaction Information: Billing and shipping data. (Financial payment data is processed securely through PayPal and Stripe as outlined in Section 5.)
  • Waivers, consent forms, and course submissions
  • Communications submitted through our website contact or messaging forms.

B. Information Collected Automatically

When you visit our website, we may automatically collect:

  • Device type, operating system, browser type, and browser version
  • IP address and approximate geographic location
  • Usage data (pages viewed, time spent, links clicked)
  • Application or course performance and crash data
  • Referring URLs and search terms

C. Third-Party Service Providers & Operational Partners

We do not sell your personal information. We partner with trusted third-party service providers to reliably operate our website, process payments, and deliver our online courses. We utilize integrated software tools and plugins that collect or process only the minimum necessary information required for these providers to perform their functional services on our behalf. These functional categories include:

  • Learning Management & E-Commerce Platform: Systems used to securely host our digital courses, process enrollment applications, manage curriculum tracking, and handle our storefront layout.
  • Scheduling & Booking Management: Software utilized to coordinate calendar availability and manage mobile or in-person lesson bookings.
  • Form & Communication Services: Secure tools used to process website contact inquiries, deliver transactional automated emails, and distribute parent education newsletters.
  • Payment Processing: Secure, external handling of all customer financial transactions via PayPal and Stripe (see Section 5).
  • Website Analytics: Data tools used to aggregate anonymous website traffic, monitor overall performance, and evaluate user engagement via Google Analytics (see Section 6).
  • Privacy & Security Management: Dedicated software tools utilized to manage user cookie consents, block malicious web traffic, and monitor the site for security vulnerabilities.

D. Parent-Guided Booklets and Workbooks

Our parent-guided online courses include downloadable booklets, workbooks, and instructional materials. These materials are designed for your personal use. Bright Star Swim Academy does not have access to, nor do we see, any entries, notes, or reflections you make within downloaded documents. Your child’s progress notes remain private to you on your personal device unless you voluntarily choose to share them with us for direct feedback.

2. HOW WE COLLECT INFORMATION

We collect personal and technical information from you through two primary methods:

  • Directly From You: When you manually fill out a contact form, register an account on our learning management system, purchase a course at checkout, book a swim lesson on our calendar, sign a waiver, or communicate with us directly via email or phone.
  • Automatically Through Your Interactions: When you navigate our website, our system automatically logs technical usage data, page views, and device details via standard cookies and website security protocols.

3. HOW WE USE YOUR INFORMATION

We use collected information for the following purposes:

  • To provide, schedule, and manage mobile, in-person swim instruction, online courses, and digital programs.
  • To deliver digital downloads and grant course access.
  • To fulfill website store orders.
  • To process payments and manage customer accounts.
  • To communicate scheduling updates, appointment reminders, and safety information.
  • To respond to inquiries and provide customer support.
  • To personalize and improve the learning experience.
  • To analyze and improve website and platform performance and overall usability.
  • To maintain safety protocols and emergency readiness.
  • To uphold security and prevent fraud and unauthorized access.
  • To comply with applicable legal and regulatory requirements.

We do not sell your personal information to third parties.

4. HOW WE DISCLOSE OR TRANSFER YOUR INFORMATION

We do not sell, rent, or trade your personal information. We may disclose or transfer information only in the following limited circumstances:

  • Service Providers: With vendors who assist us in operating our website and services (e.g., payment processors, scheduling tools, LMS platforms), subject to strict confidentiality obligations.
  • Legal Compliance: When required by law, court order, or governmental authority, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Emergency Situations: With first responders or emergency personnel when necessary to protect the health or safety of any individual.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, in which case we will notify you and require the successor to honor this Privacy Policy.

5. PAYMENTS AND FINANCIAL DATA

All payment transactions are processed securely through PayPal and Stripe. We do not store full payment card details on our servers.
By completing a purchase, you authorize PayPal or Stripe to process your payment in accordance with its own terms and privacy policy.

You may review PayPal’s Privacy Policy at: https://www.paypal.com/us/legalhub/privacy-full
You may review Stripe’s Privacy Policy at: https://stripe.com/privacy

6. ANALYTICS AND TRACKING

We use Google Analytics to understand how visitors interact with our website. Google Analytics may collect information such as IP address, device information, and browsing behavior to help us improve our site.

You may review Google’s Privacy Policy at: https://policies.google.com/privacy

You may opt out of Google Analytics by using the Google Analytics Opt-Out Browser Add-on available at: https://tools.google.com/dlpage/gaoptout

7. COOKIES AND TRACKING TECHNOLOGIES

We use cookies and similar tracking technologies to enhance your experience, remember preferences, enable essential site functionality, and analyze website usage and performance. We utilize an automated cookie consent management system upon your first visit to our site, which allows you to actively accept, customize, or decline non-essential cookies.

You may also disable or delete cookies at any time directly through your personal internet browser settings. Please note that disabling essential cookies may affect the performance and functionality of certain features on our website.

Categories of cookies we use include:

  • Strictly Necessary Cookies: Required for the website to function properly, including session management, e-commerce checkout processing, and security protocols.
  • Functional Cookies: Enable enhanced features and user personalization, such as remembering your preferences or retaining items in your shopping cart.
  • Analytics Cookies: Help us understand how visitors interact with the site by gathering anonymous traffic data (e.g., Google Analytics).

8. DATA SECURITY, STORAGE, AND RETENTION

We implement reasonable and appropriate administrative, technical, and physical safeguards to protect your personal information, including:

  • SSL/TLS encryption for data transmitted to and from our website
  • Encrypted payment processing through PayPal and Stripe
  • Secure form submission handling
  • Limited staff access to sensitive personal data on a need-to-know basis
  • Continuous security monitoring, firewall protection, and intrusion detection

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security.

We retain your personal information only as long as necessary to fulfill the purposes for which it was collected, to provide our services, or as required by applicable Florida law for business and safety recordkeeping. Sensitive student information is securely archived or deleted once it is no longer needed for instructional or legal purposes.

9. DATA BREACH NOTIFICATION

In the event of a security breach affecting your personal information, we will notify affected individuals as required by applicable state and federal laws. For Florida residents, notice will be provided in accordance with the Florida Information Protection Act (FIPA), typically within 30 days of the discovery of a breach. For residents of other states, we will notify you in compliance with your local state’s breach notification timeframes. Notice will be sent directly via email, or via prominent website posting if permitted by applicable law, and we will cooperate fully with required regulatory authorities.

10. CHILDREN’S PRIVACY (COPPA COMPLIANCE)

Our website is directed to parents and guardians, not directly to children. We comply with the Children’s Online Privacy Protection Act (COPPA). We collect information about children only from a verified parent or guardian, and only to the extent necessary to provide our swim instruction and safety programs.

We do not:

  • Allow children under 13 to create independent accounts
  • Collect more information from or about children than is reasonably necessary
  • Use children’s information for advertising or marketing purposes
  • Sell children’s data, share it for cross-context behavioral advertising, or disclose children’s data to third parties for independent commercial purposes

Parents and guardians may, at any time:

  • Review the personal information we have collected about their child
  • Request corrections to inaccurate information
  • Request deletion of their child’s personal information
  • Withdraw consent for the future collection or use of their child’s information

To exercise any of these rights, please contact us at Privacy@BrightStarSwimAcademy.com.

11. SAFETY-RELATED HEALTH INFORMATION

Bright Star Swim Academy is not a healthcare provider and is not subject to HIPAA. However, we treat any medical or safety-related information you voluntarily provide, such as information about a child’s physical limitations, sensory sensitivities, or health conditions relevant to swim readiness, with the same level of care and confidentiality expected in a health-supportive environment.

We use this information solely to support lesson readiness and personalized instruction, maintain appropriate safety protocols, and respond appropriately in emergency situations. We do not use, store, or process health-related information for diagnostic, treatment, or any purpose beyond direct instructional support.

12. THIRD-PARTY LINKS

Our website and service may contain links to third-party websites or services. We are not responsible for the privacy practices or content of those external sites. We encourage you to review the privacy policies of any third-party sites you visit.

13. YOUR PRIVACY RIGHTS

Depending on your state of residence, you may have certain rights with respect to your personal information. We honor all applicable state privacy laws and will respond to verifiable consumer requests within the time frames required by law.

Applicable rights may include:

  • Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you.
  • Right to Access: Obtain a copy of your personal information in a portable format.
  • Right to Correct: Request correction of inaccurate personal information.
  • Right to Delete: Request deletion of your personal information, subject to certain legal exceptions.
  • Right to Opt Out: Opt out of the sale or sharing of your personal information (note: we do not sell personal information).
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
  • Right to Withdraw Consent: Withdraw consent previously given for the processing of sensitive personal information.

To submit a privacy request or exercise any of the above rights, please contact us at: Privacy@BrightStarSwimAcademy.com

14. STATE-SPECIFIC PRIVACY RIGHTS

We honor all applicable state consumer privacy laws. States with active consumer privacy legislation include:

  • California (CCPA/CPRA), Colorado (CPA), Connecticut (CTDPA), Delaware (DPDPA), Florida (FDBR), Indiana (ICDPA), Iowa (ICPA), Kentucky (KCDPA), Montana (MTCDPA), Nebraska (NDPA), New Hampshire (NH CEPA), New Jersey (NJPDA), Oregon (OCPA), Rhode Island (RIDTPPA), Tennessee (TIPA), Texas (TDPSA), Utah (UCPA), and Virginia (VCDPA).

States with consumer health data privacy laws include Washington (MHMDA) and Nevada (SB 370).

Upcoming laws effective in 2026-2027 include Minnesota (effective July 1, 2026), Maryland (effective October 1, 2026), and Indiana (effective January 1, 2027).

California Residents — Additional CCPA/CPRA Disclosures

If you are a California resident, you have the following additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know (Categories): The right to know what categories of personal information we collect, use, disclose, and sell.
  • Right to Know (Specific Pieces): The right to request the specific pieces of personal information we have collected about you.
  • Right to Correct: The right to request correction of inaccurate personal information we maintain about you.
  • Right to Delete: The right to request deletion of personal information we have collected, subject to certain exceptions.
  • Right to Opt Out of Sale/Sharing: We do not sell or share personal information for cross-context behavioral advertising.
  • Right to Limit Use of Sensitive Personal Information: The right to limit our use of sensitive personal information to necessary purposes.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA/CPRA rights.

Categories of Personal Information Collected (CCPA Categories): Identifiers (name, email, IP address); Customer Records (contact and payment information); Geolocation Data (approximate location via IP); Internet/Electronic Network Activity (browsing behavior, usage data); Commercial Information (purchase history); Sensitive Personal Information (health/medical information related to lesson readiness).

To submit a CCPA/CPRA request, contact us at Privacy@BrightStarSwimAcademy.com. We will verify your identity before processing your request. You may designate an authorized agent to make requests on your behalf.

15. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or services. When we make material changes, we will post the updated policy on this page with a revised Effective Date. We encourage you to review this Privacy Policy periodically. Your continued use of our services after any update constitutes your acceptance of the revised policy.

16. CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Bright Star Swim Academy, LLC
Ocala, Florida
Email: Privacy@BrightStarSwimAcademy.com
Phone: 352-640-7946
Website: brightstarswimacademy.com