Skip to content

Privacy policy

Last updated: 21 June 2026

Pending legal review. This policy is a good-faith draft written for a service operating across the UAE and India. It has not yet been reviewed by a qualified lawyer in either jurisdiction and must be verified before launch.

1. About this policy

My Yoga Classes (registration / trade-licence details to be inserted) (“we”, “us”, “our”) operates myyogaclasses.fit, an online platform that connects students in the United Arab Emirates and India with yoga teachers based in India for live 1:1 sessions conducted over online video conferencing.

We aim to handle your personal data in line with the UAE Personal Data Protection Law(Federal Decree-Law No. 45 of 2021) and its implementing regulations, India's Digital Personal Data Protection Act 2023 (DPDP Act), and recognised international data-protection standards. This policy explains what personal information we collect, why we collect it, how we use and disclose it, and the rights available to you under those laws.

By creating an account or booking a session you consent to the practices described in this policy.

2. Information we collect

We collect personal information that is reasonably necessary for our functions:

  • Identity & contact: full name, email address (used for one-time passcode authentication), and an optional phone number you may choose to provide for booking-related contact.
  • Account details: your preferred timezone, yoga goals, and any profile information you choose to provide.
  • Booking history: dates and times of sessions booked, attended, or cancelled; teacher assigned; session notes you opt to save.
  • Payment metadata: the session pack you purchased, payment status, and Razorpay order / payment IDs. We do notstore card numbers, bank account details, or full payment credentials. All payment processing is handled directly by Razorpay and subject to Razorpay's privacy policy.
  • Technical data: IP address, browser type, device identifiers, pages visited, and session duration, collected automatically by our analytics and error-monitoring tools (see Section 4).
  • Communications: emails or support messages you send us.

We collect information directly from you (registration, booking forms), through automated means (cookies, log files), and from third-party authentication providers (Google OAuth).

3. Why we collect and use your information

We collect and use personal information to:

  • Create and manage your account and authenticate you securely.
  • Match you with an available teacher and schedule sessions across timezones.
  • Generate and send video session join links for your sessions.
  • Process one-time session-pack payments in AED or INR via Razorpay.
  • Send booking confirmations, reminders, and account notifications by email.
  • Provide customer support.
  • Improve our platform and personalise your experience.
  • Comply with applicable laws and enforce our terms.
  • Send you marketing communications about our services (you may opt out at any time).

We will not use your personal information for a purpose that is unrelated to why we collected it unless you consent or we are required to do so by law.

4. Sub-processors and third-party disclosure

We share personal information with the following service providers, each bound by appropriate data-processing agreements:

ServicePurposeLocation
SupabaseAuthentication, database, file storageUSA (AWS)
RazorpayOne-time payment processing (session packs)India
Google WorkspaceSession scheduling and video conferencingUSA
ResendTransactional and marketing emailsUSA
PostHogProduct analytics and usage trackingUSA / EU
SentryApplication error monitoringUSA
Teachers (India)Delivering yoga sessions; see your booking detailsIndia

We do not sell your personal information to third parties. We may disclose information if required by law, in connection with legal proceedings, or to protect the rights and safety of our users.

5. Cross-border data transfers

Because our teachers are based in India and our technology providers operate globally, your personal information is transferred to and processed in countries other than your country of residence, primarily India and the United States (see the table above). Where we transfer data internationally, we take reasonable steps to ensure an adequate level of protection, including standard contractual protections in our data-processing agreements and, where required, the safeguards for cross-border transfers under the UAE PDPL and India's DPDP Act.

By using our service you acknowledge that these international transfers are necessary to deliver the service to you.

6. Cookies and analytics

We use cookies and similar tracking technologies to keep you signed in, remember your preferences, and understand how our site is used. Our analytics provider PostHog may set cookies and collect pseudonymous identifiers.

You can control cookies through your browser settings. Disabling cookies may affect certain features (such as staying logged in).

7. Data retention

We retain personal information for as long as your account is active and for a reasonable period afterwards to fulfil legal obligations, resolve disputes, and enforce our agreements. Booking and payment records are typically retained for the period required by applicable financial record-keeping and tax law in the jurisdictions where we operate. You may request deletion of your account at any time (see Section 9); note that some information may be retained where we are required by law.

8. Security

We take reasonable steps to protect personal information from misuse, interference, loss, and unauthorised access, including encrypted connections (TLS), row-level security on our database, and access controls. However, no internet transmission is completely secure, and we cannot guarantee absolute security.

9. Your access, correction, and deletion rights

Subject to applicable law (including the UAE PDPL and India's DPDP Act), you have the right to:

  • Request access to the personal information we hold about you.
  • Request correction of information that is inaccurate, out of date, or incomplete.
  • Request deletion of your account and associated personal data.
  • Withdraw consent you have previously given, and object to or restrict certain processing.
  • Request a copy of your data in a portable format, where applicable.

To exercise these rights, contact us at hello@myyogaclasses.fit. We will respond within 30 days. We may need to verify your identity before fulfilling a request.

10. Privacy complaints

If you believe we have mishandled your personal data, please contact us first so we can try to resolve the issue (see Section 11). If you are not satisfied with our response, you may lodge a complaint with the data-protection authority in your jurisdiction, for example:

  • UAE: the UAE Data Office (federal), or, for entities in a financial free zone, the relevant free-zone data-protection commissioner (e.g. the DIFC or ADGM Commissioner of Data Protection).
  • India: the Data Protection Board of India established under the DPDP Act 2023.
  • Elsewhere: your local data-protection or privacy regulator.

11. Contact us

For privacy enquiries, please email us at hello@myyogaclasses.fit.

12. Changes to this policy

We may update this policy from time to time. We will notify you of material changes by email or by a notice on our website. The date at the top of this page indicates when the policy was last revised.