Legal
Privacy policy.
Last updated 11 July 2026.
Draft, pending legal review. Company registration details will be added once available.
Who we are.
Soltar ("Soltar", "we", "us") operates soltar.io, a marketplace for finding and booking surf camps, surf lessons, and surf spots. This policy explains what personal data we collect from you, why, and what rights you have over it.
Legal entity: [COMPANY LEGAL NAME, pending registration]. Registered address: [REGISTERED ADDRESS, pending registration]. You can reach us at [CONTACT EMAIL, pending].
What we collect.
- Account data. Name, email address, and password (stored securely by our authentication provider, Supabase) when you create a guest or partner account.
- Booking data. The dates, guest count, and package or lesson you select, plus any message you send to a camp or school when you request to book.
- Communications. Emails you send us (support, contact form) and the booking confirmation and status emails we send you.
- Wishlist.Listings you save are stored in your browser's local storage today, not on our servers, so they stay on the device you saved them from until this changes.
- Technical data. Standard server logs (IP address, browser type, pages visited) and the session cookies our authentication provider sets to keep you signed in. We do not run analytics or advertising trackers today.
We do not collect payment card details. In our current booking model you pay the camp or school directly for your trip; Soltar does not process that payment.
Why we use it.
- To create and manage your account.
- To process and communicate booking requests between you and a partner.
- To send booking confirmations, status updates, and support replies.
- To keep the marketplace secure and prevent fraud or abuse.
- To improve the site based on how it is used.
Who we share it with.
When you request to book a camp, lesson, or stay, we share the details needed to fulfil that request (your name, contact details, dates, guest count, and any message you add) with the partner you are booking with. We do not sell your personal data, and we do not share it with advertisers.
We may share limited data with service providers who help us run the platform, such as our hosting provider and Supabase for authentication and database services. These providers only process data on our behalf.
Cookies.
We currently use only essential cookies: the session cookie that keeps you signed in. We do not use analytics, advertising, or tracking cookies today. If that changes, we will update this policy and ask for consent where required.
How long we keep it.
We keep account and booking data for as long as your account is active, and for a reasonable period after to meet accounting and legal obligations. You can ask us to delete your account and personal data at any time, subject to records we are required to keep by law.
Your rights.
Depending on where you live, you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain uses of it. To exercise any of these rights, contact us at [CONTACT EMAIL, pending].
Contact.
Questions about this policy or your data can go to [CONTACT EMAIL, pending], or through our contact page.