TYPES OF INFORMATION COLLECTED
We retain two types of information:
This is data that identifies you or can be used to identify or contact you and may include your name, address, email address, user IP addresses in circumstances where they have not been deleted, clipped or anonymised, or telephone number. Such information is only collected from you if you voluntarily submit it to us.
Like most websites, we gather statistical and other analytical information collected on an aggregate basis from all visitors to our website. This Non-Personal Data comprises information that cannot be used to identify or contact you, such as demographic information regarding, for example, user IP addresses where they have been clipped or anonymised, browser types and other anonymous statistical data involving the use of our website.
PURPOSES FOR WHICH WE HOLD YOUR INFORMATION
We use the Non-Personal Data gathered from visitors to our website in an aggregate form to get a better understanding of where our visitors come from and to help us better design and organise our website.
We will process any Personal Data you provide to us for the following purposes of responding to your contact form submission.
DISCLOSURE OF INFORMATION TO THIRD PARTIES
We will not disclose your Data to third parties unless you have consented to this disclosure or unless the third party is required to fulfil your order (in such circumstances, the third party is bound by similar data protection requirements). We will disclose your Personal Data if we believe in good faith that we are required to disclose it to comply with any applicable law, a summons, a search warrant, a court or regulatory order, or other statutory requirements.
SALE OF BUSINESS
Your Personal Data is held on secure servers. The nature of the Internet is such that we cannot guarantee or warrant the security of any information you transmit to us via the Internet. No data transmission over the Internet can be guaranteed to be 100% secure. However, we will take all reasonable steps (including appropriate technical and organisational measures) to protect your Personal Data.
Cookies are tiny text files that are stored on your computer, tablet or mobile phone when you visit a website to help the website work efficiently, to help us analyse the way our website works and how we can improve it, and ensure that the website functions to the optimum.
How to control cookies in your browser?
For more details on cookies and how to control them, visit www.aboutcookies.org
certifications, administration of your private information and any other necessary specifics regarding the performance of this agreement.
SSI and SSI Training Centers jointly determine the purpose, scope and delivery of training content, processing, issuing and delivering certifications and administration of your data stored in the MySSI system at SSI International GmbH, Johann-Hoellfritsch-Straße 6,
90530 Wendelstein, Germany, Email: info@diveSSI.com, Tel:+49-9129-9099380.
If you have questions or would like a copy of the Joint Controller Agreement that describes the above arrangement and the safeguards for
protecting your data, go to the following link: https://my.divessi.com/ssi_dc_joint_controller_agreement, or contact SSI at privacy@
This privacy statement applies only to the SSI Training Center. Sections 1 to 8 and 10 to 11 of this privacy statement including its Appendix (“General Provisions”) explain in general how we collect and use your data when you use our services or the services from an SSI Training Center. The addendum contained in Section 9 (“Californian Provisions”) contains additional provisions in compliance with the California Consumer Privacy Act (“CCPA”) that only apply to Californian residents. The Californian Provisions supplement the General Provisions but in the event of any conflict between the General Provisions and the Californian Provisions, the Californian Provisions shall prevail but only for Californian residents. A separate data protection statement applies for the use of the MySSI section at my.diveSSI.com.
SSI International GmbH, SSI Training Centers, your SSI Instructor and other SSI Professionals may all be involved in your training, processing,
and delivery of your certification, therefore we need to collect and process the following personal data:
• First and Last Name
• Address, Post Box
• Postcode, City
• State and Country
• Email Address
• Telephone Numbers (optional)
• Date of Birth
• SSI Master ID
• Course Type, Course Progress
• Certification Data (Number, Date, Instructor,
Instructor Number, Number of Certification
Dives, Certification Year)
• Training Center Affiliation
• MySSI App Geo Locations
• Medical Information
• Insurance Data (when applicable)
• SSI Professional Number (only for
• QMS Data (for Professionals)
Note: The personal data we collect is for the sole purpose of delivering training content, processing, issuing and delivering certifications, and
administration of your data stored in the MySSI system.
With your registration in the MySSI system, you will be able to access everything SSI – Digital Training Materials, MySSI Logbook, Certification
Cards are available at the SSI website www.divessi.com or the MySSI mobile app. Additionally, SSI International GmbH (SSI), your SSI Training
Center, SSI Instructors and SSI Professionals will have access to your data for training and certification purposes.
Activation of your MySSI account is mandatory to access your
profile, training progress, certifications, education level and much more.
Upon completion of all academic, pool and open water training, SSI will process your digital certification card information – Your Name, Photo,
Customer Number (Master ID), SSI Training Center, Certifying Instructor, Year You Started Diving, Level of Experience, Number of Dives, and
Issue Date. All this information is accessible through our MySSI account.
The described processing is necessary for the performance of a contract (Article 6 (1) (b) General Data Protection Regulation).
By registering in MySSI, you are consenting to share your data: Name (First and Last), Address (Postbox), Postcode (Zip), City, State,
Country, Email Address, Telephone Numbers (optional), Date of Birth, Photo, Language, Gender, SSI Master ID, Course Type, Course Progress
and Certification Information (Name, SSI Training Center, Certifying Instructor, Year You Started Diving, Level of Experience, Number of Dives
and Issue Date), plus your Training Center Affiliation.
Additionally, all personal information voluntarily provided by you and stored in MySSI,
e.g. – Specific diving insurance policies (when applicable) or Medical Participant Questionnaires for processing student and professional
certifications through other SSI Service Centers. You may choose to affiliate or do business with any SSI Service Center or SSI Training Center around the world. For a complete list of all Service Centers and Training Centers log on to https://my.divessi.com/ssi or https://my.divessi.com/
By giving your consent, SSI Training Centers may subsequently access your data described above to identify you, verify
or confirm the status of your training and certifications and offer you continued training and services based on your diving experience.
The legal basis for the described processing is consent (Article 6 (1) (a) General Data Protection Regulation).
Special rules for youth under the age of 16
Youth under the age of 16 cannot participate in any SSI training without the explicit consent of their parent or legally appointed guardian.
Personal data for youth under the age of 16 is only used for conducting training and issuing certifications as described above.
Youth under the age of 16 who visit www.diveSSI.com cannot register or use the MySSI system without consent from their parent or legal guardian. SSI strongly recommends that the parent or legal guardian closely monitor their youth’s internet activities until they are of legal age.
Transferring your data to third parties
In the event of a diving incident or a complaint against an SSI Professional, your SSI Training Center may transfer your data to SSI (SSI
International GmbH, Johann-Hoellfritsch-Straße 6, 90530 Wendelstein, Germany) by email to info@diveSSI.com. As required by law, it may also be necessary to forward this same information to other SSI Service Centers or third parties involved in a case or the performance of this agreement, e.g. – insurance companies, public authorities or other companies affiliated with SSI. This is only as necessary for fulfilling the training requirement, complying with legal obligations and ensuring our legitimate interests.
Your SSI Training Center will also transfer your data to SSI while storing and processing your data. If necessary, this
includes the student or professional candidate Medical Participant Questionnaire for the administration and processing of your training and certifications managed by SSI in the MySSI System – my.diveSSI.com.
The purpose of processing and storing your data is necessary for the legitimate interests pursued by SSI (Article 6 (1) (f) General Data
We may also transfer your data to the following service providers to complete your training:
• IT service providers and/or providers of data hosting services;
• Service providers of software solutions who also support SSI in providing services including marketing tools, marketing agencies, communication service providers and call centres;
• Third parties that provide service to you, e.g.
– parcel services for the shipment of your credentials, payment service providers and
banks for processing payments;
• Other necessary third parties, e.g. – auditors, insurance companies, legal representatives,
• Officials and other public entities as required by law, e.g. – tax authorities, etc.; and,
• Industry partners within the dive industry for personalized advertising
of diver training, products and services with the user’s consent. This includes, for example,
advertising for diving insurance, membership for divers, promotion of local training programs and events conducted by Training Centers, etc.
The processing is necessary for the legitimate interests pursued by us (Article 6 (1) (f) General Data Protection Regulation).
SSI will transfer your data to external service providers only when third parties are processing the data on our behalf. We will enter into a data processing agreement to ensure that both the security of your data and our information is only used by our
Changes to this privacy notice
From time to time, we may update this privacy notice. When we do, we will post it on our Website and include the effective date of the
update. If there are material changes to this privacy notice, we will post a prominent notice on our Website and provide other notice as
required by law.
Your rights regarding SSI processing and storage of your data:
• You have the right to access and receive a copy of your data at SSI, Art. 15 General
Data Protection Regulation (GDPR).
• If your data is incorrect or no longer current, you have the right to modify the information, Art. 16 GDPR.
• You have the right to obtain verification your data has been deleted from MySSI,
(“right to be forgotten”), Art. 17 GDPR.
• You have the right to receive a copy of your data in a commonly used and legible format.
• You also have the right to know that we may transmit your data to another controller Art.
• You have the right to obtain a copy of any restriction of processing where the
prerequisites have been met, Art.
• You have the right to not be the subject of a decision based solely on an automated process, including profiling, which may result in legal consequences or any similar effect concerning you,
Your right to object
Where your data is concerned with the use of direct marketing, you have the right to object to that use.
Additionally, if we process your data even for legitimate reasons, you also have the right to object at any time if grounds develop out of your specific situation.
So that SSI may process your inquiry regarding the rights listed above and ensure your data is not given to any unauthorized third parties, please email SSI a short description and clear direction regarding your request to object and or modify your data stored at
SSI. You also have the right to file a complaint with the data protection authority.
In particular, the data protection authority in the country or state of your residence or place of work, if you believe that processing your data violated applicable data protection laws.