PRIVACY POLICY

IMMERSIA (“we”, “us”) operates the AI & XR Summer Bootcamp, a summer programme for kids aged 10–17 split into two back-to-back two-week cohorts and based in Lagos, Nigeria. This policy applies to everything on this site and to information you give us during registration.

• About the camper: full name, date of birth, gender, school, class/grade, t-shirt size.
• About the parent / guardian: full name, relationship, phone numbers, email, home address.
• Emergency contact: name, phone, relationship.
• Medical notes: only what you choose to disclose (allergies, conditions we should know about).
• Payment metadata: Monnify reference + status. We do not store card numbers or bank details, those live with Monnify.
• Site analytics: anonymous page-view data and request IPs used briefly for rate-limiting abuse.

• To enrol your child in the cohort, assign them to courses, and produce their name badge / t-shirt.
• To reach you about logistics, drop-off, pick-up, schedule changes, and Demo Day.
• To contact your emergency contact if your child needs medical attention.
• To process payment via Monnify.
• To comply with the Nigeria Data Protection Regulation (NDPR) and the Nigeria Data Protection Act 2023.

By default, nobody outside the IMMERSIA team. The exceptions:

• Monnify, to process payment.
• Our email provider, to send registration confirmations, receipts and pre-camp logistics.
• Medical responders, only if your child needs urgent care during camp.
• Law enforcement, only if compelled by a valid Nigerian court order.

We do not sell, rent, or trade your data to anyone.

Registration records and payment metadata are kept for two years after the cohort ends, then permanently deleted. Anonymous analytics are kept for up to 12 months. Medical notes are deleted within 30 days of camp ending unless required for an ongoing incident report.

Under NDPR you may at any time:

• Ask for a copy of the data we hold on you or your child.
• Ask us to correct anything inaccurate.
• Ask us to delete your data (we'll comply unless we're legally required to retain it).
• Withdraw consent for marketing communications.

Email any of these requests to privacy@immersia.ng and we'll respond within 14 days.

The camp is for kids 10–17. We only collect a camper's data with the explicit consent of a parent or legal guardian completing the registration form. We do not market directly to children. Photos taken during camp are only used in cohort communications and IMMERSIA channels with parental consent given on the registration form (you can opt out at registration or by emailing us).

Data is encrypted in transit (HTTPS) and at rest. Access is limited to the IMMERSIA team members who need it to run the cohort. We do not store any payment card data. Monnify handles that under PCI-DSS rules.

If we change anything material, we'll email everyone who has an active registration and update the “Last updated” date at the top of this page.

Privacy questions: privacy@immersia.ng
General questions: /contact