IronThistle Fitness

Privacy Policy for IronThistle Fitness

At IronThistle Fitness, we are committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our site, engage in our services, or interact with us. Your trust is paramount, and we comply with applicable data protection laws, including the General Data Protection Regulation (GDPR).

1. Information We Collect

We collect various types of information to provide and improve our personal training, group exercise classes, nutritional coaching, physiotherapy support, and wellness workshops.

• Personal Identification Information: This includes your name, address, email address, phone number, and date of birth, collected when you register for services, make a booking, or sign up for our newsletter.
• Health and Fitness Information: For personal training, nutritional coaching, and physiotherapy support, we may collect information about your health status, fitness goals, exercise history, dietary preferences, and medical conditions. This is considered sensitive personal data and is processed with your explicit consent for the sole purpose of providing tailored and safe services.
• Payment Information: When you purchase services, we collect payment details such as credit/debit card numbers. This information is processed securely by third-party payment processors, and we do not store full payment card details on our servers.
• Usage Data: We automatically collect information when you access or use our online platform, such as your IP address, browser type, operating system, referring URLs, and pages viewed. This helps us understand how our services are used and improve user experience.
• Communication Data: Records of your communications with us, including emails, phone calls, and other correspondence.

2. How We Use Your Information

We use the information we collect for various purposes, primarily to provide and improve our services:

• To Provide and Manage Services: To deliver personal training, group classes, nutritional coaching, physiotherapy, and wellness workshops, manage your bookings, and fulfill our contractual obligations.
• Personalization: To tailor our services and communications to your individual needs and preferences, especially concerning fitness programs and nutritional advice.
• Communication: To send you updates, service announcements, administrative messages, and information about your appointments or account.
• Marketing: With your consent, to send you promotional materials about our services, special offers, and events that may be of interest to you. You can opt-out of marketing communications at any time.
• Analytics and Improvement: To understand how our online platform is used, improve its functionality, and develop new services.
• Security and Fraud Prevention: To protect our services and users from unauthorized access, fraud, and other illegal activities.
• Legal Compliance: To comply with legal obligations, resolve disputes, and enforce our agreements.

3. How We Share Your Information

We do not sell your personal data. We may share your information with trusted third parties under specific circumstances:

• Service Providers: We work with third-party service providers who assist us in operating our business (e.g., payment processors, CRM systems, IT support, scheduling software). These providers are contractually bound to protect your data and only use it for the purposes of providing the services we requested.
• Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court order or government agency).
• Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred to the new entity. We will notify you before your information becomes subject to a different privacy policy.
• Physiotherapy Support: If you opt for physiotherapy support, information may be shared with our trusted physiotherapists to ensure integrated and effective care, always with your explicit consent.
• With Your Consent: We may share your information for any other purpose disclosed to you at the time of collection or with your explicit consent.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, secure servers, and regular security assessments. While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure.

5. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. When we no longer need your data, we will securely delete or anonymize it.

6. Your Data Protection Rights (GDPR)

Under GDPR, you have the following rights regarding your personal data:

• The Right to Access: You have the right to request copies of your personal data.
• The Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
• The Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data, under certain conditions.
• The Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
• The Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
• The Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• The Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us using the details provided below. We will respond to your request within one month.

7. Cookies

Our online platform uses cookies to enhance your experience. Cookies are small data files placed on your device. We use them for technical functionality, to remember your preferences, and for analytics purposes. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. Please note that if you disable or refuse cookies, some parts of this service may become inaccessible or not function properly.

8. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. We encourage you to review this Privacy Policy periodically for any changes.

9. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us:

IronThistle Fitness

2847 Caledonia Road, Suite 3A

Edinburgh, Scotland, EH12 5QX

United Kingdom