Privacy Policy for mygymhb.com
1. Introduction
At My Gym HB (accessible via mygymhb.com), we are deeply committed to safeguarding your privacy and personal data. We recognize the vital importance of maintaining your trust, and we take data protection and transparency seriously. This Privacy Policy outlines the manner in which we collect, use, disclose, and safeguard your information, in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to your interaction with mygymhb.com and any services, features, or functions available through the website. My Gym HB is the data controller for the personal information collected via this website. If you have any questions regarding our privacy practices or this policy, you may contact us via email at [email protected].
3. Categories of Data Processed
We may process the following categories of personal data:
a) Usage Data
Includes information about how you access and interact with our website, such as your IP address, browser type, language preferences, referral sources, pages visited, and session durations.
b) Account Data
Includes your full name, physical and mailing address, email address, phone number, and similar identifiers that you provide when creating an account or booking services.
c) Profile Data
Includes preferences, purchase history, service selections, activity records (such as gym preferences or registration data), and behavioral patterns on our site.
d) Communication Data
Includes correspondence you send to us, such as customer support inquiries, feedback forms, or participation in promotions, contests, or surveys.
e) Technical Data
Includes data relating to the device and technology you use to access our website, such as device identifiers, browser plugins, operating system type, and security characteristics.
f) Transaction Data
Includes details of services or products you purchase, billing and shipping data, transaction history, and payment confirmation (note: payment processing is handled by third-party providers who comply with PCI standards).
g) Preference Data
Includes your choices and settings regarding marketing communications, product interests, account preferences, and cookie consent statuses.
4. Legal Bases for Processing
We process personal data lawfully under the following legal bases:
– Legitimate Interest: Where processing is necessary for the operation, protection, and improvement of our services, provided that such interest does not override your fundamental rights.
– Contractual Necessity: Where data processing is required to enter into or perform our contractual relationship with you.
– Consent: Where you have given clear and explicit permission for a specific data processing activity (e.g., marketing communications).
– Legal Obligation: Where we are legally required to retain or disclose certain information under local, state, or international laws.
5. Your Rights
Under data protection laws, including GDPR and CCPA, you have certain rights regarding your personal data:
– Right of Access: Obtain confirmation whether your personal data is being processed and access relevant details.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data when it is no longer necessary for the purposes for which it was collected.
– Right to Restriction: Request suspension of the processing of your personal data under certain circumstances.
– Right to Data Portability: Request that your data be transmitted to you or another controller in a structured, commonly used, machine-readable format.
– Right to Object: Object to specific processing activities based on legitimate interest or for direct marketing purposes.
– Right Not to Be Subject to Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing where it produces legal or similarly significant effects.
– Right to Non-Discrimination (for California residents): We will not discriminate against you for exercising any of your privacy rights.
6. Security Measures
My Gym HB implements technical and organizational measures to ensure a high level of security appropriate to the risk of processing your personal information. These include but are not limited to:
– Data encryption in transit via HTTPS
– Access controls and role-based permissions to restrict data access
– Routine data backups and secure off-site storage
– Employee privacy training and designated data protection responsibilities
– Regularly updated firewall and intrusion detection systems
7. International Transfers
Certain data may be transferred to and stored in jurisdictions outside the European Economic Area (EEA), including the United States. In such cases, we ensure that appropriate safeguards are in place in accordance with GDPR requirements, such as the use of Standard Contractual Clauses or equivalent protection mechanisms.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal, accounting, or reporting requirements:
– Usage, Technical, and Cookie Data: 12 months
– Account and Profile Data: For the duration of your account and up to 3 years thereafter
– Transaction and Communication Data: 6 years, to comply with legal and taxation obligations
– Preference and Marketing Data: Retained until you withdraw your consent or request deletion
9. Cookie Policy
We use cookies and similar technologies to enhance your experience, analyze traffic, and optimize performance. These include:
– Essential Cookies: Necessary for website functionality (e.g., login, navigation)
– Functional Cookies: Remember user preferences and settings
– Analytical Cookies: Help us measure website performance, understand visitor interactions, and improve user experience (e.g., Google Analytics)
– Performance Cookies: Enhance load times and responsiveness
10. Cookie Management and Compliance with GDPR & CCPA
You have full control over your cookie preferences. Upon visiting our website, you may be prompted to accept or manage cookies via a consent banner. You have the right to withdraw your consent or adjust your preferences at any time by accessing the cookie settings from your browser or device. We honor browser Do Not Track (DNT) signals and comply with global privacy control signals where applicable.
11. Special Protections for Children Under 13
Our website and services are not intended for individuals under the age of 13, and we do not knowingly collect data from children without verified parental consent. If we become aware that we have inadvertently processed personal data of a child under 13 without appropriate authorization, we will take steps to delete such information promptly.
12. Policy Updates and User Notifications
We may revise this Privacy Policy periodically to reflect changes in our practices or applicable legal requirements. Material changes will be communicated to you through appropriate channels such as website notifications or email (where applicable). Your continued use of mygymhb.com signifies acceptance of the latest version of this Privacy Policy.
13. Contact
If you have any questions, concerns, or complaints regarding this Privacy Policy or your personal data, you may contact us at:
Email: [email protected]
Website: https://mygymhb.com
We are committed to complying with all relevant privacy regulations and ensuring your data is handled responsibly. Please do not hesitate to reach out to us if you believe your data has been misused or if you wish to exercise any of your privacy rights.
