Who are we?
We are Fitness Matcher Ltd, a company registered in England and Wales under registration number: 12844798 (“we”, “us”, “our”).
The personal data we collect
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where your identity has been removed (“Anonymous Data”).
We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
First name, maiden name, last name, username or similar identifier, title, date of birth and gender.
Billing address, delivery address, email address and telephone numbers.
Bank account and payment card details.
Details about payments to and from you and other details of potential products and services you have purchased from us.
Internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our Website or our app.
Your username and password, profile, purchase’s or orders made by you, your preferences and feedback.
Information about how you use our app, Website, products and services.
Marketing and Communications Data
Your preferences in receiving marketing from us and our third parties and your communication preferences.
We do not collect any special categories of personal data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership or genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
How we collect your personal data
We use different methods to collect data from and about you including through:
direct interactions. You may give us your identity, contact and financial data by filling in forms in our app, or by corresponding with us by phone, email or otherwise;
third parties. We will receive personal data about you from various third parties, including our stockists, analytics providers, advertising networks and search engines.
Failure to provide personal data
Where we need to collect personal data by law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you.
How we use your personal data
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests (see the "Legitimate interests" section below); and
where we need to comply with a legal or regulatory obligation.
Generally, we do not rely on consent as a legal basis for processing your personal data.
We may use personal data held about you in the following ways:
to respond to queries from you regarding the services we offer;
to take payment on behalf of the PT you have chosen, and to send your personal data to them;
to respond to a complaint that you or another party has made;
to ensure that content from our Website or our app is presented in the most effective manner for you and for your device.
When contacting you for the above purposes we may do so by phone, post, email or other electronic means, unless you instruct us not to do so.
We may rely on legitimate interests to process your personal data, provided that your interests do not override our own. Where we rely on legitimate interests, these interests are:
to grow our business and inform our marketing strategies;
to keep our records updated and to study how our Website and app are used; and
to administer and protect our business and web presence (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting).
Keeping your personal data safe
We employ a variety of physical and technical measures to keep your personal data safe and to prevent unauthorised access to, use or disclosure of it. Electronic data and databases are stored on secure servers, and we control who has access to them using both physical and electronic means. We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so. However, we cannot absolutely guarantee the security of the internet, external networks, or your own device, accordingly any online communications (e.g. information provided by email or through our app) are at your own risk.
Storage and retention
Where we store your personal data
The data that we collect from you may be transferred to, and stored at, a destination outside the United Kingdom and the European Economic Area (“EEA”). It may also be processed by staff operating outside the UK or the EEA who work for us. We will take all steps reasonably necessary to ensure that any personal data transferred outside the UK or the EEA is treated securely and in accordance with applicable data protection laws.
How long we keep it
If we have not had meaningful contact with you (or, where appropriate, the company you are working for or with) for a period of 5-years, we will delete your personal data from our systems unless we believe, in good faith, that the law or other regulation requires us to preserve it (for example, because of our obligations to tax authorities or in connection with any anticipated litigation).
Disclosing your personal data
We may need to disclose your personal data to third parties. Where we do so, any such disclosure will be on the basis that these third parties are required to keep the data we give them confidential and secure, and will not use it for any other purpose than to carry out the services they are performing for us. We may disclose personal data as follows:
our professional advisors (e.g. accountants, lawyers etc.).
Disclosures required by law
Like all UK businesses, we are subject to the law. We may be required to give information to legal authorities if they so request or if they have the proper authorisation such as a search warrant or court order. We also may need to retain and disclose certain personal data about you to regulatory authorities and to appropriate agencies to conduct anti-money laundering checks and to assist with fraud prevention. We will disclose this information as is required by law.
Links to third party websites
We want you to remain in control of your personal data. Part of this is making sure you understand your legal rights, which are as follows:
where your personal data is processed on the basis of consent, the right to withdraw that consent;
the right to confirmation as to whether or not we are holding any of your personal data and, if we are, to obtain a copy of it;
the right to have certain data provided to you in a portable electronic format (where technically feasible);
the right to have inaccurate personal data rectified;
the right to object to your personal data being used for marketing or profiling, or on the basis of our or a third party’s legitimate interests;
the right to restrict how your personal data is used; and
the right to be forgotten, which allows you to have your personal data erased in certain circumstances (though this is not an absolute right and may not apply if we need to continue using it for a lawful reason).
If you would like further information about any of your rights or wish to exercise them, please contact us.
Please keep in mind that there are exceptions to the rights above and, though we will always try to respond to your satisfaction, there may be situations where we are unable to do so (for example, because the information no longer exists or there is an exception which applies to your request).
If you are not happy with our response, or you believe that your data protection or privacy rights have been infringed, you should contact the UK Information Commissioner's Office, which oversees data protection compliance in the UK. Details of how to do this can be found at www.ico.org.uk.