Fruci Fit is committed to safeguarding your privacy as required under the Data Protection Act 2018 (DPA) and the UK General Data Protection Regulation (GDPR). The purpose of this policy is to explain to you how we control, process, handle and protect your personal information.
1. Lawful bases and data protection rights
Under UK data protection law, we must have a “lawful basis” for collecting and using your personal information. There is a list of possible lawful bases in the UK GDPR. You can find out more about lawful bases on the ICO’s website.
Which lawful basis we rely on may affect your data protection rights which are in brief set out below. You can find out more about your data protection rights and the exemptions which may apply on the ICO’s website:
- Your right of access – You have the right to ask us for copies of your personal information. You can request other information such as details about where we get personal information from and who we share personal information with. There are some exemptions which means you may not receive all the information you ask for. You can read more about this right here.
- Your right to rectification – You have the right to ask us to correct or delete personal information you think is inaccurate or incomplete. You can read more about this right here.
- Your right to erasure – You have the right to ask us to delete your personal information. You can read more about this right here.
- Your right to restriction of processing – You have the right to ask us to limit how we can use your personal information. You can read more about this right here.
- Your right to object to processing – You have the right to object to the processing of your personal data. You can read more about this right here.
- Your right to data portability – You have the right to ask that we transfer the personal information you gave us to another organisation, or to you. You can read more about this right here.
- Your right to withdraw consent – When we use consent as our lawful basis you have the right to withdraw your consent at any time. You can read more about this right here.
If you make a request, we must respond to you without undue delay and in any event within one month.
To make a data protection rights request, please contact us using the contact details at the top of this privacy notice.
2. Our lawful bases for the collection and use of your data
Our lawful bases for collecting or using personal information to provide services and goods, dealing with queries, complaints or feedback, marketing, service updates, legal requirements are:
- Consent – we have permission from you after we gave you all the relevant information. All your data protection rights may apply, except the right to object. To be clear, you do have the right to withdraw your consent at any time.
- Contract – we must collect or use the information so we can enter into or carry out a contract with you. All your data protection rights may apply except the right to object.
- Legal obligation – we must collect or use your information so we can comply with the law. All your data protection rights may apply, except the right to erasure, the right to object and the right to data portability.
- Legitimate interests – we’re collecting or using your information because it benefits you, our organisation or someone else, without causing an undue risk of harm to anyone. All your data protection rights may apply, except the right to portability. Our legitimate interests are:
The processing of the personal data is a legitimate, expected behaviour of a business. On the basis of legitimate interest, we process your personal data for the following purposes to:
- Provide services to you e.g. registering your account, providing you with other products and service that you have requested, providing you with promotional items at your request and communicating with you in relation to those products and services; communicating and interacting with you and notifying you of any changes to service.
- Answer any queries and questions you may have.
- Improve our service, membership and customer experience.
- Administer and analyse our client base (purchasing behaviour and history) in order to improve the quality, variety, and availability of products / services offered/provided.
- Conduct questionnaires concerning client satisfaction (as long as you have not informed us otherwise, we consider offering you products/services that are similar or same to your purchasing history/browsing behaviour to be our legitimate interest).
- Fulfil an obligation under law or contract.
3. What information we collect, use, and why
We collect or use the following information to provide services and goods, dealing with queries, complaints or feedback, marketing, service updates, or to comply with legal requirements.
- Names and contact details
- Addresses
- Date of birth
- Payment details (including card or bank information for transfers and direct debits, financial transactions
- Identification documents (education students)
- Health information (including dietary requirements, allergies, and health conditions)
- Website user information (including user journeys and cookie tracking)
- Photographs or video recordings
- Records of meetings and decisions
- Identification documents
- Information relating to compliments or complaints
- Marketing preferences
- Location data
4. Cookies
Our website uses “cookies” to track use and allow customers to purchase from our website. Please note that these cookies do not contain or pass any personal, confidential, or financial information or any other information that could be used to identify individual visitors or customers purchasing from our website. Please note that you are free to refuse cookies. However, for purely technical reasons this may prevent you from purchasing from our website. This is because anonymous cookies are commonly used to keep track of the contents of customers’ shopping baskets or trolleys during the checkout process. This facility ensures that the items added to (or removed from) your basket are accurately stated when you go to pay.
5. How do we collect personal data from you
We receive information about you from you when you use our website, complete forms on our website, if you contact us by phone, email or otherwise in respect of any of our services or during the purchasing of any such service. Additionally, we also collect information from you when you sign up, enter a competition, promotion or survey or when you inform us of any other matter.
When a visitor accesses this website, we automatically collect certain non-personally identifiable information about the request. This information is stored by cookies and other session tools. This information includes the IP address of the computer making the request and the time and date of the request, the type of web browser being used, and, sometimes, the page from which the visitor is coming. The information does not contain the visitor’s name or email address.
6. How long we keep information
We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements
7. Who we share information with
Card & Payment Processing Data
We use third-party payment providers to handle card and payment processing data securely. We never store any card or payment information. In accordance with Article 6(1)(b) of the General Data Protection Regulation (GDPR) any other data is only used to process your purchase securely. In accordance with Article 6(1)(c) of the General Data Protection Regulation (GDPR), we need to retain data related to all purchases to fulfil our existing legal obligations to account for tax and VAT on all transactions.
Booking & Membership Management System
We sell products, manage memberships and co-ordinate appointments, manage studio timetables, and make bookings through this platform.
Backup & Data Storage
For administrative reasons, customer data and email subscription data may be passed to and stored securely with third party service providers located outside the EEA (European Economic Area). This is done to backup and preserve your data where it is needed to carry on offering a service to you.
Data Sharing With Partners
We do not share commercial or technical data with our partners unless we have specifically sought and obtained your prior approval. Where we request such approval, we will always fully disclose how your data is used.
Please note that even when we have your specific consent, we only share data with partners that operate their own privacy policy in full accordance with the General Data Protection Regulation (GDPR).
Links to other websites
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
8. Data Security & Protection
Fruci Fit takes all reasonable steps to ensure the personal data you disclose to Fruci Fit remains secure. We use safe protocols for communication and transferring data (such as HTTPS). We monitor our systems for possible vulnerabilities and attacks.
Despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorised third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information. Although we will do our best to protect your personal information,
Fruci Fit cannot and do not guarantee that your personal data will be free from unauthorized interception or access and shall not be liable to you for any losses caused by any such unauthorized interception or access.
Should a data breach occur we will notify you if there is a threat to your rights or interests, as well as inform suitable authorities of a data breaches.
If you have an account with us, note that you must keep your username and password secret.
9. Your Ability to Opt-out / Opt-in
BY SUBMITTING YOUR INFORMATION TO US, YOU ARE INDICATING YOUR AUTHORISATION TO THE USE AND DISCLOSURE BY US OF YOUR INFORMATION AS SET OUT IN THIS PRIVACY POLICY.
It is the intention of Fruci Fit to give individuals as much control as is reasonably possible over how their personal data is processed. Accordingly, several of the purposes described above (such as the use of your personal data for sending you information which Fruci Fit believes may be of interest to you) are entirely voluntary and such communications will often only be sent to you if you have opted in to receive them.
In any event, you may at any time opt-out of receiving any such communications by either contacting Fruci Fit or by ticking an opt-out box (where relevant and applicable).
10. How To Complain
If you have any concerns about our use of your personal data, you can make a complaint to us at:
- Matt@Frucifit.com – 07886129305
- 126 High Street, Burbage, MARLBOROUGH, Wiltshire, SN8 1LZ, GB
If you remain unhappy with how we’ve used your data after raising a complaint with us, you can also complain to the Information Commissioner’s Office and their address is:
- Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
- Helpline number: 0303 123 1113
- Website: https://www.ico.org.uk/make-a-complaint
Last updated: 2024