This statement outlines how and why we process your data. Please ensure you read and understand it before proceeding.
We value your privacy and want to ensure you fully understand why we need your data and how we may process it so that your decision to trust us with it, is an informed one.
What we need:
Vision Health and Fitness Club Limited will be joint data controllers of the personal data you provide to us along with our service partners: Membr - Fit Cloud Technology Limited (who provide our gym management software) and Harlands Services Limited (who provide us with direct debit collections services). They will only have access to your data for the purposes of providing their services to us and their access to it is strictly governed by contracts with us. We only collect personal data relevant to the membership you have selected. The data we collect may include: Name, address, phone number, email address, emergency contact, financial details including bank details, your preferences and interests. We may also collect ‘special’ data explained in more detail below.
We don't use gym cards, pin codes etc for accessing our gym, they are easy to forget or lose. Instead we have a fingerprint access control system that uses a scan of your fingerprint to control your access into the gym. Upon your first visit, a member of our team will capture a scan of one fingerprint that you will then use on future visits to access the gym. Our fingerprint access system is provided by Nomical Limited who act as a third party processor over this data on our behalf under a strict legal agreement. They will never access your data without prior consent from us and it will never be shared or processed by anyone other than for the purposes of controlling your access to the gym. We have installed the necessary, technical, physical and legal safeguards to ensure this.
Why we need it:
We need your data to fulfil our contractual requirements to you when we provide you with a gym membership and to manage that membership, control your access to our gym and collect any payments due.
What we do with it:
Your data will only be processed by our employees or authorised employees of the above mentioned third parties for the purposes of, providing our membership services to you and related business processes. No other third parties will have access to your data for this purpose unless required under law.
Where do we store your data:
All your data is stored and processed securely within the EEA. We have data protection policies and procedures in place governing; who, how and when your data may be processed. We have implemented strong physical and digital security to protect any data located at our premises or directly on our servers and we have ensured all our partners have similar security in place as well. Access to your data is restricted and limited to those authorised including by legal contracts / agreements with the companies mentioned above to ensure they adhere to this.
How long we keep your data:
We only keep your data for a reasonable time or for long as it is required based on the purpose it was originally collected, unless we are specifically required to keep it for longer by law. In any case, we will never keep your data in a personally identifiable manner for longer than 7 years. For full details please see our Data Retention Policy which can be found here.
Other reasons we may use your data:
We may from time to time, like to use your name, email address and / or mobile number to inform you of any future offers and similar products / services that we feel may be of interest to you. We use two third parties who provide us technical services that enable us to contact you by email or text, they are: Text Marketer (Esendex Limited) and Mailchimp (The Rocket Science Group LLC). We will only process your data for marketing purposes using these third parties after we have received your explicit consent, you will be given the option to inform us of your preference at the end of the sign up process. You have the right to refuse consent and you can revoke your consent at any time using the unsubscribe link provided in all communications from us. Agreeing to this Privacy Statement alone does not give us consent to use your data for marketing.
If at any point you believe that the information we process about you is incorrect you can request to see this information and have it corrected. You have the right to be forgotten and have your data erased, this right may be refused if we need to process your data to fulfil any contractual or legal requirements. If you have a complaint regarding our processing of your data you can contact us by email at firstname.lastname@example.org If you are not satisfied with our response or believe we are processing your personal data unlawfully you can complain to the Information Commissioner’s Office (ICO) by visiting www.ico.org.uk
Please scroll down to read the full privacy statement, then click continue.