This Privacy Policy sets out the data processing practices carried out through the use of the Internet and any other electronic communications networks by City CrossFit Ltd. We are sensitive to privacy issues on the Internet and believe that it is important you know how we treat the information about you that we receive on the Internet. If you have any requests concerning your personal information or any queries with regard to these practices, please write to us on contactcrossfitaldgate.com.
Information Collected
Some examples of data collection and use is listed below:
• We will collect you name and email address if you enter these into sign up to our newsletter via our website crossfitaldgate.com
• Personal information provided by you voluntarily for registration for our services. Data collected would include first and last name, date of birth, telephone number, email address gender and if you have any special needs, injuries or medical conditions
• It may be that some of the personal information you give us (for example, about your health) is sensitive personal data within the meaning of the GDPR. Such information (“sensitive information”) will not be shared or transferred and will only be stored to enable the safe delivery of our service as per Article 9, 2:f of GDPR
• If payment for our services is required you will be directed to our third party payment processor GoCardless. We do not process or retain your payment details ourselves and you will be given information regarding the privacy policy of GoCardless prior to entering your data
• In the event of an injury or similar incident we will collect you contact details and the particulars of the incident. These details will be transferred and electronically stored and any hard copy destroyed. These details will be stored for 7 years as per legal and insurance requirements.
• For those actively engaged in our services, i.e. our members, we may contact you from time to time with information relating to the delivery or changes to said services
Data capture info
Data provided by you to engage in our services will be retained by us for seven years prior to your last participation in our services due to legal and insurance requirements. We will not process this data unless you remain actively engaged in our services and we need to contact you with information relating to the delivery or changes to said services, or have opted in to receive details of products, services or promotional offers. If you have opted in to receive these promotional communications, we will ask you again after 2 years if we can continue to send you such communications. If you have only entered you name and email address to sign up to our newsletter via our website and not engaged in our services we will only keep your data for two years before asking you if we can retain it for a further period.
Marketing
Please note that your information may be occasionally used to send you details of products, services or promotional offers. You will be asked to opt-in to receive such communications and if at any point you would like to opt-out there will be a link to click to unsubscribe on each email you are sent, or you can contact us on contact@crossfitaldgate.com to request your data to be removed from this list.
Disclosures
We will not share your data with any third parties.
Other websites
Our website may contain links to other websites that are outside our control and are not covered by this Privacy Policy. If you access other sites using the links provided, the operators of these sites may collect information from you that will be used by them in accordance with their privacy policy, which may differ from ours. You are responsible for checking this policy when you visit our Site to review the current policy. If you do not agree with the policy, you should cease use of the Site immediately.
Subject access requests
You have the right to see what personal data we hold about you. Please contact us on contact@crossfitaldgate.com to make this request.
Internet based transfers
There will be no international transfer of your data.
Security considerations
We have strict security procedures covering the storage of your information in order to prevent unauthorised access and to comply with the terms of the GDPR.
If and when we decide to involve new technology or processes which would involve the transfer of your data, we agree that a full data protection impact assessment (DPIA) will be carried out prior to any implementation of such changes.
In the event of a data breach we agree to follow the process outlined in article 33 of GDPR legislation (gdpr-info.eu/art-33-gdpr/)