LAST UPDATED: March 25 2020
Lifestyle Pilates at Home (“LPAH”, “us”, “our” or “we”), operates the lifestylepilatesathome.com website (including all content and functionality available through the Lifestylepilatesathome.com domain name and any country or region-specific domains or sub domains) and the Lifestyle Pilates at Home App (jointly referred to as the “site”).
Lifestyle Pilates at Home is the data controller of personal information processed through your use of our site.
The type of the personal information processed by us includes information that you provide when using our site or services, technical information about your device, settings and site use, information that we receive from third parties, such as other website providers, ad networks, social media companies and health and fitness clubs and, where applicable, information relating to your role as instructor.
We use your data, amongst other things, to provide you with our site and services or information about our site and services, tailor our services to you, carry out analysis of our services, provide (or allow others to provide) targeted ads, comply with any legal or regulatory obligation and (if you are an instructor) assess your performance and provide information relating to your role.
You agree that we may send you marketing materials relating to our services which you can opt out of at any time by sending an email to email@example.com or clicking unsubscribe at the bottom of any marketing email.
We share data with our service providers and other third parties for the performance of our contractual obligations to you, to provide you with information, for the serving of advertising and (where relevant) run credit and background checks.
Depending on where you are located, you have a number of rights that you may exercise in relation to our use of your personal data, and you may exercise these by contacting us through the communication methods set out in the ‘Your rights’ section below.
In this policy:
— “you” means you, the person using our services, or visiting the site.
— “Group Companies” means Lifestyle Pilates at Home and all subsidiaries and affiliate companies; from time to time owned by Lifestyle Pilates Studio (other than us) providing fitness-related goods and services. If you require a full list of entities comprising the Group Companies, please contact us as described in the “Contact” section below.
— “Lifestyle Pilates Group” means us and the Group Companies.
— “Services” means the Lifestyle Pilates at Home subscription service. The Services may be provided to you on our desktop site, or via our app.
INFORMATION WE COLLECT ABOUT YOU
We will collect and process the following information about you:
INFORMATION YOU GIVE US
This is information about you that you give us when you browse or use the site, correspond with us by phone, SMS, email, social media or otherwise. It includes information you provide when:
You register to use our site;
Subscribe to our Service;
Place an order on our site;
Participate in discussion boards or other social media functions on our site;
Enter a competition; and
you report a problem with our site.
The information you give us includes your name, address, date of birth, e-mail address and phone number, credit card information (which is captured for payment but not stored) if you subscribe to our Services or place an order on our site, personal description and photographs, videos, images or comments, your fitness interests and preferences such as your marketing preferences.
This information is required to provide the Services to you. If you do not provide such information, it may delay or prevent us from providing the Services.
INFORMATION WE COLLECT ABOUT YOU
With regard to each of your visits to our site we will automatically collect the following information:
technical information, including the IP address used to connect your computer or device to the Internet, your login information, browser type and version, time zone setting, location data, browser plug-in types and versions, operating system and platform;
information about your visit, including the full URL, clickstream to, through and from our site (including date and time), pages or products you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page; and.
information about how you use the Services, including but not limited to your video consumption and playback, sign-in and sign-out and playback error.
A word about cookies
For detailed information on the cookies we use and the purposes for which we use them, please refer to our cookies policy here
INFORMATION WE RECEIVE FROM OTHER SOURCES
Other Lifestyle Pilates websites: We may receive information about you if you use any of the other websites operated by Lifestyle Pilates Companies or the other services the Lifestyle Pilates Group provide.
Social Media: If you connect with us via certain social media platforms, or you choose to use features on this site or the websites of other Lifestyle Pilates Group Companies that connect to your online profiles or social media accounts (“Social Media Accounts”), we may collect any information that you permit through your settings on those Social Media Accounts. For example, if you log in to our site using your Facebook account and you have allowed Facebook to share your profile information with us, we may collect that information. Information we receive from your Social Media Accounts includes email address, first and last name, location (hometown and country), gender, date of birth, likes, interests, number of connections, occupation, posts or other social activity. The information that your social media platform may provide to us via your Social Media Account may change from time to time. Please review your Social Media Account privacy settings to control what information is shared with us.
HOW YOUR INFORMATION WILL BE USED
We use information held about you in the following ways.
INFORMATION YOU GIVE TO US (INCLUDING THROUGH SOCIAL MEDIA ACCOUNTS)
A. To the extent permitted under applicable law, we process data for the following purposes based on our legitimate interests:
to provide you with information about other goods and services we offer that are similar to those that you have already purchased or enquired about;
to ensure that content from our site is presented in the most effective manner for you and for your computer;
to tailor your experience on the site;
for data analysis, testing, research, statistical, editorial, feedback and survey purposes.
If we rely on our (or another person’s) legitimate interests for using your personal information, we will undertake a balancing test to ensure that our (or the other person’s) legitimate interests are not outweighed by your interests or fundamental rights and freedoms which require protection of the personal information.
B. To the extent permitted under applicable law, we will process data where it is necessary to fulfil our contract with you:
making the Services available to you;
providing any Services that you request and respond to your enquiries;
administering the Services and processing your payment where you are purchasing Services from us (including but not limited to using third party service providers to process such payment);
notifying you about changes to our services; and
C. We will process data for the following purposes based on your consent:
to provide you with the latest information and offers relating to health and fitness, or allow authorised third parties to provide information to you about goods and services; and
D. We will process data where necessary to comply with all legal requirements.
if you have a paid subscription to use the Services and live in the European Union (the “EU”), we are legally required to allow you, and you are legally entitled, to watch the Services when you’re visiting another country in the EU provided that we have verified your country of residence. We verify your country of residence using [e.g. your IP address and payment information].
if we receive a request for information from a regulator, we may also need to process your personal information to respond to such request regulator.
INFORMATION WE COLLECT ABOUT YOU
A. We will process data for the following purposes based on our legitimate interests:
to administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
to improve our site to ensure that content is presented in the most effective manner for you and for your computer;
as part of our efforts to keep our site safe and secure;
to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you;
to make suggestions and recommendations to you and other users of our site about goods or services that may interest you or them;
to provide (or permit third parties to provide) targeted advertising via websites you visit about goods or services that you may find interesting (see more on this in our Cookies Notice below);
To track the progress and number of entries in competitions and promotions.
To the extent permitted under applicable law, if we rely on our (or another person’s) legitimate interests for using your personal information, we will undertake a balancing test to ensure that our (or the other person’s) legitimate interests are not outweighed by your interests or fundamental rights and freedoms which require protection of the personal information.
B. We will process data for the following purposes based on your consent:
To allow you to participate in interactive features of our service, when you choose to do so. This includes any public forum features we provide on our site such as community forums, comments positing or chat features.
If we rely on your consent for us to use your personal information in a particular way, but you later change your mind, you may withdraw your consent by contacting us at firstname.lastname@example.org and we will stop doing so. However, if you withdraw your consent, this may impact the ability for us to be able to provide you with our services (for example, we may not be able to provide marketing information to you regarding our suppliers’ products and services).
DISCLOSURE OF YOUR INFORMATION
For some of the purposes for which we use personal data (see above), we will engage a third party. If such third party needs access to personal data to carry out its task, we will share the data with them, to the extent permitted by applicable laws, we will ensure that the third party will only use the data based on our instructions. Such a party is a processor on our behalf and we remain responsible for your data. We will engage the following processors:
Companies that provide services to us (including Lifestyle Pilates Companies) such as vendors, service providers, and other partners who globally support our business. These third parties provide services such as providing technical infrastructure services, analyzing how our services are used, measuring the effectiveness of ads and services, providing customer service, facilitating payments, or conducting academic research and surveys. These partners must adhere to strict confidentiality obligations in a way that is consistent with this policy and the agreements we enter into with them; and
Analytics and search engine providers such as AWS and Google Analytics that assist us in the improvement and optimisation of our site. We want our site and advertising to be as relevant and interesting to you as it can be. With this in mind, we use all of the information we have about you to show you relevant ads, and in order to be able to optimize our site. We do not share information that personally identifies you (personally identifiable information is information like name or email address that can by itself be used to contact you or identifies who you are) with advertising, measurement or analytics partners. We may provide these partners with information about the reach and effectiveness of their advertising without providing information that personally identifies you, or if we have aggregated the information so that it does not personally identify you.
OTHER THIRD PARTIES
We will, when we have the right to do so according to applicable personal data regulations, share your personal information with:
Lifestyle Pilates Companies;
the following selected third parties:
business partners, authorised distributors, suppliers, service providers, Lifestyle Pilates licensed clubs and sub-contractors who provide us with services which allow us to perform the contract we enter into with you;
business partners, authorised distributors, suppliers, service providers, Lifestyle Pilates licensed clubs and sub-contractors to provide you with information about promotions and offers, or for any of the other purposes described the “How your information will be used” section above;
social media or other similar platforms so that we can serve relevant content to you via that platform. For example, we may share your email address with Facebook so that we can include you within a custom audience that we (or a third party on our behalf) will serve content to on Facebook, or we may create an audience of other Facebook users based on the information in your Facebook profile; and
credit reference agencies for the purpose of assessing your credit score where this is a condition of us entering into a contract with you.
DISCLOSURE UNDER CERTAIN CIRCUMSTANCES
We will, when we have the right to do so according to applicable personal data regulations, also disclose your personal information to third parties in the following circumstances:
In the event that we sell or buy any business or assets, in which case we will disclose your personal information to the prospective seller or buyer of such business or assets;
If LPAH or substantially all of its assets are acquired by a third party, in which case personal information held by it about its customers will be one of the transferred assets;
Where you have otherwise consented that we may do so.
WHERE WE STORE YOUR INFORMATION AND INTERNATIONAL TRANSFERS
Individuals (especially within the European Economic Area, or “EEA”) should be aware that we and other third-party recipients of their personal information, such as the Lifestyle Pilates Companies or our service providers will not be located within your jurisdiction or within the EEA and we may transfer your data to those locations. For instance, personal data may be transferred to the Lifestyle Pilates Group Companies in Australia in connection with the purposes stated above. Our video platform provider (Vimeo) and ecommerce platform (Magento) are based in the United States, therefore your personal data may be transferred to the United States. Steps will be taken to protect your personal information in a way that is consistent with applicable law, for example entering into contractual clauses which contain the European Commission-model clauses where personal data concerning EU citizens is shared with a party outside the EEA based in a country which is deemed not to have adequate data protection safeguards in place.
Further details on the steps we take to protect your personal information, in these cases is available from us on request by contacting us by email at email@example.com at any time.
All information you provide to us is stored on our secure servers or on the secure servers or secure services controlled by third parties on our behalf. Any payment transactions will be encrypted using SSL technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal information, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
We retain the personal information we collect only if we need it to support justifiable business requirements or when our lawful purposes for using the information requires retention. Subject to any special circumstances or applicable laws requiring otherwise, after account closure, we will only hold your personal information for a period of 2 years following account closure. When we no longer require personal information we or our third party suppliers will securely delete and/or archive the information. For more information on where and how long your personal information is stored, and for more information on your rights of erasure and portability, please contact us at firstname.lastname@example.org.
SECURITY OF YOUR INFORMATION
To help protect the privacy of data and personally identifiable information you transmit through use of our site and portals, we maintain physical, technical and administrative safeguards. We update and test our security technology on an ongoing basis. We restrict access to your personal data to those employees who need to know that information to provide benefits or services to you. In addition, we train our employees about the importance of confidentiality and maintaining the privacy and security of your information. We commit to taking appropriate disciplinary measures to enforce our employees’ privacy responsibilities.
You may be able to log in to our site using social sign-in services such as Facebook Connect. These services will authenticate your identity and provide you the option to share certain personal information with us such as your name and email address to pre-populate our sign up form. Services like Facebook Connect give you the option to post information about your activities on this site to your profile page to share with others within your network.
The site may contain links to other websites. We are not responsible for the reliability of the content or privacy practices of such other websites.
We may provide you with chat features, instant messaging, message boards, community forums and/or news groups through the site or otherwise. Please remember that any information that you disclose in public areas of the site will become public information, and be accessible to the public. We do not intend (but reserve the right) to monitor, moderate or screen the contents of user postings. We bear no responsibility for any such content and you should be cautious when considering whether to disclose your personal information in the on the site through public or private forums.
We do not knowingly collect information from children under the age of 13 (or the relevant age for giving valid consent in your jurisdiction, if different) and the site and app are not targeted to under the age of 13 (or the relevant age for giving valid consent in your jurisdiction, if different). We encourage parents and guardians to take an active role in their children’s online activities and interests.
Please contact us at email@example.com if you are aware that we may have inadvertently collected personal information from a child.
LOST OR STOLEN INFORMATION
You must not share your user same or password with anybody and you should keep these secure. Please notify us promptly email firstname.lastname@example.org if your user name or password is lost, stolen or used without permission. Upon notice, we will cancel that user name or password and update our records accordingly. We recommend that different passwords are used for all of your online accounts.
You have the right to decline our use of your personal information for (or opt-out of) marketing communications. The records for those individuals who opt out of future marketing mailings will be marked in our records so that their names will be excluded from any contact of that type in the future unless they later request or agree to future contact.
You can “opt-out” by:
using the contact details provided for this purpose in our mailing to you;
using the “unsubscribe” option at the foot of any electronic communication we send to you; or
by emailing us at any time at email@example.com.
Depending on where you are located, you may have rights over your personal data.
You may have the right to request access to certain personal data that we hold about you including any information we have shared to our Group Companies for direct marketing purposes, subject to certain conditions and limited exceptions set out in relevant data privacy laws.
If you wish to do so, please email your request to firstname.lastname@example.org, and to the extent that we are required to do so under applicable law, we will process your request.
We will be as open as we can with you but sometimes, to the extent permitted by applicable laws, we might not hold any personal information about you or may have to withhold personal information from you. For example, where the information is not personal information about you, is commercially sensitive, is legally privileged, relates to the personal information of another person, or it may impact on the safety or security of our employees or customers to release it. In these circumstances, we will withhold the information but we’ll tell you why.
You have the right to ask us not to use your personal information for marketing purposes. You can exercise the right at any time by contacting us at email@example.com.
Residents of the EU may also have special rights under data protection legislation in the European Union, in addition to those rights set out above. You may also have a right under applicable laws to request information about: the purpose of the processing; the categories of personal data concerned; who else outside the Lifestyle Pilates Companies might have received the data from us; what the source of the information was (if you didn’t provide it directly to us); and how long it will be stored. You may have a right to:
request that we correct (rectify) the record of your personal data maintained by us if it is inaccurate or out of date;
request that we erase that data or cease processing it, subject to certain exceptions;
ask us not to process your personal information for the legitimate interests that we have set out above. In certain circumstances we may not be able to stop using your personal information but, if that is the case, we’ll let you know and tell you why;
receive the personal information that you have provided to us in a structured, commonly used and machine-readable format, and to transmit that data to another data controller; and
lodge a complaint with the appropriate data protection authority if you have concerns about how we process your personal data. The local authority differs depending on the country. Please see the Annex for a list of some local data protection authorities. Alternatively, you may seek a remedy through the courts if you believe your rights have been breached.
If you wish to exercise any of the above rights, please your request to firstname.lastname@example.org.
Lifestyle Pilates at Home, 40 Cattai Creek Drive NSW, Australia
CHANGES TO THIS POLICY
This policy may be translated into other languages. You agree where there is any inconsistency between the translation and this policy, the English language will prevail.
LIST OF DATA PROTECTION AUTHORITIES (EEA COUNTRIES)
You have the right to lodge a complaint with local data protection authorities in your jurisdiction if you believe we have not complied with applicable data protection laws.
The local authority differs depending on the country. Please see below for details of the local data protection authorities in the EEA countries in which we operate.
CountryData protection authority
Commission de la protection de la vie privée
Rue de la Presse 35
Tel. +32 2 274 48 00
Fax +32 2 274 48 10
Commissioner for Personal Data Protection
1 Iasonos Street,
P.O. Box 23378, CY-1682 Nicosia
Tel. +357 22 818 456
Fax +357 22 304 565<
Commission Nationale de l’Informatique et des Libertés – CNIL
3 Place de Fontenoy – TSA 80715
75334 PARIS CEDEX 07
Tel. +33 1 53 73 22 22
Fax +33 1 53 73 22 00
The competence for complaints is split among different data protection supervisory authorities in Germany.
Competent authorities can be identified according to the list provided under
Data Protection Commissioner
Lo-Call: 1890 25 22 31
Tel. +353 57 868 4800
Fax +353 57 868 4757
Office of the Data Protection Commissioner
Data Protection Commissioner: Mr Joseph Ebejer
2, Airways House
High Street, Sliema SLM 1549
Tel. +356 2328 7100
Fax +356 2328 7198
Prins Clauslaan 60
P.O. Box 93374
2509 AJ Den Haag/The Hague
Tel. +31 70 888 8500
Fax +31 70 888 8501
The Bureau of the President of the Personal Data Protection Office – PUODO
ul. Stawki 2
Tel. +48 22 53 10 300; 606-950-000
Fax +48 22 53 10 301
The National Supervisory Authority for Personal Data Processing
President: Mrs Ancuţa Gianina Opre
B-dul Magheru 28-30
Sector 1, BUCUREŞTI
Tel. +40 21 252 5599
Fax +40 21 252 5757
Office for Personal Data Protection of the Slovak Republic
820 07 Bratislava 27
Tel.: + 421 2 32 31 32 14
Fax: + 421 2 32 31 32 34
Agencia de Protección de Datos
C/Jorge Juan, 6
Tel. +34 91 266 35 17
Contact by e-mail: email@example.com. Also: https://sedeagpd.gob.es/sede-electronica-web/