Privacy policy

I. GENERAL

1. 1. SCOPE

The following privacy policy, regardless of whether you register with us, use our app or visit only our site, clarifies the nature, scope and purpose of the collection, use and processing of personal data by Fitpass SRL

2. RESPONSIBLE BODY

Responsible body for the collection, processing and use of your personal data in terms of data protection law is the Fitpass SRL(hereinafter also "we" or "Fitpass"). You can reach us like this:

Fitpass SRL

Str. ARH. IONESCU GRIGORE 63 Bucureşti sect 2

suport@fitpass.ro

0731 745 462

II. COLLECTION, PROCESSING AND USE OF PERSONAL DATA

1. PERSONAL DATA

Personal data are individual details about personal or factual circumstances of a specific or identifiable natural person. These are, for example, your name, your e-mail address or your phone numbers.

1.1 Security

We are committed to protecting Personal Data from loss, misuse, disclosure, alteration, unauthorized access, and destruction. Fitpass takes reasonable precautions to safeguard the confidentiality of Personal Data. We protect the security of your Personal Data during transmission to us by using Secure Sockets Layer (SSL) software, which encrypts the information you input.

2. COOKIES

Our offer causes the storage of cookies. Cookies are small encrypted files that are stored by websites for the purpose of logging and improving the usability of the website on computers or devices. Cookies enable website operators to recognize user preferences, diagnose technical issues, analyze developments and improve the overall user experience of their website by analyzing the data collected. For most browsers, you can choose to allow cookies to be stored or not. If no cookies are to be stored on your computer, set your browser settings before visiting our web pages in such a way that all cookies are rejected. In doing so, you should note that certain features of the website will stop working.

3. REGISTRATION / CUSTOMER ACCOUNT

If you register with us, your name, your email and your phone number by you will be saved by us. We set up a password-protected customer account, on which the stock data stored with us (name, account data, email and phone number) are saved and can be viewed by you.

The processing and storage of this data is required for the conclusion of a contract between us and you and its fulfillment. To send e-mails as part of the registration process, we use the Sparkpost e-mail service provider (see below, III 2.5).

4. DISTRIBUTION OF DATA

4a) If you check in with a partner, we will send your name and your customer number for identification purposes. Furthermore, the partner has the information about the check-in time. Partners are sports venue operators, fitness studios, other sports clubs or other service providers whose services you can use via us. The processing of this data is necessary for the fulfillment of our contract with you.

4b) In addition to the points mentioned in 4a), when you register as a corporate customer, you will obtain the required approval from you in order to provide the company with the information you need during the billing process. There are different types of contracts that your employer can choose in cooperation with us:

Version 1:

If your membership does not provide for an additional payment from your employer, but only includes a discount given by us, your employer will not receive any data from us. Your customer account is active immediately after logging in.

Version 2:

In the case of the additional payment of your employer to the membership, we transmit your first name and surname to your employer as well as the information whether you were active in the billing month, in other words you checked in.

Version 3:

In the case of a contract where your employer pays you for each visit, in addition to your first and last name, the number of visits in the billing month will also be reported, regardless of the time, classes or studios that were visited.

To verify whether your registration is a company-related person, we will send your first name and surname to your employer after registering with variant 2 and 3 and ask you for confirmation. Only after confirmation you will be activated for our service and can use your membership in full.

In the course of the registration we ask you in each case for the agreement of consent to all variants, in order to protect you, should your employer change during the cooperation with us into another kind of contract.

Please inform your employer on which contract basis the cooperation with us exists. If at any time you wish to withdraw your consent to the transmission of the data, you can do so at any time by terminating your membership to the next possible date.

5. PAYMENT

The data required for payment processing - for example your name, your email and your credit card number ("payment data") - will be transmitted to payment service providers commissioned by us. We do not store this data ourselves. Below you will find information about the payment providers we use.

5.1 BRAINTREE

For payment via PayPal we use the payment service provider Braintree, which is a company of PayPal (Europe) S.à.rl et Cie, SCA 22-24 Boulevard Royal, L-2449 Luxembourg ("PayPal"). PayPal may collect personal information such as credit card numbers when registering on the PayPal website. PayPal is solely responsible for the processing of this data. Use of the PayPal Service is fully subject to PayPal's Privacy Policy and Terms of Use. Braintree's privacy policy is identical to PayPal's. Details on privacy at Braintree can be found at https://www.paypal.com/us/webapps/mpp/ua/privacy-full.

6. CAMERA

Only if you agree to our app's access to the camera on your mobile phone can you use your camera to scan the QR code at check-in at our partners.

7. LOCATION SERVICE

If you allow your app to access your location, we'll be notified of your location. This is done exclusively to show you offers in your area and thus to fulfill the contract. The data will not be saved.

8. CONTACT

To contact us, you can send us an e-mail or write us on the website through the chat system.

For the chat system we use Chatra, a customer service playform of Roger Wilco LLC, Millen, White, Zelano & Branigan, Jeff Cohen 2200 Clarendon Blvd., Suite 1400A Arlington, VA 22201.

In this case, data necessary to answer your inquiry, such as name, first name, telephone number, e-mail address is collected via our website and stored by Chatra on their servers.

Chatra’s privacy policy is located here: https://chatra.io/privacy-policy/

You can also contact chatra here: info@chatra.io or 1-703-243-6333.


The information you provide when contacting us will only be saved in order to process the request and, if necessary, the following correspondence. The storage is justified by your consent.

9. NEWSLETTER

In order to send our newsletters, we use the provider SendinBlue, an offer from SendinBlue SAS, 55, rue d’Amsterdam 75008 Paris, France. The data stored during registration will be transmitted to SendinBlue SAS and stored there. To other third parties, the data entered during registration will not be transmitted. Furthermore, SendinBlue offers extensive analysis possibilities on how our newsletters are opened and used. These analyzes are group-related and are not used by us for individual evaluation. You can revoke your consent to the storage of the data and their use to send the newsletter at any time. The revocation can be made via a link in the newsletters themselves or by notification to the above contact option. For more information about privacy at SendinBlue, visit https://www.sendinblue.com/legal/privacypolicy/ .

10. AUTOMATED EMAILS

We send automated emails through our website to help you get the most out of our app and to notify you of important events, such as upcoming renewals, account activation or account deactivation.

You can unsubscribe anytime to the introductory emails by using the embedded link, but the emails related to your account activity are important for us to provide you our services. Once you stop using our services, you will stop receiving these emails.

In order to send these emails, we use te provider SparkPost, an offer from SparkPost, 9160 Guilford Road, Columbia, MD 21046, USA. We send your email to Sparkpost and it is stored on their servers. Furthermore, Sparkpost offers extensive analysis possibilities on how our emails are opened and used, including on an individual basis. You can revoke your consent to the storage of the data at any time by contacting us at suport@fitpass.ro. For more information about privacy at Sparkpost, visit https://www.sparkpost.com/policies/privacy/.


11. OTHER PROCESSES DUE TO AN AUTHORIZED INTEREST

If necessary, we process your data on the actual fulfillment of a contract concluded with you or a consent granted by you for the protection of legitimate interests of us or third parties, unless a balance in individual cases shows that your legitimate rights and freedoms, the protection of personal Data require, outweigh. These may include:

  • Examination and optimization of procedures for needs analysis and direct customer approach
  • Advertising or market and opinion research, as far as you have not objected to the use of your data
  • Asserting legal claims and defense in legal disputes
  • Ensuring our IT security and IT operations
  • Prevention and investigation of criminal offenses
  • Measures for business management and further development of services and products.

12. DURATION OF DATA STORAGE

If necessary, we process and store your personal data for the duration of our business relationship, which includes, for example, the initiation and execution of a contract. It should be noted that our business relationship is a continuing obligation, which is designed for a longer period.

In addition, we are subject to various storage and documentation obligations, which result, inter alia, from the Commercial Code,, the Tax Code.. The deadlines for storage and documentation specified there are up to ten years.

III. THE VISIT TO OUR PAGES

1. USE OF TRACKING TOOLS

In connection with our websites, we use technologies to evaluate information on the type and extent of use of our websites (so-called tracking tools). For web analysis we use the following services. If you disagree with the use of the data by the respective service provider, you can deactivate the web analysis. How such a deactivation can occur is described in the individual service. Most analytics services use cookies to collect non-personal information.

1.1 GOOGLE ANALYTICS

Our websites use Google Analytics, a web analytics service provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google"). Google Analytics uses cookies whose information about your use of our websites is usually transmitted to and stored by Google on servers in the United States. However, if IP anonymization is enabled on our websites, your IP address will be shortened by Google beforehand within member states of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. Google uses this information to evaluate your use of the Websites, to compile reports on website activities and to provide other services related to website activity and internet usage to the website operator. The IP address provided by Google Analytics as part of Google Analytics will not be merged with other Google data.

You may prevent the collection of the data (including your IP address) generated by the cookie and related to your use of our website from Google as well as the processing of this data by Google by downloading and installing the browser plug-in available under the following link (http://tools.google.com/dlpage/gaoptout?hl=de). For more information about privacy at Google Analytics, please visit https://www.google.com/intl/en/policies/privacy/.

1.2 GOOGLE TAG MANAGER

We also use Google Tag Manager. This service allows web page tags to be managed through a single interface. Google Tag Manager only implements tags. This means: no cookies are used and no personal data is collected. Google Tag Manager triggers other tags, which may collect data. However, Google Tag Manager does not access this data. If deactivated at the domain or cookie level, it will remain in effect for all tracking tags as far as they are implemented with the Google Tag Manager.

For more information about Google Tag Manager privacy, visit https://www.google.com/intl/en/policies/privacy/.

2.3 HOTJAR

We also use the analysis software Hotjar Ltd, Level 2, St Julian's Business Center, 3, Elia Zammit Street, St Julian's STJ 1000, Malta, Europe ("Hotjar"). It collects information about the use of cookies, including information about the IP address (in anonymous form), the geographical location (only country) and the way in which our websites are used. Hotjar also uses cookies to record login information on your device or computer. This will tell you whether a particular device has already visited our web pages, so you do not have to re-enter the login details every time you visit. Hotjar also uses cookies to determine if you have opted out of Hotjar tracking. Hotjar is committed to ensuring at all times

By visiting https://www.hotjar.com/opt-out and clicking on "Disable Hotjar" you can refuse the collection of your data by Hotjar when visiting our website at any time. For more information on privacy at Hotjar.com, visit https://www.hotjar.com/privacy.

1.4 FACEBOOK

Our websites use plugins from the social network facebook.com operated by Facebook Inc., 1601 S. California Ave., Palo Alto, CA 94304, USA ("Facebook") If the plugin is linked to the Facebook servers, the plugin will be displayed on the web page by notifying your browser, which will tell the Facebook server which of our web pages you are visiting Facebook, Facebook assigns this information to your personal Facebook user account.When using the plugin functions (eg clicking on the "Like" button, submitting a comment) this information will also be assigned to your Facebook account.which you can only prevent by logging out before using the plugin.

For more information about the collection and use of data by Facebook, about your rights and ways to protect your privacy, please refer to the privacy policy of Facebook at https://de-de.facebook.com/policy.php.

1.5 Optimizely

We use Optimizely, a service by Optimizely, Inc. 631 Howard Street, Suite 100, San Francisco, CA 94105 to test different variations of our website and see which ones perform better. You can view Optimizely’s privacy policy here: https://www.optimizely.com/privacy/

Optimizely works by setting a cookie on your computer in order to track your activity on the website and understand if the variation was successful. No personal information is collected or saved by Optimizely. If you wish to disable Optimizely on your browser, please visit the following link: https://www.optimizely.com/legal/opt-out/

1.6 Sparkpost and SendinBlue

We use the provider SparkPost to send automated emails, an offer from SparkPost, 9160 Guilford Road, Columbia, MD 21046, USA. We also use SendingBlue, an offer from SendinBlue SAS, 55, rue d’Amsterdam 75008 Paris, France.

Sparkpost and SendinBlue both use so-called web beacons in the majority of emails sent by them. Web beacons (also called ClearGIFs or counting pixels) are small graphics (about 1x1 large GIF files) that are used, among other things, on websites or in HTML e-mails in order to give website operators a better understanding of the Internet. the visitor's interaction with the website. Web beacons perform similar functions as cookies, but are unnoticeable to the user. In particular, web beacons can be used to obtain information about whether the e-mail has been opened and whether the user's system is capable of receiving HTML e-mails. No personal data is collected via the web beacon.

If you do not want to receive e-mail messages with web beacons, you can also receive your e-mails in text form (not in HTML format). Web beacons are used with cookies. You can therefore prevent the use of web beacons by preventing the installation of cookies by an appropriate setting of your browser software.

IV. OTHER LIABILITIES

Our offer contains links to the websites of external providers. The websites behind the links were checked at the time of the links. Your content will not be the subject of our offer. If we recognize that behind the links changed, illegal contents are, we will remove the links immediately after becoming aware.

V. YOUR RIGHTS

1. CHANGES, CORRECTIONS AND UPDATES, DELETION, REJECTION, INFORMATION

You can request free of charge information about which personal data has been stored about you to a reasonable extent for us.

You have the right to request the correction and updating of your data, unless you can do so yourself. In addition, you may have your personal information blocked and deleted if we are not subject to a statutory retention obligation. The deletion of the data also takes place if you have revoked your consent to the storage or if their storage is no longer permitted for legal reasons. Once you have given your consent to the collection, processing or use of your personal information, you may, at any time, e-mail us at suport@fitpass.ro or by post for future reference.

Fitpass SRL

Str. ARH. IONESCU GRIGORE 63 Bucureşti sect 2

suport@fitpass.ro

0731 745 462