Privacy Policy
Effective Date: September 11, 2025
PaceFit respects your privacy. This Privacy Policy explains how we collect, use, and protect your information when you use our fitness club membership app.
How We Use Your Information
We use your data to:
- Authenticate and maintain your membership
- Process payments and manage credits
- Schedule and track workout sessions
- Display club news and announcements
- Provide customer support and improve services
- Prevent fraud and enforce our terms
Legal Basis for Processing
We process your data based on:
- Contract performance: membership services
- Legitimate interests: security, service improvement
- Your consent: where required by law
- Legal obligations: compliance with authorities
Information We Collect
Account & Membership Data
- Full name, email address, member ID
- Role (member/coach/admin) and account status
- Credits balance and account creation date
Payment & Billing History
- Monthly membership payment records
- Payment amounts, dates, methods, and status
- Payment history to determine current status
Store Orders & Credits
- In-app store orders (products, quantities, prices)
- Credit transactions (top-ups, purchases, refunds)
- Order status and transaction history
Training Sessions & Workouts
- Scheduled and completed workout sessions
- Coach assignments, session times, and notes
- Exercise data (reps, duration, weights) for progress tracking
App Permissions
This app only requests INTERNET and ACCESS_NETWORK_STATE permissions to connect to our servers. We do not access location, contacts, storage, camera, microphone, SMS, or advertising identifiers.
Your Rights
Data Subject Rights
Subject to applicable laws, you may:
- Access a copy of your personal information
- Update or correct inaccurate data
- Request account deletion
- Object to certain data processing
- Export your data in a standard format
Contact us to exercise these rights. Identity verification may be required.
Account Deletion
You can request account deletion through the app or by contacting support. For security, we may require verification (member ID and password). After deletion, we remove or anonymize personal data except what's legally required (payment records may be retained for compliance).
Data Retention
We retain data for:
- Account data: While your membership is active
- Payment records: As required by tax and accounting laws
- Session logs: For operational needs or until deletion requested
Unused data is deleted or anonymized within reasonable timeframes
Security & Privacy
Data Security
We protect your data with:
- Encrypted transport (HTTPS) to our servers
- Access controls and role-based permissions
- Secure password hashing and authentication
- Regular security updates and monitoring
Data Sharing
We do not sell your data. We may share information with:
- Club operators and authorized staff (access-controlled)
- Service providers for backend infrastructure (contractually protected)
- Authorities when required by law or to protect user safety
No Advertising Policy
We do not use third-party advertising SDKs or display ads. All network communications are strictly for membership features: payments, orders, sessions, and news.
Children's Privacy
Our app is intended for club members and is not directed to children under 13. If a child has provided personal data, please contact us immediately.
Contact Us
For questions, privacy requests, or complaints:
Email: support@clubpace.fit
Contact Form: Use our contact page
GDPR & International Rights
European Union (GDPR) Users:
- Right of access - obtain confirmation of processing and access to personal data
- Right to rectification - correct inaccurate or incomplete data
- Right to erasure ("right to be forgotten") - request deletion in specific circumstances
- Right to restrict processing - limit how we use your data
- Right to data portability - receive your data in a structured format
- Right to object - object to processing based on legitimate interests
- Rights related to automated decision making and profiling
Other International Users:
- Similar rights may apply under local privacy laws (CCPA, PIPEDA, etc.)
- We comply with applicable data protection regulations in your jurisdiction
- Cross-border data transfers are protected by appropriate safeguards
Legal Basis for Processing (GDPR)
Under GDPR, we process personal data based on:
- Article 6(1)(b) - Contract: Processing necessary for membership services
- Article 6(1)(c) - Legal Obligation: Tax records, payment compliance
- Article 6(1)(f) - Legitimate Interest: Security, fraud prevention, service improvement
- Article 6(1)(a) - Consent: Marketing communications (where required)
You have the right to withdraw consent at any time where processing is based on consent.
Data Protection Officer
For GDPR-related inquiries or to exercise your rights, you may contact our Data Protection Officer:
Email: dpo@clubpace.fit
Response Time: We will respond within 30 days (GDPR requirement)
You also have the right to lodge a complaint with your local supervisory authority.
International Data Transfers
When transferring data outside your country, we ensure adequate protection through:
- EU Standard Contractual Clauses (SCCs) for GDPR compliance
- Adequacy decisions by relevant authorities
- Binding Corporate Rules where applicable
- Certification schemes and approved codes of conduct
Data transfers comply with applicable laws in your jurisdiction.
Policy Updates
We may update this policy to reflect service changes or legal requirements. Updates will be posted in-app with a revised effective date. Significant changes will be announced prominently.
For material changes affecting GDPR or other privacy rights, we will provide appropriate notice as required by applicable law.