In May 2018, a new European law called the General Data Protection Regulation (GDPR) became law. The purpose of this law is to give people more control over how organisations use their data.
This web page explains how Northants Pilates collects data and what we do with it.
What data is being collected?
Data is collected through our website or other communication channels such as email or phone.
Depending on our relationship with you, this could include items such as your email address, phone number/s via your initial business enquiry, contact log.
Then on joining classes, address, date of birth, emergency contact details, and with our Health Questionnaire - your health and wellbeing and suitability to attend our Pilates classes, Group Reformer Classes or One to One Tuition.
Who is collecting the data?
The data is collected by Northants Pilates which is a trading name for Pilates Face & Body Limited with Karen Grinter as the sole director.
Will the data be shared with any third parties?
There may be circumstances during any business relationship where there is a need to share information. This will only be done with your explicit permission and only for as long as is necessary.
3rd party tools are used as part of our day-to-day business which may mean that your information will pass through their systems. Below is a list of these tools along with a link to their GDPR compliance statement (where applicable);
Squarespace hosts our website. The website is secured by an SSL certificate issued by Let's Encrypt Authority. Gmail is our email provider. Act is our database where we store your contact information.
GoTeamup is our online booking system and via GoTeamup we use Go Cardless and Stripe for transactions. All three of these businesses are fully compliant with the new GDPR Act. Mailchimp and Act are our emarketing providers and again these companies are fully compliant with the new GDPR act.
How will the information be used?
We use your contact details to send you information about our classes, new course dates and other Pilates related information.
Once in our classes we use the Health Questionnaire to ensure we are aware of your health and well-being and plan our classes accordingly. This information is shared with the Northants Pilates teachers to ensure we teach at a suitable level for your needs.
No data is shared with any third party unless there is a need with a health professional. This will only be done with your full agreement.
Upon leaving our classes any physical paper based forms are stored in a locked filing cabinet for 7 years. Then we shred it. Or it’s stored on your account on our Online Booking system.
How long will the data be stored for?
The data will be stored in line with UK tax laws and if attended our classes or had any private tuition then in line with insurance requirements.
Your right to be forgotten
You can at any time contact us and ask us to remove your information from our database, which we can do easily for anyone who have never attended any classes or had any financial transactions with us. For anyone who has attended classes or private tuition, we can remove your details so that nothing further is sent to you regarding our class or workshop offerings, other information will be kept again in line with UK tax laws and insurance purposes until we can legitimately shred or delete any records.
What rights does the data subject have?
You have the right to view the information we hold. If you wish to do so, please contact Karen at email@example.com/ 01933 413700
How can the data subject raise a complaint?
If you have any concerns about how we are processing your data, then please contact Karen at firstname.lastname@example.org/ 01933 4137 00