fbpx

Who Are We and What Do We Do?

We are FITsociety B.V. We respect your privacy and personal data, but sometimes we need to process your Personal Data. In this statement, you will read which Personal Data we use and why. You will also learn how we store, protect, and process your Personal Data.

This privacy policy applies to our website www.fitsociety.nl (the Website), our online application FITsociety (the App), and the services we offer (the Services). We handle your Personal Data in accordance with the General Data Protection Regulation (the GDPR) and other relevant legislation on the protection of Personal Data, such as the Telecommunications Act for the use of cookies. Collectively, we refer to all the legislation mentioned here as the Relevant Legislation.

Under 16 Years of Age

If you are under 16 years old, you need permission from your parents or legal guardian to use our Website, App, and Services.

Protection of Personal and Sensitive User Data

We take the protection of your personal and sensitive data very seriously. All data we collect is encrypted both during transmission and at rest to prevent unauthorized access, modification, loss, or destruction. We use advanced security measures such as encryption and access control to ensure that your data remains secure. Additionally, we regularly conduct security audits to protect our systems against unauthorized or unlawful access.

Processing and Protection of Sensitive User Data

  1. Access to Sensitive User Data: We collect and process sensitive user data, such as health data, only after obtaining explicit consent from the user.
  2. Collection, Use, and Sharing of Data: Sensitive data is collected solely to improve the functionality of our application. This data is not shared with third parties, except when necessary for the operation of the app, as required by law, or with the user’s explicit consent.
  3. Consistency with App Store Data Safety Labels: Our privacy policy is consistent with the data safety labels as displayed in both the Google Play Store and the Apple App Store. We ensure that the information we provide is consistent with these labels.
  4. Use of Data: Sensitive data, including data collected via HealthKit or Health Connect, is not used for advertising purposes and is solely used to improve users’ health and well-being.
  5. User Consent: Data is collected and processed only after obtaining explicit consent from the user. Users can withdraw their consent at any time.
  6. Data Protection: All sensitive user data is protected against unauthorized or unlawful access, destruction, loss, modification, or disclosure through advanced security measures such as encryption and access control.
  7. Data Deletion: Users have the right to delete their data at any time through the application’s settings.
  8. External Data Sharing: HealthKit and Health Connect data are not shared with third parties without the user’s explicit consent, except when legally required.

Personal Data

To offer our Website, App, and Services, we process Personal Data. The term Personal Data refers to information that can directly or indirectly identify you as an individual. This definition is in line with the Relevant Legislation.

We also process special categories of Personal Data, such as data revealing racial or ethnic origin, biometric data, and health data. We process these special categories of Personal Data only with your explicit consent.

Who is the Controller of Your Personal Data?

Fitsociety is responsible for processing your Personal Data within the meaning of the Relevant Legislation. At the bottom of this privacy policy, you will find our contact details and the contact details of our data protection officer.

Which Personal Data Do We Process and For What Purposes?

To use our Website, App, and Services, we need some of your Personal Data. We are allowed to process your Personal Data because we comply with the Relevant Legislation. We only use your Personal Data when necessary for the performance of our agreement, when required to comply with a legal obligation, when we have a legitimate interest, or when you have given us consent.

We will only use your Personal Data for the purposes listed below or for a purpose closely related to them. Your Personal Data will never be used in an unexpected manner.

(Personal) Data Purpose(s) Legal Basis
Customers with an account
Contact Information: First and last name, email address. Providing this Personal Data is mandatory if you wish to create an account with us, so that we can deliver our Service. We use this data to:

  • Create a personal account for you on our platform;
  • Address you correctly in correspondence;
  • Contact you;
  • Send you our newsletter. You can always unsubscribe from the newsletter.
  • Performance of the agreement
  • Legitimate interest
Personal Account Information: Name, date of birth, place of residence, profile picture. To make the most of our Service, you can choose to fully complete your profile. We use this data to:

  • Create a personal account for you on our platform.
Consent
Fit Passport: Training goal, years active, number of training days per week, height, weight, target weight, body fat percentage, dietary intake, BMI, allergies, sleep tracking, calorie consumption, information regarding type, frequency, and intensity of physical activities, fluid measurements, physical measurements, gender, occupation, and shoe size. It is your choice to complete your profile with this Personal Data. With a fully completed profile, you can get the most out of our Service. We use this data to:

  • Enable you to create and maintain a personalized training and/or diet plan, either alone or with a sports provider;
  • Coach you optimally to achieve your fitness goals;
  • Maintain your personal fitness diary.
Consent
Location Data: IP address and GPS coordinates. You can give permission to share your location through your web browser or in the App. We use this data to:

  • Connect you with a sports provider near you.
Consent
Files: Photos, media, and other files. You decide whether to provide this data. We use this data to:

  • Allow you, either alone or with your sports provider, to track the progress of your training and diet plan.
Consent
Chat Messages: First and last name, and chat content such as photos, media, and other files. You decide whether to use this Service. We use this data to:

  • Connect you easily with your sports provider;
  • Enable your sports provider to coach you optimally by tracking and reviewing your contact moments and progress towards your fitness goals.
Consent
Payment Data:
Browsing Data: Browsing behavior on our Website. We use this data to:

  • Optimize the functioning of our Website and App and make improvements where necessary.
Legitimate interest
Review of App or Sports Provider: First and last name, and review. You decide whether to provide a review or feedback. We use this data to:

  • Assess the quality of the sports provider.
Consent
Marketing Research and/or Competitions: First and last name, email address. Participation in market research or competitions is voluntary. We use this data to:

  • Conduct market research;
  • Organize a competition and announce the winner.
Consent
If you leave a comment through our comment form on the Website
Contact Information: First and last name, email address. We use this data to:

  • Contact you when you leave a comment under a blog or news article.
Consent

Why Are We Allowed to Process Personal Data?

There are different legal bases under the Relevant Legislation on which we are allowed to process your Personal Data.

  1. Performance of the agreement: Some Personal Data, such as contact information, is necessary to execute the agreement we have with you.
  2. Consent: Some Personal Data, such as health data, is necessary to make optimal use of our Services. We only process this data if you voluntarily and freely provide it to us. The processing is therefore done with your consent.
  3. Legitimate interest: The processing of some Personal Data is necessary for the protection of our legitimate interests.

How Do We Obtain Your Personal Data?

Personal Data received directly from you:

We receive Personal Data directly from you when you create an account on our App or leave a comment on our Website.

Personal Data from third parties provided by you:

It is also possible that you provide us with Personal Data from other individuals. Please note that it is your responsibility to ensure that the person has agreed to you providing their Personal Data.

Automated Decision-Making

We do not use automated decision-making or profiling.

Security

We do everything possible to protect your Personal Data against loss, destruction, use, modification, or unauthorized disclosure by unauthorized individuals. Consequently, those who have no business with your Personal Data cannot access it. We store your Personal Data on secure servers located in Digital Ocean in the Netherlands. Additionally, we use the following security measures:

  • Encryption of digital files containing personal data;
  • Securing network connections with Secure Socket Layer (SSL) or similar technology;
  • Data security in accordance with the ISO 27001 standard;
  • Access to the data is restricted to persons who need the data.

Retention Period

We do not retain your Personal Data longer than necessary for the purposes described earlier. We delete your Personal Data as soon as it is no longer needed for the purposes for which we obtained it. We will also delete all your Personal Data stored under your account when you delete your account or send us an email requesting us to delete your Personal Data.

With Whom Do We Share Your Personal Data?

Processors

It may happen that other parties receive your Personal Data from us. We enter into a data processing agreement with these parties, agreeing that they will handle your Personal Data carefully. They only receive the Personal Data necessary to perform their service. These parties will only use your Personal Data in accordance with our instructions and not for their own purposes. We may share your Personal Data with service providers for data storage, billing, accounting, messaging service application, and newsletter distribution. These parties are “processors” within the meaning of the Relevant Legislation.

Third Parties

We share your Personal Data with other parties that are not processors. We agree with these parties that they will handle your Personal Data carefully. They will only use the Personal Data in accordance with the purpose for which we received your Personal Data.

We share your Personal Data with the sports provider you wish to connect with through our App. For questions about how the sports provider handles your Personal Data, you can contact the respective sports provider directly or consult their privacy policy.

If we have a legal obligation to share your Personal Data, we will do so. This is the case, for example, if the police request your Personal Data from us.

Transfers

We will only process your Personal Data within the European Union. We will only process your Personal Data outside the European Union if that country offers an adequate level of protection for your Personal Data.

Without your consent, we will never transfer your Personal Data to other countries or parties than those mentioned above.

Links

Our Website and App may contain links to other websites. We are not responsible for the content or privacy protection of these websites. We, therefore, advise you to always read the privacy policy of the relevant website.

Cookies

A cookie is a small text file sent from a website’s server to your browser. The browser then stores the file on your device. Your device is assigned a unique number, which allows our site to recognize the device later.

We use functional cookies and analytical cookies on our Website. We use functional cookies to ensure the Website functions correctly and to store your Personal Data when you create an account. An analytical cookie is used to improve the Website and provide information that is interesting and important to each website visitor. We use Google Analytics for this purpose. We have ensured that Google Analytics is set up in a privacy-friendly manner, protecting your Personal Data as much as possible.

You can always delete or disable cookies yourself via your browser settings. No cookies will be stored if you visit our Website. However, please note that our Website may function less optimally without cookies.

Changes to the Privacy Policy

We may update this privacy policy. If we make significant changes to the privacy policy, we will post a notification on our Website and in our App along with the new privacy policy. We will notify users registered with their email address of any changes. If you are not registered as a user, we recommend that you regularly consult the Website and this statement.

Your Rights

You have the following rights:

  • You may request access to your data;
  • You may request correction, restriction, or deletion of your data. In the event of fraud, non-payment, or other unlawful acts, we may retain some of your data in a register or on a blacklist;
  • You may request a copy of your data. We can also transfer this copy to another party at your request, so you don’t have to do this yourself;
  • You can object to the processing of your data;
  • You can file a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we are processing your data unlawfully;
  • You may withdraw your consent to process your data at any time. From the moment you withdraw your consent, we may no longer process your data.

To exercise the above rights or in case of questions, comments, or concerns about how we process your Personal Data, you can send an email to [email protected].

Contact Details

FITsociety B.V.
Zadelmakerstraat 22 B
1991JE Velserbroek
Website: www.fitsociety.nl
KVK: 87123487
VAT: NL864210115B01
Data Protection Officer: Mr. M.S. Wessels

Last updated: August 16, 2024