Privacy Policy

Introduction

staticehll B.V. ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with us.

As a company operating in the Netherlands, we comply with the General Data Protection Regulation (GDPR) and Dutch data protection laws. staticehll acts as the Data Controller for the personal information we collect and process.

Data Collection

The data we collect includes personal information that you voluntarily provide to us when you register for our services, make inquiries, or interact with our website. This information may include:

• Personal identification information (name, email address, phone number, address)
• Health and fitness information (fitness goals, medical conditions, dietary restrictions)
• Payment information (billing address, payment method details)
• Communication records (emails, messages, consultation notes)
• Website usage data (IP address, browser type, pages visited, time spent)
• Cookies and tracking technologies data

How We Use Your Information

We explain how we use your information to provide and improve our services, communicate with you, and ensure the best possible experience. The use of your data is based on the following legal grounds under GDPR:

• Contract Performance: To provide fitness and nutrition services you've requested
• Legitimate Interest: To improve our services and communicate about relevant offerings
• Consent: For marketing communications and non-essential cookies
• Legal Obligation: To comply with applicable laws and regulations

Specifically, we use your information to:

• Provide personalised fitness and nutrition services
• Schedule appointments and manage your account
• Process payments and manage billing
• Communicate about your programs and appointments
• Send relevant health and fitness information
• Improve our services and website functionality
• Comply with legal and regulatory requirements

Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

• With your explicit consent
• With service providers who assist in delivering our services (payment processors, scheduling software)
• When required by law or to protect our legal rights
• In connection with a business transfer or merger (with appropriate safeguards)

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Generally:

• Client records: Retained for 7 years after the end of our service relationship
• Health information: Retained for 15 years as required by Dutch healthcare regulations
• Marketing communications: Until you unsubscribe or withdraw consent
• Website analytics: Anonymised after 26 months

Your Rights Under GDPR

As a data subject under GDPR, you have the following rights regarding your personal information:

• Right of Access: Request a copy of the personal information we hold about you
• Right of Rectification: Request correction of inaccurate or incomplete information
• Right of Erasure: Request deletion of your personal information under certain circumstances
• Right to Restrict Processing: Request limitation of how we process your information
• Right to Data Portability: Request transfer of your data to another service provider
• Right to Object: Object to processing based on legitimate interests or for marketing purposes
• Right to Withdraw Consent: Withdraw consent for processing where consent is the legal basis

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. For detailed information about our cookie usage, please refer to our Cookie Policy.

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and staff training
• Secure payment processing
• Regular data backups with security measures

International Data Transfers

Your personal information is primarily processed within the European Union. If we need to transfer your data outside the EU, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission.

Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

Contact Information

If you have questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding your personal information, please reach out to us:

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.