Privacy Policy

This privacy policy informs you about data processing by us and is, for example, available at https://www.jodierixfitness.co.uk/privacy-policy

1. General Information in Data Processing:

Data Controller, Scope of Data Processing; Your Rights; What type of information we collect ; Data Security;  Contacting us

1.1 Jodie Rix Fitness as a Data Controller

Data controller is Jodie Rix Fitness, registered in the UK as a Sole Trader.

1.2 Scope of Data Processing

Personal data are any information relating to an identified or identifiable natural person. Applicable legal provisions are in particular those of the regulation (EU) 2016/679 of the European Parliament and Council of 27 April 2016, repealing the directive 95/46/EC, on the protection of individuals with regard to the processing of personal data, on the free movement of such data ("General Data Protection Regulation", GDPR).

We as well as our external service partners process your data for the purpose of providing the Website and services. You provide data if this is necessary for the aforementioned purposes.

In the event you refrain from providing such data you may face legal disadvantages, for example, limited or no possibility of using our Website or no answer to your email sent to us.

1.3 Your Rights

In accordance with the statutory provisions, you as the data subject have the following rights:

  • the right to access,

  • the right to rectification or erasure,

  • the right to restriction of processing,

  • the right to data portability,

  • If you have provided us with your personal data on the basis of a consent, you could withdraw the consent at any time with effect for the future,

  • You may object to the processing of your personal data, if your personal data are processed for direct marketing purposes and/or on the basis of legitimate interests pursuant to Art. 6 (1) f GDPR insofar as there are reasons for this arising from your particular situation.

To exercise these rights named above you may contact us at any, for example via email to jodierixfitness@gmail.com

1.4 What type of information we collect

We receive, collect and store any information you enter on our website or provide us in any other way. In addition, we collect the Internet protocol (IP) address used to connect your computer to the Internet; login; e-mail address; password; computer and connection information and purchase history. We may use software tools to measure and collect session information, including page response times, length of visits to certain pages, page interaction information, and methods used to browse away from the page. We also collect personally identifiable information (including name and email address).

1.5 Data Security

For a best possible security of user data our service through the Website is provided via a secured SSL connection between your server and the browser. That means that the data shall be transferred in encrypted form. 

 

1.7 Data Processing by Third Parties / Data Processing outside the EU

We may use third party service providers that process your data for the purposes named in this privacy policy. We process your personal data by using third party providers in the EU and the USA, whereas data protection standards applicable in the EU are ensured. A list of the data processors processing data outside the EU and corresponding information is available by request via email to jodierixfitness@gmail.com

1.8 Contact Us

If you send us an e-mail or otherwise contact us, your details in this online form or request, including the contact data, name, email address and other data provided respectively, are processed by us in order to deal with your enquiry or to be able to contact you at a later time for follow up questions. These data are processed only on the basis of your consent (legal basis Art. 6 (1) a. GDPR) or on the basis of an initiating or existing business relationship with us (legal basis Art. 6 (1) b. GDPR).

2. Data processing on our website

Our company is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall. 

All direct payment gateways offered by Wix.com and used by our company adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

3. Cookies and Third Party Providers on the Website

3.1 Cookies

Our Website partly uses so-called cookies. Cookies do not cause any harm to your device and do not contain any viruses. Cookies serve the purpose of making our service more user-friendly, more effective and safer. Cookies are small text files which are stored on your device and in your browser.

Most of the cookies we use are so-called session cookies. After the end of the session these cookies will be deleted automatically. The session cookies are used in order to associate successive page requests with the individual users, who at the same time access our Website. Other cookies will be stored on your device until you delete them. These cookies enable us to recognise your browser during your next visit.

OPT-OUT: You can adjust your browser to notify you, before you receive a cookie or to decide to accept cookies on a case-by-case basis, to completely or partly exclude all incoming cookies and to activate the deletion of cookies automatically when the browser is closed. We would like to inform you that the usage and especially the convenience of usage without using any cookies may be limited.

3.2 Google Analytics

The service offered here uses Google Analytics, a web analytics tool offered by Google LLC, Mountain View, CA, USA ("Google"). This analysis service uses so-called "cookies". For analysis, text files will be stored on your device. The information stored in the corresponding files about the use of this website are generally transmitted and stored in Google server in the USA. As the IP anonymisation is active on this Website, your IP address will be shortened by Google within the member states of the European Union (EU). This information will be used to evaluate your use of the services offered here and enable the operator of this website to analyse your website activity and provide other services associated with the website service. The IP address transmitted from your browser, as part of Google Analytics will not be merged with other data from Google.

OPT-OUT: Adjusting the settings of your browser Platform can prevent the use of cookies. In this case, it may be possible that the functions of the service offered here cannot be used in its entirety. Furthermore, it is possible to prevent the acquisition and processing of data generated by the "cookies" in relation to the use of this website, by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaopTermst?hl=de

We point out that an automated decision making ("profiling") can take place when integrating Google and an existing Google account.

 

OPT-OUT: https://adssettings.google.com/authenticated

Google LLC, USA is certified according to the EU-US agreement "Privacy Shield". The "Privacy Shield" is an agreement between the European Union (EU) and the USA to ensure compliance with European data protection standards in the USA.

 

3.3 Google Fonts

Our Website uses the "Google Fonts" service of Google LLC, Mountain View, CA, USA to integrate and display text on the Website. For this purpose Google may process your data (including the IP address) on servers located in the USA.

When the IP address is processed this is based on our legitimate interests of technical functionality of the Website based on Art. 6 (1) f. GDPR or TMG.

Google LLC is certified according to the "Privacy Shield" agreement between the European Union and the USA and guarantees compliance with applicable European data protection regulations (see: https://www.privacyshield.gov/). You can also find more information in Google's privacy policy: services.google.com/sitestats/en.html

3.4 Google Tag Manager

Our Website uses the Google Tag Manager by by Google LLC, Mountain View, CA, USA. Google Tag Manager is a solution that allows marketers to manage website tags through a single interface. The tool Google Tag Manager itself (which implements the tags) is a cookieless domain and does not collect any personal data. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If deactivation has been made at the domain or cookie level, it will remain in effect for all tracking tags implemented with Google Tag Manager. You can also find more information in Google's privacy policy: services.google.com/sitestats/en.html

 

3.5 Hotjar

In order to improve the user experience on our website, we use the software Hotjar (http://www.hotjar.com, 3 Lyons range, 20 Bisazza Street, Sliema SLM 1640, Malta, Europe). By using Hotjar we can measure and evaluate the user behaviour (mouse movements, clicks, scrolling etc.) on our internet pages. In order to collect data, Hotjar uses cookies on users's devices and can store data from users such as browser information, operating system, time on the site, etc. More information about data processing by Hotjar can be found here: https://www.hotjar.com/legal/policies/privacy

 

3.6 Stripe

We use Stripe provided by Stripe, Inc. (510 Townsend Street San Francisco, CA 94103, USA) („Stripe“) to process online payments. Your credit card or debit card information is provided directly to our third-party payment processor, Stripe, to process the payments. The payment information is transmitted directly via an encrypted connection to Stripe. According to Stripe, it uses, processes and stores your Personal Data and payment information in accordance with Stripe’s privacy policy available at stripe.com/us/privacy. To show compliance with EU data protection standards Stripe is certified according to the EU-US-Privacy-Shield (see: https://www.privacyshield.gov). We have concluded a Data Processing Agreement (DPA) with Stripe.. The legal basis for our use of Stripe is Art. 6(1) Sentence 1(f) GDPR.

3.7 Integration of Services by Third Parties

When using this online service, contents of third parties, like for instance, links to Instagram, YouTube videos, map material provided by Google Map, RSS feeds or graphics are integrated from other websites. This always requires that the providers of this content ("Third Party Providers") use the IP address. Without this IP address these Third Party Providers would not be able to send the content to your browser. Consequently, the IP address is required in order to display the content. We make every effort to only use such content by Third Party Providers which use the IP address for the delivery of content only.

Such data are used in order to guarantee the stability and operational security of the websites of the Third Party Providers as well as for the purpose of optimizing our services via quality assurance. If the IP address is stored such processing is based on Art. 6 (1) b., c. GDPR, Art. 6 (1) f. GDPR with the legitimate interest of quality assurance.

In the event of displayed content by Third Party Providers your data may be processed outside the EU.

4. Data Processing on our Social Media Pages

We operate pages on the following social media channels:

 

When you visit our social media pages, data is processed both by us and by the responsible social media provider as the responsible party.

The respective provider of social media assumes the data protection obligations towards you as the user, such as information on data processing, and is the contact person for your rights. This follows from the fact that such provider has direct access to the relevant information on the social media page and the processing of your data. However, you are also welcome to contact us if this should become necessary and we will then forward the request to them.

When using Facebook, Instagram, Twitter or LinkedIn data may also be processed outside the EU. The US companies of Facebook/Instagram, Twitter and LinkedIn are certified in accordance with the EU-US Privacy Shield agreement, which guarantees compliance with data protection regulations in the EU. For more information please refer to: https://www.privacyshield.gov

4.1 Data Processing and Legal Basis

With our social media pages, we can communicate with you and provide you with interesting information. We may receive further data from you through your comments, shared images, messages and reactions, which we then process to answer or communicate with you. If you use social media on several end devices, a cross-device analysis of the data can take place.

Furthermore, the providers of social media pages may also use cookies and tracking technologies to analyse and improve their services.

Data processing takes place with your consent or for the purpose of answering your enquiry (Art. 6 (1) a, b GDPR) or on the basis of legitimate interests in improving the services and presentation to the outside world (Art. 6 (1) f GDPR).

4.2 Facebook

Facebook and we use the Page Insights function to process statistical data from users of our Facebook pages (see also the agreement at: https://www.facebook.com/legal/terms/page_controller_addendum). This involves the processing of data in the form of so-called 'page insights', which are described in more detail at https://www.facebook.com/business/a/page/page-insights.

Evaluations and statistics are generated in the form of page insights from the usage data of the Facebook pages, which support us in improving our marketing activities and our external presence. We may also learn about users and their behavior who interact with or use our Facebook Pages to display relevant content and develop features that may be of interest to them. These page statistics show us, for example, which people from certain target groups interact most with our Facebook Page or which content on the Facebook Page was visited, shared or licked when and how often. When classifying people into target groups, demographic data or data about the location of a person is also included in order to place targeted advertisements with these people. If you use Facebook on several end devices, a cross-device analysis of the data can take place. The data collected in this way is statistically processed and usually anonymous, i.e. we cannot establish any reference to the individual person.

Information on these page insights and data processing can be found, for example, in Facebook's data protection statement at https://www.facebook.com/policy.php or at https://www.facebook.com/business/a/page/page-insights.

Facebook also uses cookies and storage technologies. More information can be found here: https://www.facebook.com/policies/cookies/

As a Facebook user, you can at any time influence how your user behavior is recorded when you visit Facebook pages. To do this, you can manage the settings for advertising preferences in your Facebook account or at https://www.facebook.com/ads/preferences, or the Facebook settings in your account or at https://www.facebook.com/settings. Facebook also provides opportunities to contact or exercise rights at https://www.facebook.com/help/contact/2061665240770586 or https://www.facebook.com/help/contact/308592359910928.

 

4.3 Instagram

When using Instagram and you have an account there, Instagram can assign your activities to your profiles there. Instagram and we use the Instagram Insights function to process statistical data from users of our Instagram pages (see also for Facebook which is connected to the provider of Instagram the agreement at: https://www.facebook.com/legal/terms/page_controller_addendum). This involves the processing of data in the form of so-called 'Instagram Insights' which are described in more detail at https://help.instagram.com/788388387972460?helpref=faq_content.

Evaluations and statistics are generated in the form of Instagram Insights from the usage data of the Instagram pages, which support us in improving our marketing activities and our external presence. Instagram Insights lets us learn more about our users and the performance of our content with you as audience. For this purpose Instagram provides us with statistics on specific posts and stories created to find out how users interacted with them. When classifying people into target groups, demographic data or data about the location of a person is also included in order to place targeted advertisements with these people. If you use Instagram on several end devices, a cross-device analysis of the data can take place. The data collected in this way is statistically processed and usually anonymous, i.e. we cannot establish any reference to the individual person.

Instagram also uses cookies and similar technologies. For more information please refer to: http://instagram.com/about/legal/privacy/

As an Instagram user, you can at any time influence how your user behavior is recorded when you visit Instagram pages. To do this, you can manage the settings for advertising preferences in your Instagram account or under https://www.instagram.com/accounts/privacy_and_security/. Instagram also provides opportunities to contact or exercise rights at https://help.instagram.com/contact/1845713985721890 or http://instagram.com/about/legal/privacy/.

 

4.4 Twitter

When you use Twitter, even if you're just looking at Tweets, Twitter receives some personal information from you like the type of device you're using and your IP address. Twitter uses this information for things like showing you more relevant Tweets, people to follow, events, and ads, as described in detail in the Twitter privacy policy. This may also involve providing your payment information to Twitter to use their paid services.

Twitter also uses cookies and similar technologies. For more information please refer to https://help.twitter.com/en/rules-and-policies/twitter-cookies.

As Twitter user, you can at any time influence how your user behavior is recorded when you visit Twitter pages. To do this, you can manage the settings for advertising preferences in your Twitter account or under https://twitter.com/personalization or https://twitter.com/de/privacy#overlay-chapter2.10.1 or without an account under https://pscp.tv/account/settings. Twitter also provides opportunities to contact or exercise rights at https://help.twitter.com/forms/privacy.

4.5 LinkedIn

LinkedIn and we may use your data for careers and recruiting services for our LinkedIn pages (see also the data processing agreement: https://legal.linkedin.com/dpa). Data on how you use LinkedIn may be shared with us and certain third parties as described in detail here: https://www.linkedin.com/legal/privacy-policy#share

LinkedIn also uses cookies and similar technologies as set forth here: https://www.linkedin.com/legal/cookie_policy

As LinkedIn user you can at any time influence how your user behavior is recorded when you visit LinkedIn pages. To do this, you can manage the advertising and general settings in your account under https://www.linkedin.com/psettings/privacy. LinkedIn also provides opportunities to contact and exercise rights under https://www.linkedin.com/legal/privacy-policyhttps://www.linkedin.com/legal/cookie-policy and for individual messages online via https://www.linkedin.com/help/linkedin/ask/TSO-DPO.

5. Questions?

For further information you may contact us any time, for example via email to jodierixfitness.co.uk