Privacy Notice (UK GDPR)

Last updated: 18 August 2025

Who we are
Hampshire Fitness Centre (“HFC”, “we”, “us”). Contact: info@hampshirefitnesscentre.com… (Data queries: “Privacy”).

What we collect

• Identity & contact: name, email, phone, address.

• Account & booking data (classes, purchases, membership).

• Payment data (processed by Stripe/PayPal; we don’t store card numbers).

• Health information for safety (PAR-Q/waiver) — special category data.

• Usage data (site analytics, cookies).

• Media consent (optional).

Why we use your data (lawful bases)

• To provide memberships, classes and bookings (contract).

• Safety screening (PAR-Q/waiver) (consent; vital interests).

• Payments, billing, fraud prevention (legitimate interests; legal obligation).

• Emails about your account/booking (contract).

• Marketing (consent; you can opt out anytime).

Who processes your data
Squarespace (website/Member Areas), Squarespace Scheduling/Acuity (booking), Stripe/PayPal (payments), Google (Drive/Sheets/Analytics), Email provider. These may process outside the UK under Standard Contractual Clauses.

Retention

• PAR-Q/waiver: 3 years after last visit (minors: until age 21).

• Membership, orders & invoices: 6 years (tax).

• Analytics: per tool default. We delete earlier if no longer needed.

Your rights
Access, rectify, erase, restrict, portability, object, withdraw consent. Complaints: UK ICO. Contact: info@hampshirefitnesscentre.com

Security
We use HTTPS, account controls and reputable processors. No method is 100% secure, but we take appropriate measures.

Updates
We may update this notice; we’ll post changes here.