Privacy Policy

Welcome

We take your privacy and data security very seriously. We ensure that we use your data in accordance with data protection laws, in particular, the EU General Data Protection Regulation (commonly referred to as “GDPR”). The following information is designed to ensure that you understand how and why we obtain, store and process data about you.

This Privacy Policy Agreement (“Agreement”) is a legal agreement between Pumponomics Limited (“Pumponomics”, “we”, “us”) and any person (“user”, “you”, or “your”) who uses the Pumponomics mobile app (our “App”) which is available via the Apple App Store for iOS devices and Google Play Store for Android devices, pumponomics.com (our “Website”), or any other service that we offer, all collectively referred to as our Services.

By using our Services, you are agreeing to the terms of this Agreement so please read through carefully. We may update this policy from time to time by publishing a new version on our Website so please do check this page occasionally to ensure you are happy with any changes to this policy.

For further clarification on any of the points outlined in this Agreement, please get in touch with us by sending an email to [email protected] before using our Services.

What Information We Collect & Why

Personal Information is the term we use to describe information that we may collect which can be used to personally identify a person.

We collect data from you when we request it, or we may collect data automatically when you use one of our Services for the sole purpose of providing, maintaining and improving the quality of our service to you.

We may collect data from you in the following circumstances:

  1. When you provide information to us via the contact form of our ‘Contact Us’ page of our Website or when signing up to our newsletter (“Contact Data”)
  2. When you create an account with us via our App (“User Profile Data”)
  3. When you record any statistics within our App (“User Statistics Data”)
  4. When you visit our Website (“Website Data”)

Contact Data

If you access one of our Services, we may collect the following information from you in order to contact you, some of which is Personal Information:

  • First and last name
  • Email address

We will collect this information for the following purposes:

  • To contact you in the event that you have sent a message to us through a contact form
  • To sign you up to our newsletter if you have requested/provided consent for us to do so
  • To remain in contact with you relating to any transactions you enter into with us

User Profile Data

If you access one of our Services, we may collect the following information from you in addition to Contact Data in order to create your account profile, some of which is Personal Information:

  • Username and password
  • Fitness Level and Goal
  • Gender
  • Age

We will collect this information for the following purposes:

  • To create tailored workout plans for you
  • To provide customised content such as video tutorials for you
  • To generally ensure that you receive a customised experience with us

User Statistics Data

If you access one of our services, we may collect the following information from you to track your progress, some of which is Personal Information:

  • Weight
  • Height
  • BMI
  • Body Fat Percentage

We will collect this information for the following purposes:

  • To help you track your progress
  • To provide an extra level of tailoring for your workout plans

Website Data

Website Data may include your IP address, email address, browser type and version, location, the source of referral, length of visit, pages you view, search queries you make and general use of our Website. We may process Website Data to analyse access to and use of our Website. We do this in order to monitor, track and improve our Website and the services we provide. We use Website Data collected to maintain accurate internal records of our engagement our members and anyone who visits our Website or App. These records impact our business activities and decision-making. We may also use Website Data to engage with our members or visitors in the future, for example to market our services and/or provide information to them by email or otherwise.

Data Security

All personal data sent by you, including your payment information, is always encrypted and transmitted using the generally accepted, proven and secure SSL (Secure Socket Layer) standard. A secure SSL connection can be identified in the address bar of your web browser by a ‘https://’ prefix in the website URL, or with a lock icon, which indicates that the website is secured with a SSL certificate.

Disclosure of Your Information

We are permitted to disclose your information in the following cases:

  • If we want to sell our business then we can disclose the information to the potential buyer.
  • We can disclose the information if we have a legal obligation to do so, or in order to protect other people’s property, safety or rights.
  • We can exchange information with others to protect against fraud, credit risks, or other similar business risks where it is in our or your vital interests to do so.

We use third parties to store personal data (“Third Party Data Processors”). Where any of your data is required for such a purpose, we will take all reasonable steps to ensure that your data will be handled safely, securely, and in accordance with your rights, our obligations, and the obligations of the Third Party Data Processors under GDPR and the law. However, we cannot control the data protection policies of Third Party Data Partners.

The Third Party Data processors that we use are:

  • Communication: SendGrid and Mailchimp
  • Application Hosting: Google Cloud Platform and Heroku

International Transfers of Data

The information storage facilities of our web hosting or mobile data hosting services, and of some of our Third Party Data Processors are located outside of the European Economic (“EEA”), such as in the US. Based on a decision of the European Commission on the adequacy of these countries for the purpose of storing personal data, each of these countries will be protected by appropriate safeguards, such as the use of standard data protection clauses approved or adopted by the European Commission.

Whilst we make all reasonable efforts to ensure our Third Party Data Processors comply with the standards of the GDPR, you acknowledge that we cannot control use of such personal data beyond our reasonable control.

How Long We Store Your Data

For our company records, we store data in relation to any financial transaction between you and us indefinitely. Any other personal information is stored for as long as you use the services that we provide and in accordance with any applicable laws.

Linking To External Websites

Our Website or App, from time to time, may contain links to other websites which are not within our control. Once you have navigated away from our Website, we are not responsible for the protection and privacy of any information which you provide. Please exercise caution and familiarise yourself with the Privacy Policy applicable to the external website in question.

Your Rights

We have summarised the rights that you have under data protection law. Some of the rights are complex, and not all of the details have been included in our summaries. Accordingly, you should read the relevant laws and guidance from the regulatory authorities for a full explanation of these rights.

Your 8 principal rights under the data protection law are:

  1. The right to be informed – All organisations must be completely transparent in how they are using personal data (personal data may include data such as a work email and work mobile if they are specific to an individual).
  2. The right to access – an individual has the right to know exactly what information is held about them and how it is processed.
  3. The right to rectification – an individual is entitled to have personal data rectified if it is inaccurate or incomplete.
  4. The right to erasure (the right to be forgotten) – this refers to an individual’s right to have your personal data deleted or removed without the need for a specific reason as to why they wish to discontinue.
  5. The right to restrict processing – an individual has the right to block or suppress processing of their personal data.
  6. The right to object – in certain circumstances, an individual is entitled to object to their personal data being used. This includes if a company uses personal data for the purpose of direct marketing, scientific and historical research, or for the performance of a task in the public interest.
  7. The right to data portability – an individual has the right to retain and reuse their personal data for their own purpose.
  8. The right of automated decision making and profiling – the GDPR has put in place safeguards to protect individuals against the risk that a potentially damaging decision is made without human intervention. For example, individuals can choose not to be the subject of a decision where the consequence has a legal bearing on them or is based on automated processing.

Our Use of Cookies

About cookies

A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.

Cookies may be either “persistent” cookies or “session” cookies:

  • Persistent Cookie: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date unless deleted by the user before the expiry date.
  • Session Cookie: a session cookie will expire at the end of the user session when the web browser is closed.

Cookies do not typically contain any information that personally identifies a user, but personal information that we store about you may be linked to the information stored in and obtained from cookies.

To learn more about cookies and how they are used, visit All About Cookies.

Cookies that we use

We use cookies to help us to analyse the use and performance of our website and services.

The following table outlines the cookies that we use:

Cookie Name Purpose Information
Google Analytics _ga

_gat

_gid

These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the site.  The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited.

Google stores the information collected by the cookies on servers in the United States. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf.  Google will not associate your IP address with any other data held by Google.

For an overview of privacy at Google, please read:

http://www.google.co.uk/intl/en/analytics/privacyoverview.html

For information on how to opt-out from all Google Analytics cookies, please see:

http://tools.google.com/dlpage/gaoptout

 

It is possible for you to opt not to accept the use of cookies when using our Website. It is also possible for you to turn cookies off within your browser settings.

Information About Us

Pumponomics Limited is registered in the United Kingdom with company number 11053763 and registered address of 58 Millet Road, Greenford, Middlesex, UB6 9SH.

Governing Law

This Agreement will be governed by and interpreted according to the law of England. All disputes arising under the Agreement will be subject to the exclusive jurisdiction of the English courts.

 

Last modified: 24 July 2018