top of page

Personal Data Protection Policy

1. Purpose and Scope

This policy outlines how we protect the personal data of our students, clients, and anyone interacting with Balance Health Pilates and Yoga. It applies to all data processing activities carried out by Balance Health Pilates and Yoga.

2. Definitions

  • Personal Data: Any information that identifies an individual (e.g., names, contact details, health information).

  • Data Subject: The person to whom the personal data relates.

  • Processing: Any operation performed on personal data (collection, storage, use, etc.).

3. Lawful Basis for Processing

We process personal data based on the following lawful bases:

  • Consent: Obtaining explicit consent for data processing.

  • Legitimate Interest: Processing necessary for our legitimate interests.

  • Contractual Necessity: Processing required for fulfilling contracts (e.g. class bookings).

4. Data Collection and Use

We collect and process the following types of personal data:

  • Student names

  • Contact information (email, address, phone)

  • Emergency next of kin contact details

  • Health and lifestyle information

5. Transparency and Consent

  • We obtain consent from individuals before collecting and processing their data.

  • Our privacy notice explains data collection, processing purposes, and individual rights.

6. Data Accuracy and Retention

  • We commit to keeping personal data accurate and up-to-date.

  • Retention periods:

    • Attendance records: 2 years

    • Emergency contact details: As long as necessary

7. Security Measures

  • We ensure secure storage of personal data (physical and digital).

  • Encryption and access controls are in place.

8. Individual Rights

  • Data subjects have the right to:

    • Access their data

    • Rectify inaccuracies

    • Erase data (if applicable)

    • Restrict processing

9. Data Breach Response

  • Procedures for handling data breaches:

    • Notify affected individuals promptly

    • Report to relevant authorities

10. Third-Party Processors

  • When using third-party services (e.g., booking and payment software) we ensure they comply with data protection regulations.

11. Awareness

  • Students are informed about their rights and our commitment to data privacy.

12. Review and Updates

  • Regularly review and update this policy to reflect changes in data practices or regulations.

bottom of page