Privacy Policy

Last updated: February 2026

Gym Management ("we", "us", or "our") operates the Gym Management mobile application and web platform. This Privacy Policy explains how we collect, use, and protect your personal information.

1. Information We Collect

We collect the following types of information:

• Account information: Your name, email address, and password when you register
• Profile information: Phone number and profile details you provide
• Health & fitness data: Body measurements and fitness progress you choose to log
• Usage data: Class bookings, attendance history, and app interactions
• Device information: Push notification tokens for delivering notifications to your device

2. How We Use Your Information

• To provide and operate the gym management platform
• To process class bookings and manage waitlists
• To send push notifications about bookings, class reminders, and updates
• To display your fitness progress and body measurement history
• To allow gym administrators to manage their members
• To improve our services and user experience

3. Data Isolation & Multi-Tenancy

Your data is completely isolated to your gym's account. We use row-level security to ensure that your personal information, bookings, and fitness data are never accessible to other gyms or their members. Each gym operates as a separate tenant with full data isolation.

4. Data Sharing

We do not sell your personal data to third parties. Your information may be shared with:

• Your gym: Gym administrators can view member profiles, bookings, and attendance within their gym
• Service providers: We use trusted third-party services (hosting, email delivery) who process data on our behalf under strict data protection agreements
• Legal requirements: When required by law or to protect our rights

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. Booking history and fitness data are retained indefinitely to provide you with a complete history. You may request deletion of your account and associated data at any time.

6. Push Notifications

We send push notifications to your device for booking confirmations, class reminders, waitlist updates, and important account notifications. You can manage notification preferences through your device settings at any time.

7. Security

We implement industry-standard security measures including encrypted data transmission (HTTPS), hashed passwords, JWT authentication with token versioning, and row-level database security. We regularly review our security practices to protect your data.

8. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and data
• Opt out of non-essential communications

9. Children's Privacy

Our app is intended for users aged 18 and over. We do not knowingly collect personal information from children under 18.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via the app or email. Continued use of the app after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at: privacy@gymmanagement.app