Privacy Policy

We collect the following categories of personal data:

Account data: name, email address, phone number, gym name, and billing information.

Member data: information you enter about your gym members, including names, contact details, subscription history, and access logs.

Usage data: information about how you interact with the platform, including login times, features used, and device information.

Communication data: messages you send to us via contact forms, email, or WhatsApp.

We process your personal data for the following purposes:

Providing and maintaining the SmartGym platform.

Processing payments and managing subscriptions.

Sending transactional notifications (e.g., payment confirmations, service updates).

Improving our services through usage analytics.

Responding to your inquiries and support requests.

Complying with legal obligations.

We implement industry-standard security measures to protect your data:

Encryption in transit: All data transmitted between your browser and our servers is encrypted using SSL/TLS protocols.

Encryption at rest: Sensitive data is encrypted using AES-256 encryption.

Multi-factor authentication (MFA): Available for all accounts to add an additional layer of security.

Daily backups: Automated daily backups ensure data recovery in case of technical issues.

Access controls: Role-based access controls limit data access to authorized personnel only.

We retain your personal data for as long as your account is active or as needed to provide you with our services. After account cancellation, data is retained for 90 days before permanent deletion. We may retain certain data longer where required by law (e.g., financial records for tax purposes).

Under the GDPR, you have the following rights:

Right of access: You can request a copy of all personal data we hold about you.

Right to rectification: You can request correction of inaccurate or incomplete data.

Right to erasure: You can request deletion of your personal data ("right to be forgotten").

Right to restrict processing: You can request that we limit how we use your data.

Right to data portability: You can request your data in a structured, machine-readable format.

Right to object: You can object to processing based on legitimate interests.

Right to withdraw consent: Where processing is based on consent, you can withdraw it at any time.

To exercise any of these rights, contact us at [email protected].

We do not sell your personal data. We may share data with:

Service providers: Cloud hosting, payment processing, and email delivery services that help us operate the platform.

Legal authorities: When required by law or to protect our legal rights.

All third-party service providers are contractually obligated to protect your data and process it only for the purposes we specify.

We use cookies and similar technologies to:

Maintain your session and authentication state.

Remember your preferences (e.g., language selection).

Analyze usage patterns to improve the platform.

You can manage cookie preferences through your browser settings. For more details, please refer to our Cookie Policy.

SmartGym is not intended for use by individuals under 16 years of age. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us at [email protected] and we will promptly delete such information.

For any questions about this Privacy Policy or to exercise your data protection rights, contact us at:

**APP PARTNER S.R.L.**

Email: [email protected]

CUI: RO 47697894

Trade Registry: J40/3637/2023