top of page

Peak Health Peak Performance Peak Mindset Peak Nutrition

Logo transparent.png

Privacy Policy

Last Updated: 18 November 2025
 

At PeakFit, we are committed to protecting your privacy and ensuring your personal data is handled lawfully, transparently, and securely. This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website, engage with our services, or interact with us directly.

We are the data controller for the purposes of the UK GDPR and Data Protection Act 2018. Our registered address is:
[Insert Full Business Address, e.g., PeakFit, [City], Wales, Postcode]
 

1. What Personal Data We Collect

We may collect the following types of personal data, depending on how you interact with us:

  • Contact Information: Name, email address, phone number, postal address.

  • Fitness and Health Data: Workout preferences, fitness goals, medical conditions (e.g., allergies, injuries), progress tracking data — collected only with your explicit consent where required.

  • Payment Information: When you purchase coaching packages or products (processed securely via third-party payment processors such as Stripe or PayPal — we do not store full card details).

  • Technical Data: IP address, browser type, device information, pages visited, time spent on site (collected via cookies and analytics tools).

  • Communication Records: Emails, messages, or call logs if you contact us for support or inquiries.

  • Social Media Interactions: If you engage with us on platforms like Facebook or Instagram, we may collect public profile information you choose to share.
     

2. How We Use Your Data

We use your personal data only for the following lawful purposes:

  • To provide and personalise your fitness coaching services.

  • To process payments and manage subscriptions.

  • To communicate with you about your bookings, appointments, or service updates.

  • To send you marketing communications (only if you have opted in — you can unsubscribe at any time).

  • To improve our website, services, and client experience using anonymised analytics.

  • To comply with legal obligations (e.g., tax, health and safety, or insurance requirements).

  • To respond to inquiries or complaints.

 

3. Legal Basis for Processing

We process your data based on one or more of the following legal grounds under UK GDPR:

  • Contractual necessity: To deliver the services you’ve requested.

  • Consent: For marketing communications or processing sensitive data (e.g., health information) — you may withdraw consent at any time.

  • Legitimate interests: To run our business efficiently, improve services, and communicate relevant updates (without overriding your rights).

  • Legal obligation: To comply with UK law (e.g., record-keeping for financial or health and safety purposes).

 

4. Data Sharing and Third Parties

We will never sell your personal data. We may share it only with:

  • Service providers who assist us (e.g., payment processors, email marketing platforms, website hosting). These parties are bound by strict data protection agreements.

  • Professional advisors (e.g., accountants, legal advisors) for business administration.

  • Emergency services or insurers, if required by law or for your safety (e.g., in the event of a medical incident during a session).

  • Law enforcement or regulatory bodies, if required by law.

All third parties are carefully vetted and required to comply with UK data protection standards.


5. Cookies and Tracking Technologies

Our website uses cookies to enhance your experience. We use:

  • Essential cookies: To keep you logged in or remember your cart.

  • Analytics cookies (e.g., Google Analytics): To understand how visitors use our site — all data is anonymised.

  • Marketing cookies: Only if you consent — used to show you relevant ads on other sites.

You can manage or disable cookies via your browser settings. Please note that disabling cookies may affect site functionality.


6. International Data Transfers

Your data is stored and processed within the UK. If we use third-party services based outside the UK (e.g., cloud storage or email platforms), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the UK Information Commissioner’s Office (ICO).


7. Data Retention

We retain your personal data only for as long as necessary:

  • Client records: 6 years after your last interaction (to comply with tax and professional liability requirements).

  • Marketing consents: Until you withdraw consent or unsubscribe.

  • Website analytics: Anonymous data retained for up to 24 months.

  • Inquiries and complaints: Retained for 1 year unless legal action is involved.

 

8. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

  • Right to access: Request a copy of the data we hold about you.

  • Right to rectification: Correct inaccurate or incomplete data.

  • Right to erasure: Request deletion of your data (subject to legal exceptions).

  • Right to restrict processing: Limit how we use your data.

  • Right to data portability: Receive your data in a machine-readable format.

  • Right to object: Object to processing based on legitimate interests or direct marketing.

  • Right to withdraw consent: At any time, for any processing based on consent.

 

To exercise any of these rights, please contact us at:
[Insert Contact Email, e.g., privacy@peakfit.co.uk ]
We will respond within one month.

 

9. Complaints

If you believe we have not handled your data properly, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
https://ico.org.uk

 

10. Security

We implement appropriate technical and organisational measures to protect your data, including encryption, secure servers, staff training, and regular security reviews. While no system is 100% secure, we take every reasonable step to safeguard your information.

 

11. Children’s Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children without parental consent.

 

12. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last Updated” date. We encourage you to review this policy periodically.

 

Contact Us

For any questions, requests, or concerns about this Privacy Policy or how we handle your data, please contact:

PeakFit Data Protection Contact
Email: [privacy@peakfit.co.uk ]
Phone: [Insert Phone Number]
Address: [Insert Full Business Address]

​

Explore
Logo transparent.png
  • Instagram
  • Facebook
  • TikTok

© 2025 by PeakFit.
Made by Visibiliti

bottom of page