AirFitness is committed to complying with privacy laws applying both to you and to AirFitness’ businesses and which set out standards for the processing of personal data. Privacy laws applying to you may give you the right to be informed about AirFitness’ collection and use of your personal data. This policy notice is to give you that information.
Such privacy laws may give you important privacy rights in respect of your personal data which are in addition to your rights referred to in this policy notice. Links to the websites of several countries’ privacy regulators are at the privacy contact details below – your country’s regulator may be able to give you additional information.
We may have additional terms relevant to AirFitness’ collection and use of your personal data. These are important. They may provide for certain contract commitments and consents from you to AirFitness and other legitimate bases for AirFitness’ personal data processing, depending on the nature of your dealings.
AirFitness has separate policies concerning AirFitness’ employees – this policy does not apply to the personal data of employees in their capacity as such.
This policy notice refers to “personal data”. In some places, the law refers to this as “personal information”. These terms are used interchangeably and have the meaning of the term for personally identifying information about individuals under the privacy law applicable to you in your country (the relevant country’s laws being referred to as “your privacy law”) for example, “personal data” under the UK Data Protection Act 1998 (UK Act) and the EU General Data Protection Regulation (GDPR) and “personal information” under the Australian Privacy Act 1988 (Cth) (Australian Act).
For the purpose of a provision in your privacy law which requires you to be made aware of the controller of your personal data, this is AirFitness Pty Ltd ABN 44 622 361 406.
In this policy notice AirFitness Pty Ltd ABN 44 622 361 406 and its related group entities are separately and together referred to as “AirFitness”, “us”, “our” or “we”. You can find out more about us by visiting https://www.airfitness.fit. AirFitness’ contact details are at the privacy contact details below.
In collecting, holding and using your personal data, AirFitness generally relies on one or more of consent, contract and legitimate interests. Under “Why we collect, hold, use and disclose personal data” details of these bases are given. These are referred to in the UK Act and GDPR as “lawful bases”.
The personal data we collect and hold is what we consider reasonably necessary for our business functions and activities. When we collect and hold personal data, it is generally of the kind we ask for in order to provide our goods and services and what arises from that. Specifically, we collect
You generally have the option of not identifying yourself or of using a pseudonym when dealing with us, except where this is impractical, you have consented or agreed or where the law or a court order provides otherwise.
We may collect your personal data other than from you directly. These sources are generally those in respect of whom we have a reasonable expectation of their lawful ability to provide us with the relevant personal data. Examples are those who support our data analytics activities and who may have a contract with you, and those who support our business operations. Examples of third party sources with whom we may have relationships from time to time are:
entities involved in fulfilment processes such as Stripe, Salesforce, SOS, DG3, WHSmith, Newslink, Apple, Kindle, Magzter and Eurostar
entities involved in marketing and advertising technology such as OptinMonster, Schedugr.am, Social Drift, Sprout Social, Magento, Facebook, Twitter, Jellyfish, iSubscribe, Instagram, LinkedIn, Pardot, Chargify, Magshop, AppStore, Google (and Google Play) and Amazon
We collect personal data via cookies. For detailed information on the cookies we use see our Cookies Policy at https://morfus.fit/cookies/
Collection of the personal data: When we collect personal data about you, we do so by making a record of it. We do this when:
We may also collect personal data by accessing personal or other data from the other sources referred to at “Collecting your personal data from others” above then analysing that data together with the information we already hold about you for the purposes outlined under “Why we collect, hold, use and disclose personal data” below.
Holding of personal data: Personal data we hold is generally stored in computer systems. These may be operated by us or by our service providers.
For your personal data sourced from you, third parties or from us, we have a range of processing purposes. These purposes may apply to any or all of the personal data we collect, hold, use and disclose. These are generally as follows:
responding to requests or enquiries regarding our goods and services for example facilitating bookings for health and fitness classes or facilitating fulfilment of purchases of any goods or services from those using our online sites
sending information, such as our health and fitness updates and information about events
marketing to you: This may be direct marketing to you by ourselves or by third parties we select. This may promote our goods or services or those of third parties. It may take a variety of forms, for example electronic communications (such as email and SMS), telephone or regular mail. It may take the form of advertising which has been facilitated by cookies used when you are visiting our, or third parties’ online sites. Our Cookies Policy is at http://airfitness.fit/cookies/.
Important information about your opt out rights for direct marketing: Regardless of our source of your personal data and of the basis on which we collect or hold it, it is our policy to observe your rights under your privacy law to opt out of our direct marketing to you. Our direct marketing materials will generally tell you how to do this, but if you are not sure, a member of our privacy team will help you. Contact details for our privacy team are below.
In respect of your personal data of which we are the controller, we hold this on our servers or those of our third party processing service providers. Any payment transactions will be encrypted using the technology of our payment processing service provider such as Stripe. Where we have given you (or where you have chosen) a password which enables you to access parts of our online sites, you are responsible for keeping this confidential. We ask you not to share a password with anyone. The transmission of information, electronically, is not secure and we cannot guarantee the security of your personal data transmitted to or from any of our sites. Please bear this in mind when deciding whether or not to allow your personal data to be processed by us.
Access: We will provide you with access to any of your personal data we hold (except in limited circumstances recognised by law). Before we provide you with access to your personal data we may require some proof of identity.
Correction: if you need to correct personal data we hold, please contact one of our privacy team – see contact details below.
Enquiries: please direct any enquiries you may have about our processing of your personal data to the privacy team whose contact details are below. Where your privacy law includes the California Civil Code, Section §1798.83 of that Code permits users of our sites that are California residents to request certain information regarding our disclosure of personal data to third parties for their direct marketing purposes. To make such a request, please send an email to our privacy team – see contact details below.
If you wish to complain about our processing of your personal data, you may contact our privacy team – see contact details below. We may ask you to put your complaint in writing and to provide details about it. We may discuss your complaint with our personnel and our service providers and others as appropriate. Our privacy team will investigate the matter and attempt to resolve it in a timely way. Our privacy team will inform you in writing about the outcome of the investigation. If our privacy team does not resolve your complaint to your satisfaction and no other complaint resolution procedures are agreed or required by law, our privacy team will inform you that your complaint may be referred to a privacy regulator for further investigation. Links to some privacy regulators’ websites are under Privacy contacts below.
We may allow your personal data to be shared with those who are in countries other than your own location. We do this:
where we have made a business decision to store our data with a trusted service provider who is in the business of providing data storage and processing services. Examples are those who store and process our email and mobile application data. These services commonly involve diverse geographic locations which change from time to time for reasons which include data protection and processing efficiency. Where these services are used by us, it is not practical for us to notify you of which country your personal data may be located in for disclosures between our group companies. Our main business location is in Australia but we do business in a number of countries and some of our group companies may be based in other countries from time to time; and when our business which collected your personal data is in a different country to your location.
We will hold your personal information on our systems only for as long as required to provide you with the goods or services you have requested or as we consider reasonably appropriate having regard to the purpose of our processing.
Contact details of our privacy team are:
PO BOX 440
Rose Bay 2029
Australian Information Commissioner
There is no single, comprehensive federal (national) law regulating the collection and use of personal data but various agencies administer various aspects of US privacy law, for example the Self-Regulatory Principles for Behavioural Advertising
The Personal Information Protection Commission
Personal Data Protection Commission