Data Protection

Introduction

We collect and process your information (such as name, contact information, bank account and payment information and information relating to health conditions and usage) in order to deliver health and fitness activities and information to our members and users; process payments and other financial transactions; maintain financial records; recruit and manage coaches and other staff; and to inform members and users about products and services we offer.

We process information only for specific, legitimate and lawful purposes; are explicit and transparent with people about what information we collect and how we process it; collect information that is adequate, relevant and limited to what is necessary for the specified purposes and we only keep information for as long as it is needed for the specified purpose.

We take data protection seriously.

The Data Protection officer is the Secretary 

Data Protection Policy

For further information including how you can find out what information we hold about you, how we keep the information secure and what happens if there is a security breach, please refer to our Data Protection policy found here:

Bristol Co-operative Gym Privacy Policy (GDPR) 

Gym data

Audit of how we use information:
Gym Data Audit: How we use information

Breach letter template

Follow the link for a template of a letter when a data breach is suspected:
Data Breach Letter template

ICO Registration certificate  - This is an example of a past certificate registering our commitment to process personal data in a way that complies with the UK GDPR requirements.

This certificate expired in 2021...I couldn't find a more recent version. May need to replace link with up to date version*