Privacy Policy
This Privacy Policy (Policy) applies to Body Fit Training Company Pty Ltd ACN 622 444 008 and its subsidiaries, related entities, franchisees and training facilities in the jurisdictions in which it operates, any trust for which it acts as trustee, the website bodyfittraining.com and any other website and Apps it operates (referred to in this Policy as BFT, we, our and us).
We are committed to managing personal information in accordance with applicable privacy laws.
This Policy sets out how we collect, use, disclose, store and dispose of personal information about our members, franchisees and employees and any other people we interact with. It should be read together with any terms and conditions governing your use of our website or Apps, our membership terms and conditions (if you are a member) and any location specific legal notice.
In this Policy, ‘you’ refers to any individual about whom we collect personal information. ‘Personal information’ means information or an opinion about you, whether true or not, from which you can be identified and includes your health information.
If you are located in Singapore, by providing your personal information to us, you consent to our collection, use and disclosure of your personal information for the purposes set out in this Privacy Policy, in addition to any other lawful basis which we may do so.
Members and prospective members:
When you enquire about membership, we will typically collect your name, e-mail, postal address, and any other contact details for the purposes of responding to that enquiry.
If you become a member of BFT we may also collect:
The purpose of collecting sensitive information about you (being health information) is so we can properly assess your health and suitability for participation in fitness activities. It also enables us to measure your progress as a BFT member and facilitates your participation in our Challenges. We only use your sensitive information for this purpose and no other purpose. The types of sensitive information we collect may include details of any adverse medical history, details of any medication/s you take, whether you smoke or are pregnant and other relevant health related information. We will obtain your express consent in circumstances where it is necessary for us to collect sensitive information.
Prospective employees/applicants:
We collect personal information as part of our recruitment activities, such as your name, contact details, qualifications and work history. Generally, we will collect this information directly from you.
We may also collect personal information from third parties in ways which you would expect (for example, from recruitment agencies or referees you have nominated). Before offering you a position, we may collect additional details such as your tax file number and superannuation information and other information necessary to conduct background checks to determine your suitability for certain positions.
Other individuals:
BFT may collect personal information from other individuals who are not members or employees. This includes BFT franchisees or potential franchisees, individual service providers and contractors to BFT and other individuals who interact with BFT on a commercial basis. Generally, it would include your name, contact details, identification details, any required background checks or relevant business experience, and any other information relevant for our interactions and transactions with you.
Visitors to our websites:
The way in which we handle the personal information of visitors to our websites is discussed below.
Some personal and health information will also be collected by, or uploaded to, the BFT App.
The purposes for which BFT usually collects and/or uses personal information depends on the nature of your interaction with us, but may include:
BFT’s website/s use cookies. A “cookie” is a small file stored on your computer’s browser, which assists in managing customised settings of the website and delivering content. We collect certain information such as your device type, browser type, IP address, pages you have accessed on our websites and on third-party websites. You are not identifiable from such information.
You can use the settings in your browser to control how your browser deals with cookies. However, in doing so, you may be unable to access certain pages or content on our website.
BFT’s websites may contain links to third-party websites. BFT is not responsible for the content or privacy practices of websites that are linked to our website. Any information you provide directly to a third party will be managed in accordance with that party’s privacy policy.
BFT maintains physical security over paper and electronic data stores, such as through locks and security systems at our premises. We also maintain computer and network security, for example, we use firewalls (security measures for the Internet) and other security systems such as user identifiers and passwords to control access to our computer systems.
Our websites do not necessarily use encryption or other technologies to ensure the secure transmission of information via the internet. Users of our websites are encouraged to exercise care in sending personal information via the internet.
CCTV recordings can be accessed only by authorised staff. Recordings of a specific incident may be released to the relevant law enforcement body only under the terms of this policy or subject to the execution of a search warrant or other legal process.
We take steps to securely destroy or de-identify information that we no longer require.
If you opt-out of receiving marketing material from us, BFT may still contact you in relation to its ongoing relationship with you.
We may occasionally engage other companies to provide marketing or advertising services on our behalf. Those companies will be permitted to obtain only the personal information they need to deliver the service. If we provide those companies with any of your personal information, it is to provide you with a better or more relevant and personalised experience and to improve the quality of those services.
We may disclose personal information:
Otherwise, unless we have your consent, or an exception or other lawful basis under applicable privacy laws applies, we will only disclose your personal information to overseas recipients where we have taken reasonable steps to ensure that the overseas recipient does not breach applicable privacy laws in relation to your personal information and will comply with any other requirements under applicable privacy laws relating to the offshore disclosure of personal information.
The reason for disclosure to an overseas recipient depends on the nature of the services those recipients provide to us (for example storing data via a cloud service, or where our customer relationship management system is hosted on servers located overseas).
You will not be charged for making a request to access your personal information but you may be charged for the reasonable time and expense incurred in compiling information in response to your request.
We will take reasonable steps to ensure that the personal information we collect, use or disclose is accurate, complete and up-to-date. You can help us to do this by letting us know if you notice errors or discrepancies in information we hold about you and letting us know if your personal details change.
If you consider any personal information we hold about you is inaccurate, out-of-date, incomplete, irrelevant or misleading you are entitled to request correction of the information. After receiving a request from you, we will take reasonable steps to correct your information.
We may decline your request to access or correct your personal information in certain circumstances in accordance with applicable privacy laws. If we do refuse your request, we will provide you with a reason for our decision and, in the case of a request for correction, we will include a statement with your personal information about the requested correction.
In Australia, an eligible data breach occurs when:
If it is not clear whether a suspected data breach meets these criteria, we will investigate and assess the breach further. This is to ensure you are notified if your personal information is involved in a data breach that is likely to result in serious harm. Even if the criteria are not met, we may decide it appropriate to notify you anyway as part of our commitment to taking privacy seriously.
In most cases, we will investigate and respond to a complaint within 30 days of receipt of the complaint. If the matter is more complex or our investigation may take longer, we will let you know.
In Australia, if you are not satisfied with our response to your complaint, or you consider that BFT may have breached the APPs or the Australian Privacy Act 1988 (Cth), a complaint may be made to the Office of the Australian Information Commissioner (OAIC). The OAIC can be contacted by telephone on 1300 363 992 or by using the contact details on the OAIC website.
You may withdraw your consent as provided under applicable privacy laws. However, if you withdraw your consent to any or all collection, use and/or disclosure of your personal information, depending on the nature of your request, we may not be in a position to continue to provide our products or services to you, administer any contractual relationship already in place, or perform or conclude an existing or prospective agreement. This may result in the termination of any agreements you have with us, and you being in breach of your contractual obligations or undertakings. Our legal rights and remedies are expressly reserved.
Position: Head of Legal
Name: Brandon Evans
Email: [email protected]
Address: 51 Wangaratta Street, Richmond VIC 3121