Legal Information

1. Introduction to GDPR

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area. It addresses the export of personal data outside the EU and EEA areas.

At Juice, we respect your privacy and are committed to protecting your personal data. This GDPR compliance statement explains how we collect, process, and store personal data in accordance with GDPR requirements.

2. Data Controller

Juice Fitness is the data controller responsible for your personal data. If you have any questions about this GDPR compliance statement, including any requests to exercise your legal rights, please contact us at crew@juice.fitness.

3. Your Rights Under GDPR

Under the GDPR, you have the following rights:

• Right to be informed: You have the right to be informed about the collection and use of your personal data.
• Right of access: You have the right to request copies of your personal data.
• Right to rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
• Right to erasure: You have the right to request that we erase your personal data, under certain conditions.
• Right to restrict processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
• Right to data portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• Right to object: You have the right to object to our processing of your personal data, under certain conditions.
• Rights related to automated decision making and profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

4. Data Protection Principles

We adhere to the principles set out in the GDPR, which require that personal data be:

• Processed lawfully, fairly, and in a transparent manner
• Collected for specified, explicit, and legitimate purposes
• Adequate, relevant, and limited to what is necessary
• Accurate and, where necessary, kept up to date
• Kept in a form which permits identification of data subjects for no longer than is necessary
• Processed in a manner that ensures appropriate security of the personal data

To ensure appropriate security, we use SOC 2 Type II certified vendors including Firebase (Google Cloud) and Stripe for data storage and payment processing, ensuring enterprise-grade security controls for your data.

5. International Transfers

We may transfer your personal data to countries outside the European Economic Area (EEA). Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

• We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
• Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe (Standard Contractual Clauses).

6. How to Exercise Your Rights

If you wish to exercise any of your rights under the GDPR, please contact us at crew@juice.fitness. We will respond to your request within one month. If your request is particularly complex or you have made a number of requests, it may take us longer. We will notify you if this is the case.

7. Data Breach Procedures

In the case of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you without undue delay.

8. Contact Us

If you have any questions about our GDPR compliance or how we handle your personal data, please contact us at crew@juice.fitness.