Welcome to the Go:Do privacy notice. Go:Do are a provider of a digital marketplace, accessed via the Go:Do services, that allows users to find, request and book training sessions, workouts and other fitness services from trainers and other fitness professionals.

Go:Do has been developed by Aptitude Fitness Ltd (“Aptitude Fitness”, “Go:Do”, “we”, “us” or “our”) with company number 10808629 and registered address at Maple Works, 73 Maple Road, Surbiton, Surrey, England, KT6 4AG, for the benefit of our users, who are made up of personal trainers, gym staff, gym members and Go:Do clients looking to book personal training sessions (together “you”, “your”).

This privacy notice (“Privacy Notice”) is designed to give you information about how your personal data is collected and used in connection with your use of our services, which are as follows:

  • an iOS mobile application (“App”);
  • a website application (“Web App”);
  • an online admin portal and related business management software (“Software”),
  • our social media pages;
  • HTML-formatted email messages that we send to you that link to this Privacy Notice; and
  • any other Go:Do products and services offered via any venues, websites or mobile applications, including those provided by our partner operators and fitness providers which direct you to this Privacy Notice. 
(Collectively, the “Services“)
 

Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.

This Privacy Notice covers the following areas:

  1. Our relationship with Operators and fitness partners;
  2. Who is responsible for the handling of your personal data?
  3. What data do we collect about you?
  4. How we collect personal data?
  5. Payment data
  6. For what purposes do we use data about you, and on what legal basis?
  7. Who do we share your data with, and for what purposes?
  8. Where might data about you be sent?
  9. External links
  10. How do we protect data about you?
  11. How long will data about you be kept?
  12. What rights and options do you have?
  13. Who should you contact with questions?
  14. Changes to this notice

1.      Our relationship with Operators and fitness partners

We created the Go Do Services to simplify and coordinate the booking of personal training sessions. We provide our services, for trainers to receive and accept training requests, and for users who come to us directly (“Clients), and in partnership with users who come to us via our fitness partner gyms (Members).

We have partnered with a number of fitness providers to make our services available to their staff, trainers and members. Where those parties have subscribed to (or otherwise use) our Software to make these services available to you we refer to them in this notice as an Operator.

 2.   Who is responsible for the handling of your personal data?

(i.) Accounts created by our Fitness Partners (Administrative users, and unverified accounts)

  • Administrative users If you are an administrative user (e.g. a staff member within one of our fitness partners) you may be using our Services to setup accounts or to book in workouts.
  • Unverified accounts If the fitness provider with which you are associated has created an account on your behalf, you will receive an email inviting you to use the Go:Do Services. Unless you follow the instructions in the email, by signing to Go:Do and accepting our terms of use and Privacy Notice you will have an unverified account.

Where you are an administrative user, or have an unverified account (created by our fitness partner), your access/invitation to Go:Do Services, will have been made available to you by the fitness provider with which you are associated. In which case, the fitness provider will be the party responsible for the processing of your personal data, which will be processed in accordance with their privacy notice. Our role will be limited to that of a data processor. This means our role is limited to providing the Services on behalf of the fitness provider with which you are associated, which will be the data controller.

(ii.) Who does this Privacy Notice apply to?

If you are:

  • a Client – a user who has independently signed up to the Go:Do Services;
  • a Member – a member (including new, previous and prospective members) of one of our fitness partners who has or is looking to place a PT booking using Go:Do Services;

 (together our “users”)

  • a Trainer – a trainer who either (i.) independently signed up to Go:Do; or (ii.) has accepted an invitation (sent by their associated fitness provider) to use the Go:Do platform by verifying their account;
  • a business contact and operators – if you are a business contact or operator, we may use your personal data in connection with your, or your organisation’s request for, use of, or interest in our services;

then we will be the data controller of personal data you provide. This means we will be responsible for the safeguarding of your personal data which will be processed in accordance with the remainder of this privacy notice.

Details of how to contact us can be found below in the section titled Who should you contact with questions?.

3.   What data do we collect about you?

We use your data for various purposes connected with the Services, including (but not limited to) data we require to coordinate the pairing of providers of fitness services (“Trainers”) and those seeking such services.

In order to provide you with a positive experience, we need to collect certain data about you, as either a Trainer or user.

Trainer

If you are a Trainer, in order to match you with Clients as they request and book training sessions, workouts and other fitness services from you, we collect and process data about you which may include :

  • Your Profile details, e.g. Full Name, Telephone number, Photograph, Gender, Services offered, Relevant qualifications, Memberships, Insurance details, Working location(s), Price of services, Working hours (the hours you are available for bookings); and
  • Client feedback on sessions

This information may be shared with the users.

Additionally, we may collect and process the following, which will not be shared with users, your:

  • Additional contact details, e.g. Email address, in addition to Profile details listed above,
  • Service provision information, e.g. User name and password,
  • Personal details, e.g. Date of Birth, Nationality,
  • Financial and transaction data, e.g. Your payment information, booking history, account information, etc.,
  • Other Services related data, e.g. client requests, information/statistics about your use of the Services (including the App or Web App), etc.,
  • Technical Information, e.g. information relating to your device, Cookies, and
  • Location data with your permission (e.g. geolocation data).

Users

If you are a user, in order to find, request and book training sessions, workouts and other fitness services from Trainers we collect and process data about you which may include your:

  • Your Profile details, e.g. Full Name, Photograph, Workout location information, Other information you wish to provide such as your fitness goals and personal interests,
  • Contact details, e.g. Email address, Telephone number, Address where you wish to train, (and you may specify your home and/or work address),
  • Services provision information, e.g. User name and password,
  • Financial and transaction data, e.g. payment data, purchase history, account information, etc.,
  • Other Services related data, e.g. Information/statistics about your use of the App,
  • Technical information, e.g. Information relating to your device, Cookies, and
  • Location data with your permission (e.g. geolocation data).

Business contacts and operators

If you are a business contact or operator, within a business or entity that has requested; or has subscribed to (or otherwise uses) our Software in accordance with a Software Agreement between the operator and us (in the latter case an “Operator”), we may ask for your company name, address, phone number, email, credit card information, tax identification number, and other information about your business, as well as names and email addresses of authorized individuals on your account.

We also collect Personal Information about your customers and trainers that they provide to us via use of our Services when they initiate a transaction or otherwise interact with you, such as to book an appointment.

4.   How we collect personal data?

We may collect the personal data described above in a number of ways:

  • if you are a trainer, from the fitness provider you are associated with;
  • if you are a member, from your fitness provider;
  • if you interact with your trainer directly, from your trainer;
  • when you communicate with us;
  • when you respond to marketing campaigns;
  • from trusted third-party analytics providers who provide us with information relating to our traffic and how users interact with our Services;
  • sometimes we purchase it from third parties;

For additional information relating to our methods of collection please see section 6 (Purposes, and lawful basis).

Cookies

We use and may allow others to use cookies and similar technologies (e.g., web beacons, pixels) to recognize you and/or your device(s).

Please see our Cookie Notice for more information on why we use them and how you can better control their use, through your browser settings and other tools.

5.   Payment Data

If you are a user for our paid for Services, the App or Web App as relevant may ask you to input payment information (including credit card number, expiry date and CVV number) if you want to make a booking, purchase gym day passes or utilise particular services. This information is collected directly by our third-party payment processor, which uses such information to process payment from you. We do not have access to this information.

Users: If you have already provided your payment details through the App and attempt to make another booking, we ask our third-party payment processor for details of the payment method(s) you provided previously so that you do not have to enter them again. These details are only partially made available to us (for example, we only see the last four digits of your payment card number), meaning that we never have access to your complete payment details. The App will then display such details to you so that you may use them to make another Booking.

Trainers: If you are a Trainer, we may ask you for your bank account details so that we can make payments to you in respect of bookings you have attended. We will treat your bank account details in accordance with the terms of this Privacy.

Any payment transactions carried out by our third-party provider of payment processing services will be securely encrypted.

6.   For what purposes do we use data about you, and on what legal basis?

During your you use of the App, we may use data about you for the following purposes:

If you are a Trainer:

  • in order to collect the information required to enter into a contract between you as a Trainer and Go:Do
  • in order to create and manage our records
  • in order to contact you in relation to use of the Services, for example in relation to your workouts or cancellations
  • for internal management and organisational reasons
  • in order to communicate with a Client when using the Services
  • in order to manage Go:Do’s social media strategy e.g., Instagram, Facebook, YouTube and Twitter
  • in order to send you offers, promotions or other such materials that we think you would be interested in
  • for benchmarking and analyses
  • to post or make available your Trainer profile on the Go:Do website, App, Web App and any other relevant platform via which our Services are provided. Your Trainer profile will include the following information: image, name, gender, insurance cover, specialisms, availability, pricing packages, bio, qualifications, memberships,  and where you train.

If you are a user:

  • in order to collect information required to enter into a contract between the user and Go:Do (if applicable)
  • in order to create and manage records of Go:Do
  • in order to contact you in relation to use of the Services, for example in relation to workouts or cancellations
  • for internal management and organisational reasons
  • in order to manage Go:Do’s social media strategy e.g., Instagram, Facebook, YouTube and Twitter
  • in order to communicate with a Trainer when using the Services
  • in order to send you offers, promotions or other such materials that we think you would be interested in
  • for usage analyses
  • to display your user profile on the App. Only your name and the location of your workouts are shared with a Trainer and displayed on the App or Web App or any application used by another venue and provided by us.

The legal basis for our use of data about you is one of the following (which we explain in more detail in the “Find out more” section), the processing of your data is necessary for:

  • the performance of our contract with you
  • compliance with a legal obligation to which we are subject
  • a legitimate business interest that is not overridden by your interests, rights or freedoms

where none of the above applies, your consent (which we will ask for before we process the data).

Find out more…

The purposes for which we use data about you, with corresponding methods of collection and legal basis for use, are:

Purpose

Method of collection and legal basis for processing

Entering into and performing a contract with you, or otherwise performing the services

·        inputting and verifying your required details in order to commence the agreement or services

·        performing the services

·        managing the performance and/or any changes to the agreement

 

Your data relevant to this activity is collected before we enter into an agreement relating to or prior to the commencement of the performance of our services.

 

We use it because we are required to do so in order to enter into an agreement with you, being the Go:Do User/Trainer (as applicable) Terms and Conditions.

Where our Services are made available to you as a member, your personal data will be provided to us by your fitness provider or your Trainer (as applicable). In which case you may not have signed up to our User Terms by accessing the Go:Do App, in these circumstances we rely on our legitimate interests to provide you services which you have requested.

If you are a Trainer working out of an Operator with which we have a Software Agreement, your data may be provided to us by the Operator, as agreed between you and the Operator. You should ask the Operator for their privacy notice for additional information.

Record keeping and contacting you

·        keeping records of your use of the Services (appointments booked etc.) 

·        contacting you in relation to your use of the Services or in the event of an issue or emergency

·        providing customer support via email, the telephone or in app messaging

 

Your data relevant to this activity is generally provided to us by you directly, during the sign-up process, or during your use of the Services (e.g. when you book an appointment).

We use it because we have a legitimate business interest in managing records of your use of the Services and in being able to contact you.

Management of the App/Web App and users/ Trainers

·        organising and arranging services (e.g. booking appointments)

 

Your data relevant to this activity is generally provided to us by you directly, during the sign-up process, or during your use of the App (e.g. when you book an appointment).

We use it because we have a legitimate business interest in effective management of the App and its users /Trainers.

Reporting to Trainers/Operators

·        reporting to Trainers or Operators use of the Services (appointments booked, cancellations etc)

·        providing support and invoices/receipts in relation to payments

 

Your data relevant to this activity is generally provided to us by you directly, during the sign-up process, or during your use of the Services (e.g. when you book an appointment).

We use it because we have a legitimate business interest in maintaining records of your use of the Services and reporting this to Trainers/Operators.

Sending you promotions, offers and other marketing materials

·        sending you promotional materials and rewards and/or incentives 

 

Your data relevant to this activity is generally provided to us by you directly, during the sign-up process, or during your use of the App.

We use it because we have obtained your consent to send you such communications or on the basis of our legitimate interests.

Managing our social media strategy

·        using analytics software tools to monitor user/ Trainer social media activities using social media platform APIs and publicly available user/ Trainer social media content

·        establishing and managing social media groups, across various platforms

 

Your data relevant to this activity is generally provided to us by you directly, during the sign-up process, or during your use of the App. It may also be captured through automated means, using various analytics and monitoring software tools.

We use it because we have a legitimate business interest in managing our social media strategy and engagement.

Data analysis and benchmarking

·        producing summaries and reports of aggregate usage/performance data

·        monitoring overall App performance

 

Your data relevant to this activity is generally provided to us by you directly, during the sign-up process, or during your use of our Services. It may also be captured through automated means, using various analytics and monitoring software tools

We use it because we have a legitimate business interest in understanding the performance of the App.

Legal & regulatory compliance and compliance with law enforcement requests

·        complying with regulatory obligations 

·        complying from time to time with requests received from law enforcement or other governmental or non-governmental agencies

 

Your data relevant to this activity is collected throughout your use of our Services.

We use it because we are under legal and/or regulatory obligations to respond to certain request (e.g. law enforcement requests for information) and in order to meet various legal compliance and best practice obligations, as applicable.

Sharing data with service providers

·        To assist us in the provision of services to you e.g., IT service providers 

See the section Who do we share your data with, and for what purposes? For more information

 

It is our legitimate business interest to share your data with trusted third parties who provide us with services relevant to our provision of services to you, such as IT service providers.

Sharing data with the fitness provider you are associated with, or intend to train at

·        If you are employed by, are a member of, or intend to train at one of our fitness providers we may share your data in connection with their making our Services available to you 

 

It is our legitimate business interest to share your data with them in connection with our Services to you.

See the section Who do we share your data with, and for what purposes? For more information

Where we do not base our use of data about you on one of the above legal bases, we will ask for your consent before we process the data (these cases will be clear from the context). We may from time to time ask for your explicit consent to process special categories of your data. In these circumstances we will provide specific information to you about both the relevant processing activities and your rights in relation to them.

Where we do not base our use of data about you on one of the above legal bases, we will ask for your consent before we process the data (these cases will be clear from the context). We may from time to time ask for your explicit consent to process special categories of your data. In these circumstances we will provide specific information to you about both the relevant processing activities and your rights in relation to them.

7.   Who do we share your data with, and for what purposes?

With other users

We will share your profile with other users of the Go:Do Services in order to match Trainers with users, and for Trainers to see relevant information of users, and to book training and workout sessions. Your profile will only be shared as described above. User profiles will only be shared with Trainers with which you make a booking request. Trainer profiles will be visible to any registered user.

With our Operators and fitness partners

We may also share your data with our fitness partners as necessary in order to coordinate the services which you have requested. For example, we may inform them whether you have fully set up your account or that a workout is scheduled to occur in order to setup an access pass for you.

With our service providers and partners

We may share data about you with third parties who provide us with products or services, such as IT hosting and development, e-mail communications and data analysis.

We currently use a third party payment processor to process payments from you for our Services. Your Personal Information may be collected by such processors directly and not by us, and will be subject to the third party’s privacy notice. We have no control over, and are not responsible for, third parties’ collection, use and disclosure of your Personal Information. The third party payment processor is Worldpay (UK) Limited and/or any of its subsidiaries or affiliates

A list of these third parties is available on request.

Additional transfers

We may share data about you with other third parties, where required or permitted by law, for example: regulatory authorities; government departments; in response to a request from law enforcement authorities or other government officials; when we consider disclosure to be necessary or appropriate to prevent physical harm or financial loss or in connection with an investigation of suspected or actual illegal activity; and in the context of organisational restructuring.

8.   Where might data about you be sent?

We will not routinely transfer your personal data outside of the UK to perform the Services.

If we sell or buy any business or assets and would be required to disclose your personal data to the prospective buyer or seller of such business or assets, or if substantially all of our assets are acquired by a third party, we may, to the extent that any of these situations occur, be required to transfer your personal data outside of the UK. 

In the event that a transfer outside the UK or EEA does occur, we will put appropriate safeguards in place to safeguard transfers of your personal data.

9.   External links

If any part of our website or other Services links you to third party sites, those sites do not operate under this Privacy Notice. We recommend you examine the privacy statements posted on those other websites to understand their procedures for collecting, using, and disclosing personal information, including any Operator.

10.   How do we protect data about you?

We implement appropriate technical and organisational measures to protect personal data that we hold from unauthorised disclosure, use, alteration or destruction. Where appropriate, we use encryption and other technologies that can assist in securing the data you provide. We also require our service providers to comply with strict data privacy requirements.

11. How long will data about you be kept?

The period for which we may retain data about you will depend on the purposes for which the data was collected, whether you have requested the deletion of the data, and whether any legal obligations require the retention of the data (for example, for regulatory compliance). We will not retain data about you for longer than is necessary to fulfil the purposes for which the data was collected.

12.   What rights and options do you have? 

You may have some or all of the following rights in respect of data about you that we hold:

  • request us to give you access to it
  • request us to rectify it, update it, or erase it
  • request us to restrict our using it, in certain circumstances
  • object to our using it, in certain circumstances
  • withdraw your consent to our using it (if our use of it is based on consent)
  • data portability, in certain circumstances
  • opt out from our using it for direct marketing; and
  • lodge a complaint with the supervisory authority.

You are able to exercise these rights by contacting us using the details set out at Who should you contact with questions? below.

13.   Who should you contact with questions?

If you have any questions, or wish to exercise any of your rights, please contact us at hello@godo.fitness.

You have a right to contact the Information Commissioner’s Office (the UK’s data protection authority) with any questions or concerns. If we cannot resolve your questions or concerns, you also have the right to seek judicial remedy before a UK court.

14.   Changes to this notice

We may update this notice (and any supplemental privacy notice), from time to time. We will notify of the changes where required by law to do so.

Last modified 22 December 2019.

The previous version of our Privacy Policy can be viewed here

Sign up to be a Go:Do Pro

Tell us a little bit about you and we will be in touch to get you set up.