Privacy Policy Your Privacy Matters to Us

At Atrium Fitness (New Fit Ltd) , we are committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, store, and protect your information, as well as your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

As a UK-based company, we are registered with the Information Commissioner’s Office (ICO) under Licence Number ZB542559 , which you can verify at www.ico.org.uk.

1. How We Collect and Use Your Data

We act as a Data Controller, meaning we determine how and why your personal data is processed. We collect and process your data for the following purposes:

Membership Administration: To register, manage, and maintain your membership.

Regulatory Compliance: To meet legal, financial, and regulatory obligations.

Payments & Billing: To process membership payments via our approved payment providers.

Marketing & Communication: To send you updates, promotions, and service information (you can opt out at any time).

Fraud Prevention & Security: To protect against fraud and maintain a secure environment.

Business Improvement: To analyse and improve our services based on member feedback and usage trends.

We only collect the data necessary for these purposes, and we will not use your personal information for unrelated reasons without obtaining further consent.

2. Sharing Your Data

We take data confidentiality seriously and do not sell or share your data with third parties for marketing purposes. However, to facilitate payments and comply with financial regulations, we may share your personal data with the following authorised service providers:

London & Zurich – A Financial Conduct Authority (FCA) regulated BACS-approved Direct Debit collection provider (Atrium Fitness will appear on your bank statement).

GoCardless Ltd – A Financial Conduct Authority (FCA) regulated Direct Debit collection company (Atrium Fitness will appear on your bank statement).

These providers only process your information in accordance with strict data protection agreements.

We will only share your data with any other third parties if required by law or if you provide explicit consent.

3. Your Data Protection Rights

Under UK GDPR, you have the following rights regarding your personal data:

✅Right to Access– You can request a copy of the personal data we hold about you. We will provide this free of charge within one month.

✅Right to Rectification– If your information is incorrect or incomplete, we will update it promptly.

✅Right to Erasure ("Right to be Forgotten")– You can request that we delete your personal data if there is no legal reason for us to retain it.

✅Right to Restrict Processing – You can ask us to stop processing your data while a dispute or correction is being resolved.

✅Right to Data Portability – You can request your data in a commonly used format for transfer to another provider.

✅Right to Object – You can object to how we use your data for marketing or legitimate business purposes.

✅Right to Withdraw Consent – If we process your data based on your consent, you can withdraw this at any time.

📩 To exercise any of these rights, please contact us using the details below. We will respond as soon as possible and within one month.

4. Data Retention – How Long We Keep Your Data

We will only keep your personal data for as long as necessary to fulfil our legal, financial, and operational obligations.

If you cancel your membership, we will securely retain your data for up to 5 years, unless required for legal or financial record-keeping.

If you request erasure, we will delete your data unless there is a lawful basis for retention.

All data is securely deleted when no longer required.

5. How We Protect Your Data

We use industry-standard security measures to protect your personal data against unauthorised access, loss, misuse, or disclosure.

Secure Data Storage – Your data is stored on encrypted servers with strict access controls.

Payment Security – All payment transactions are processed via FCA-regulated providers with bank-grade encryption.

Regular Security Audits – We review our policies and security measures regularly to ensure compliance with the latest standards.

If you have any concerns about data security, please contact us for further details.

6. How to Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, you can contact our

Data Protection Officer (DPO)

at:

📍New Fit Ltd t/a Atrium Fitness

39 Newnham Street, Ely, Cambridgeshire, CB7 4PQ

📞01353 668888

📧enquiries@atriumfitness.co.uk

We take privacy concerns seriously and will respond as quickly as possible.

7. Your Right to Lodge a Complaint

If you believe we have mishandled your data or not addressed your concerns satisfactorily, you have the right to contact the UK’s data protection authority, the Information Commissioner’s Office (ICO):

📍The Information Commissioner’s Office (ICO)

Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

📞0303 123 1113 (local rate) / 01625 545 745 (national rate)

🌍www.ico.org.uk

We encourage you to contact us first, as we are committed to resolving any concerns.

8. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law or improvements to our data protection practices.

Any updates will be posted on our website, and we will notify members where required.

Last Updated: March 2024

By using our services, you acknowledge that you have read and understood this Privacy Policy. If you have any questions, please contact us.