Look, we get it - nobody actually enjoys reading these things. But your privacy matters to us, so we've tried to make this as straightforward as possible.
At Frostshard Citadel, we're not in the business of selling your info or spamming you with junk. We collect what we need to run the gym, keep you safe, and help you smash your fitness goals. That's it.
This policy covers how we handle your personal data when you train with us, use our website, or sign up for our programs. We're based in Canada, so we follow all the Canadian privacy laws (PIPEDA), plus we've added GDPR-compliant practices 'cause it's just good practice.
Personal Details: When you sign up, we grab your name, email, phone number, address, and emergency contact info. We need this stuff to keep you in the system and reach someone if you pass out from pushing too hard (hasn't happened yet, but safety first).
Health & Fitness Data: We might collect info about your fitness level, injuries, medical conditions, and training goals. This helps our coaches design programs that won't wreck you. If you work with our nutrition coaches, we'll track dietary preferences and restrictions too.
Payment Information: Credit card details, billing address - standard stuff for membership and program fees. We use secure payment processors, so we don't actually store your full card numbers on our servers.
Usage Data: When you hit our website, we collect basic tech info like IP address, browser type, pages you visit, and how long you stick around. Helps us figure out if the site's actually working or if we need to fix something.
Photos & Videos: Sometimes we shoot training sessions or group classes for social media or promotional stuff. We'll always ask first if you're cool with being in the shot.
Yeah, we use cookies - not the protein kind, unfortunately. Here's what they do:
Essential Cookies: These keep the site functioning. Without them, stuff like logging in or booking classes won't work. These aren't optional.
Analytics Cookies: We use tools like Google Analytics to see how people use our site. It's anonymous data - we're not tracking you personally, just seeing which pages get the most traffic.
Marketing Cookies: These help us show relevant ads and track if our marketing's actually working. You can disable these if you want - won't hurt our feelings.
You can manage cookie preferences through your browser settings, or use that banner at the bottom to choose what you're comfortable with.
We don't sell your data. Period. But we do share it with a few trusted partners when necessary:
Payment Processors: Companies like Stripe or Square that handle credit card transactions securely.
Email & Communication Platforms: Services we use to send newsletters and class updates.
Cloud Storage Providers: Secure servers where we store member records and business data.
Legal Authorities: Only if required by law or to protect someone's safety.
All third parties we work with are required to keep your data secure and use it only for the specific purpose we've hired them for.
We take security seriously. Here's what we do:
No system's 100% foolproof, but we do everything reasonable to keep your information safe from unauthorized access or breaches.
Your data, your rules. Here's what you can do:
Access: Ask us what personal info we have on you. We'll show you what's in your file.
Correction: If something's wrong or outdated, let us know and we'll fix it.
Deletion: Want us to delete your data? We can do that, unless we're legally required to keep it (like financial records for tax purposes).
Opt-Out: Don't want marketing emails? Unsubscribe anytime. There's a link at the bottom of every email we send.
Data Portability: Need your data in a transferable format? We can provide that.
To exercise any of these rights, just shoot us an email at info@frostshardcitadel.info or call (604) 752-8931. We'll get back to you within 30 days.
Active Members: We keep your data as long as you're training with us, plus a reasonable period after (usually 1-2 years) in case you decide to come back.
Financial Records: Tax laws require us to keep billing and payment records for 7 years.
Health & Safety Records: Liability insurance requires us to maintain injury reports and waivers for several years.
Once we don't need your data anymore, we securely delete or destroy it. No point in hoarding stuff we don't need.
If you're under 18, we need parental consent before collecting any personal info. Parents or guardians have the right to review, modify, or delete their kid's data at any time.
Our website isn't designed for children under 13, and we don't knowingly collect data from anyone that young.
We're based in Canada, and most of our data stays in Canada. However, some of our service providers (like email platforms or payment processors) might store data on servers in other countries, including the US.
When data leaves Canada, we make sure it's protected by appropriate safeguards and privacy agreements.
Privacy laws change, our services evolve, so we might update this policy from time to time. When we make significant changes, we'll let you know via email or a notice on the website.
The "Last Updated" date at the top tells you when we last revised things. Check back occasionally if you're curious.
Even though we're in Canada, we respect the EU's General Data Protection Regulation (GDPR) principles. If you're visiting from the EU, you've got extra rights:
To exercise these rights or if you've got questions about GDPR, contact us at info@frostshardcitadel.info.
Look, we know privacy policies can be confusing. If something doesn't make sense or you've got questions about how we handle your data, don't hesitate to reach out. We're here to help.