SGP

Privacy Policy

Last updated: March 2025

1. Introduction

SGP (SmartGymPilot) ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our website and gym management service ("Service"). By using the Service, you agree to the practices described here.

2. Information we collect

We may collect:

  • Account information: email address, password (hashed), gym name, city, and role when you register or update your profile.
  • Member data you provide: names, phone numbers, membership dates, fees, and status that you enter for your gym members.
  • Payment and billing: billing details are processed by our payment provider; we may receive limited transaction and subscription status information.
  • Usage data: how you use the Service (e.g. pages visited, actions taken) to improve our product and security.
  • Device and log data: IP address, browser type, and similar technical data in server logs.

3. How we use your information

We use the information we collect to:

  • Provide, operate, and maintain the Service.
  • Authenticate you and manage your account and subscription.
  • Send renewal reminders and other notifications you configure.
  • Process payments and send billing-related communications.
  • Improve the Service, fix errors, and develop new features.
  • Comply with legal obligations and protect our rights and the security of the Service.

4. Data sharing and disclosure

We do not sell your personal data. We may share data with:

  • Service providers: hosting (e.g. Supabase), payment processors, and email delivery — only as needed to run the Service, under contractual safeguards.
  • Legal requirements: when required by law, court order, or to protect our rights, safety, or property.
  • Business transfers: in connection with a merger, sale, or acquisition, subject to the same privacy commitments.

5. Data retention

We retain your account and member data for as long as your account is active and as needed to provide the Service. After account closure, we may retain certain data for backup, legal, or fraud-prevention purposes for a limited period. You may request deletion of your data as described below.

6. Security

We use industry-standard measures to protect your data, including encryption in transit and at rest, access controls, and secure authentication. You are responsible for keeping your password confidential and for activity under your account.

7. Your rights

Depending on your location, you may have the right to access, correct, delete, or export your personal data, or to object to or restrict certain processing. You can update account and gym details in the Service; for other requests or to delete your account and data, contact us via the Contact page. We will respond in accordance with applicable law.

8. Cookies and similar technologies

We use essential cookies and similar technologies to keep you signed in and to operate the Service. We may use analytics to understand usage; you can control non-essential cookies via your browser settings.

9. Children

The Service is not intended for users under 18. We do not knowingly collect personal data from children. If you believe we have collected such data, please contact us so we can delete it.

10. Changes to this policy

We may update this Privacy Policy from time to time. We will post the revised policy on this page and update the "Last updated" date. Continued use of the Service after changes constitutes acceptance. For material changes, we may notify you by email or through the Service.

11. Contact

For privacy-related questions or to exercise your rights, contact us via our Contact page.