Privacy Policy

Personal Identification Info:

• Name, email address, phone number
• Mailing address and billing info
• Date of birth (we need this for liability waivers)
• Emergency contact details

Health & Fitness Data:

• Medical history and injury records
• Current fitness levels and performance metrics
• Body composition measurements
• Training goals and progress notes
• Dietary preferences and restrictions

Usage Information:

• Session attendance and booking history
• Website browsing patterns and preferences
• Payment and transaction records
• Communications with our staff and coaches

We're not gonna beat around the bush - here's exactly what we do with your info:

• Deliver our services: Schedule your sessions, track your progress, customize your training programs
• Keep you safe: Monitor health conditions, prevent injuries, maintain proper form coaching
• Process payments: Handle memberships, session bookings, and merchandise purchases
• Stay in touch: Send appointment reminders, program updates, and occasional promotions (you can opt out anytime)
• Improve our facility: Understand what's working and what isn't so we can keep getting better
• Legal compliance: Meet insurance requirements, tax obligations, and regulatory standards

We won't use your data for anything you haven't explicitly agreed to. No surprise marketing campaigns or sketchy third-party sales.

Your health information is especially sensitive, and we treat it that way. We only collect medical and fitness data that's directly relevant to keeping you safe and helping you perform better.

Who sees your health data:

• Your assigned personal trainers and coaches
• Our nutrition coaches (only if you're working with them)
• Facility management (limited access, mainly for safety protocols)
• Medical professionals (only in emergencies or with your consent)

All our staff sign confidentiality agreements, and health data is stored in encrypted, access-controlled systems. We'll never share your medical info with other members or use it for marketing purposes.

We don't sell your personal information. Full stop. Here's the only times we might share it:

• Service providers: Payment processors, scheduling software, email providers - basically the tools we need to run the gym. They're all bound by strict confidentiality agreements.
• Legal requirements: If we're legally obligated (court orders, regulatory investigations, etc.)
• Emergency situations: If there's a medical emergency and first responders need your health information
• Business transfers: If Cryst Haven Dominion is acquired or merged, your data would transfer to the new owners (we'd notify you first)
• With your consent: If you specifically ask us to share info with someone (like a physiotherapist or doctor)

That's it. We're not sharing your PRs with supplement companies or selling your email to fitness influencers.

We've got solid security protocols in place to protect your information:

• SSL encryption for all data transmitted through our website
• Encrypted storage for sensitive health and payment information
• Regular security audits and software updates
• Limited staff access based on role requirements
• Secure physical storage for paper records (locked cabinets, restricted areas)
• Automatic logout systems and password protection

Look, no system is 100% hack-proof, but we're doing everything reasonable to keep your data locked down. If there's ever a breach that affects you, we'll let you know ASAP and tell you exactly what happened.

Under Canadian privacy law, you've got rights. Here's what you can do:

• Access: Request a copy of all the personal data we have on you
• Correction: Ask us to fix any incorrect or outdated information
• Deletion: Request we delete your data (with some exceptions for legal/safety records)
• Opt-out: Unsubscribe from marketing emails or promotional communications
• Portability: Get your data in a format you can transfer elsewhere
• Withdraw consent: Change your mind about how we use your data

To exercise any of these rights, just shoot us an email at info@crysthavendominion.info or talk to our front desk staff. We'll respond within 30 days.

Note: We might need to keep some info for legal reasons (like liability waivers) even if you request deletion. We'll explain what and why if that's the case.

Our website uses cookies - those little data files that help websites remember you. Here's what we're tracking and why:

• Essential cookies: Keep you logged in, remember your session bookings, make the site actually work
• Analytics cookies: Help us understand how people use the site (like which pages are popular, where people get stuck)
• Preference cookies: Remember your settings and choices

You can disable cookies in your browser settings, but heads up - some features might not work properly if you do.

We use Google Analytics to track website usage. Their data collection is subject to Google's privacy policy. We've turned off data sharing with Google where possible.

We work with a few external companies to run our operations smoothly:

• Payment processing: Credit card and payment data is handled by PCI-compliant processors
• Scheduling software: Our booking system is hosted by a secure third-party provider
• Email communications: We use an email service provider for newsletters and appointment reminders
• Cloud storage: Some data is backed up to secure cloud servers

All these companies are contractually obligated to protect your data and can't use it for their own purposes. We've vetted them for security and privacy compliance.

If you click links to external websites (like our social media pages), you're subject to their privacy policies, not ours. We don't control what they do.

Our programs are designed for adults and athletes aged 16+. If you're under 19 in BC, we need parental consent before collecting your personal information or letting you train with us.

Parents or guardians have the right to:

• Review any information we've collected about their child
• Request deletion of that information
• Refuse to allow further collection or use

We don't knowingly collect data from kids under 13. If you think we've accidentally collected info from someone that young, let us know immediately and we'll delete it.

We might update this privacy policy from time to time as our services evolve or laws change. When we do, we'll:

• Update the "Last Updated" date at the top
• Post the new version on our website
• Send you an email if the changes are significant
• Give you a chance to review and accept major changes

If you keep using our services after we post changes, that means you're cool with the updated policy. If you're not okay with the changes, you can close your account - just talk to us and we'll help you through that process.

Got questions about how we handle your data? Want to exercise your privacy rights? Just want to chat about our policies? We're here for it.

Reach out to us:

Email: info@crysthavendominion.info
Phone: (604) 555-0187
Address: 2850 Granville Street, Vancouver, BC V6H 3J5

We'll get back to you within 2 business days. For formal privacy complaints or concerns, you can also contact the Office of the Privacy Commissioner of Canada.