Eliminationwycar.
Legal

Privacy Policy

Effective date:

1. Introduction and Data Controller

This Privacy Policy describes how Eliminationwycar ("we," "us," or "our") collects, uses, stores, and protects personal data when you visit our website at eliminationwycar.world, use our contact forms, participate in community fitness circles, enroll in training programs, or otherwise interact with our services.

The data controller responsible for your personal information is:

Eliminationwycar
222 Yale Ave N, Seattle, WA 98109, USA
Phone: +1 206-223-1944
Email: touch@eliminationwycar.world

We are committed to processing personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) for individuals located in the European Economic Area (EEA), the California Consumer Privacy Act (CCPA) where applicable, and other relevant international privacy frameworks.

2. Scope of This Policy

This Privacy Policy applies to all personal data collected through our website, contact forms, email communications, in-person interactions at our Seattle studio, circle registration processes, training program enrollments, and consulting session bookings. It does not apply to third-party websites or services that may be linked from our pages. We encourage you to review the privacy policies of any external sites you visit.

Our website provides general informational content about community fitness services. We do not collect health records or clinical data through our website. Please do not submit sensitive medical information through our contact forms or email.

3. Categories of Personal Data We Collect

3.1 Data You Provide Directly

When you interact with us, you may voluntarily provide the following categories of personal data:

  • Identity data: Your full name, preferred name, and username if applicable for community platform access.
  • Contact data: Email address, phone number, mailing address, and preferred communication method.
  • Communication data: Content of messages submitted through our contact form, email correspondence, and feedback you provide about our services.
  • Registration data: Information provided during circle membership registration, program enrollment, or consulting session booking, including activity preferences, schedule availability, and stated fitness goals.
  • Consent records: Records of your consent choices, including GDPR consent for data processing and cookie preferences.

3.2 Data Collected Automatically

When you visit our website, certain technical data may be collected automatically through cookies and similar technologies, subject to your cookie preferences:

  • Device and browser data: IP address, browser type and version, operating system, device type, and screen resolution.
  • Usage data: Pages visited, time spent on pages, navigation paths, referral source, and interaction patterns.
  • Location data: Approximate geographic location derived from IP address (city/region level, not precise GPS coordinates).

3.3 Data We Do Not Collect

We do not intentionally collect special categories of personal data as defined under GDPR Article 9, including data concerning health conditions, racial or ethnic origin, political opinions, religious beliefs, or biometric data. Our services are non-clinical, and we ask that you do not provide such information through our website or contact channels.

4. Legal Basis for Processing

We process your personal data only when we have a valid legal basis under applicable law:

  • Consent (GDPR Article 6(1)(a)): When you submit our contact form and check the GDPR consent checkbox, you provide explicit consent for us to process your name, email, and message content to respond to your inquiry. You may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.
  • Contract performance (GDPR Article 6(1)(b)): Processing necessary to fulfill our contractual obligations when you enroll in circles, programs, or consulting services, including managing your membership, delivering sessions, and processing payments.
  • Legitimate interests (GDPR Article 6(1)(f)): Processing necessary for our legitimate business interests, such as improving our website, ensuring security, preventing fraud, and communicating about services relevant to existing members, provided these interests are not overridden by your rights.
  • Legal obligation (GDPR Article 6(1)(c)): Processing required to comply with applicable laws, regulations, court orders, or government requests.

5. Purposes of Data Processing

We use personal data for the following specific purposes:

  • Responding to inquiries submitted through our contact form or email
  • Managing circle memberships, program enrollments, and consulting appointments
  • Delivering community fitness sessions, educational materials, and personalized activity plans
  • Processing payments and managing refund requests in accordance with our Refund Policy
  • Sending service-related communications, including schedule updates, orientation invitations, and program notifications
  • Maintaining our community platform for member check-ins and resource access
  • Analyzing website usage to improve content, navigation, and user experience (with consent for analytics cookies)
  • Measuring the effectiveness of our outreach efforts (with consent for marketing cookies)
  • Protecting the security and integrity of our website and services
  • Complying with legal obligations and responding to lawful requests from authorities

6. Data Sharing and Third Parties

We do not sell your personal data to third parties. We may share personal data with the following categories of recipients only when necessary:

  • Service providers: Trusted third-party vendors who assist with website hosting, email delivery, payment processing, analytics (with your consent), and community platform management. These providers process data only on our instructions and under appropriate data processing agreements.
  • Partner venues: When you participate in circles at partner studio or community spaces, we may share your name and session attendance information with venue operators for access and safety purposes.
  • Legal and regulatory authorities: When required by law, court order, or to protect our legal rights, safety, or the rights of others.
  • Business transfers: In the event of a merger, acquisition, or sale of assets, personal data may be transferred to the acquiring entity, subject to the same privacy protections described in this policy.

When personal data is transferred outside the EEA or to countries without an adequacy decision, we implement appropriate safeguards such as Standard Contractual Clauses approved by the European Commission.

7. Data Retention Periods

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Contact form inquiries: Retained for 24 months from the date of submission, unless a business relationship develops.
  • Circle membership and program data: Retained for the duration of membership plus 36 months after termination for record-keeping and dispute resolution.
  • Payment records: Retained for 7 years as required by applicable tax and accounting regulations.
  • Consent records: Retained for 5 years from the date of consent or withdrawal to demonstrate compliance.
  • Website analytics data: Retained for 26 months from collection, subject to cookie consent preferences.
  • Email correspondence: Retained for 36 months from the last communication in the thread.

After the applicable retention period, personal data is securely deleted or anonymized so it can no longer be associated with you.

8. Security Measures

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction:

  • HTTPS encryption for all website communications
  • Access controls limiting data access to authorized personnel on a need-to-know basis
  • Secure storage of digital records with encryption at rest where applicable
  • Regular review of security practices and vendor compliance
  • Staff training on data protection principles and incident response procedures
  • Incident response procedures for detecting, reporting, and addressing data breaches within 72 hours as required by GDPR

While we take reasonable steps to protect your data, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but commit to notifying affected individuals and relevant authorities of breaches where required by law.

9. Your Rights Under GDPR and Applicable Law

If you are located in the EEA, United Kingdom, or other jurisdictions with similar data protection laws, you have the following rights regarding your personal data:

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of inaccurate or incomplete personal data.
  • Right to erasure: Request deletion of your personal data where there is no compelling reason for continued processing.
  • Right to restrict processing: Request limitation of processing in certain circumstances.
  • Right to data portability: Receive your personal data in a structured, commonly used, machine-readable format.
  • Right to object: Object to processing based on legitimate interests or for direct marketing purposes.
  • Right to withdraw consent: Withdraw consent at any time where processing is based on consent, without affecting prior lawful processing.
  • Right to lodge a complaint: File a complaint with your local data protection supervisory authority if you believe your rights have been violated.

For California residents, additional rights under the CCPA may include the right to know what personal information is collected, the right to delete personal information, and the right to opt out of the sale of personal information. We do not sell personal information.

To exercise any of these rights, contact us at touch@eliminationwycar.world or write to our address above. We will respond within 30 days of receiving a verifiable request.

10. Cookies and Tracking Technologies

Our website uses cookies and similar technologies as described in our Cookie Policy. Non-essential cookies are placed only with your consent, which you can manage through our cookie banner or Cookie Settings panel. You may also configure your browser to reject cookies, though this may affect website functionality.

11. Children's Privacy

Our website and services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without appropriate parental consent, we will take steps to delete that information promptly. Parents or guardians who believe their child has provided personal data to us should contact us immediately.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. When we make material changes, we will update the effective date at the top of this page and, where appropriate, notify you via email or a prominent notice on our website. We encourage you to review this policy regularly.

13. Contact Information

For questions, concerns, or requests related to this Privacy Policy or our data processing practices, please contact:

Eliminationwycar — Privacy Inquiries
222 Yale Ave N, Seattle, WA 98109, USA
Phone: +1 206-223-1944
Email: touch@eliminationwycar.world