Skip to content

Privacy Policy

This privacy policy tells you what to expect us to do with your personal information.

Who we are

TOTA Health & Fitness LTD, company registration: 15599430, VAT: 464 180983, registered in the UK at 34 Glengall Road, London, NW6 7FB. Our website address is: totahealth.fitness. Our contact details: admin@totahealth.fitness

What information we collect, use, and why

We share information with essential third parties who help us provide our orders and store services to you. While you visit our site, we’ll track:

  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!

We’ll also use cookies to keep track of cart contents while you’re browsing our site.

When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:

  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages, if you choose to receive them

If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.

We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for 5 years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.

We will also store comments or reviews, if you choose to leave them.

We collect or use the following information to provide services and goods, including delivery:

  • Names and contact details
  • Addresses
  • Purchase or account history
  • Payment details (including card or bank information for transfers and direct debits)
  • Health information (including dietary requirements, allergies and health conditions)
  • Health and safety information
  • Account information
  • Information relating to loyalty programmes
  • Website user information (including user journeys and cookie tracking)
  • Photographs or video recordings
  • Records of meetings and decisions
  • Identification documents
  • Information relating to compliments or complaints

We also collect or use the following information to provide services and goods, including delivery:

  • Health information

We collect or use the following information for the operation of customer accounts and guarantees:

  • Names and contact details
  • Addresses
  • Payment details (including card or bank information for transfers and direct debits)
  • Purchase history
  • Account information, including registration details
  • Marketing preferences

We also collect or use the following information for the operation of customer accounts and guarantees:

  • Health information

We collect or use the following information for service updates or marketing purposes:

  • Names and contact details
  • Addresses
  • Marketing preferences
  • Location data
  • Recorded images, such as photos or videos
  • Call recordings
  • Purchase or viewing history
  • IP addresses
  • Website and app user journey information
  • Records of consent, where appropriate

We also collect or use the following information for service updates or marketing purposes:

  • Health information

We collect or use the following information for research or archiving purposes:

  • Names and contact details
  • Addresses
  • Location data
  • Recorded images, such as photos or videos
  • Call recordings
  • Purchase or viewing history
  • IP addresses
  • Website and app user journey information
  • Personal information used for administration of research
  • Personal information used for the purpose of research
  • Records of consent, where appropriate

We also collect or use the following information for research or archiving purposes:

  • Health information

We collect or use the following information to comply with legal requirements:

  • Health and safety information

We also collect or use the following information to comply with legal requirements:

  • Health information

Lawful bases

Our lawful bases for collecting or using personal information to provide services and goods are:

  • Consent
  • Contract
  • Legal obligation
  • Legitimate interest: Health details may be collected to ensure any fitness and/or nutrition plans created are suitable for clients.
  • Vital interests
  • Public task

Our lawful bases for collecting or using personal information for the operation of customer accounts and guarantees are:

  • Consent
  • Contract

Our lawful bases for collecting or using personal information for service updates or marketing purposes are:

  • Consent
  • Legitimate interest: To ensure ongoing recommendations are appropriate to the level of health and fitness of the clients.

Our lawful bases for collecting or using personal information for research or archiving purposes are:

  • Public task

Our lawful bases for collecting or using personal information for legal requirements are:

  • Consent
  • Contract
  • Legal obligation

Where we get personal information from

People directly

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service Privacy Policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Payments

We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.

Please see the PayPal Privacy Policy for more details.

Caching

This site utilises caching in order to facilitate a faster response time and better user experience. Caching potentially stores a duplicate copy of every web page that is on display on this site. All cache files are temporary, and are never accessed by any third party, except as necessary to obtain technical support from the cache plugin vendor. Cache files expire on a schedule set by the site administrator, but may easily be purged by the admin before their natural expiration, if necessary. We may use QUIC.cloud services to process & cache your data temporarily. Please see https://quic.cloud/privacy-policy/ for more details.

How long we keep information

Personal information will be kept for up to 5 years from the date of the last update.

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Who we share information with

If you request a password reset, your IP address will be included in the reset email.

Visitor comments may be checked through an automated spam detection service.

We collect information about you during the checkout process on our store.

Other organisations

  • Health care providers
  • Organisations we need to share information with for safeguarding reasons
  • Relevant regulatory authorities
  • Organisations we’re legally obliged to share personal information with
  • Publicly on our website, social media or other marketing and information media (where appropriate)

Your data protection rights

Under data protection law, you have rights including:

Your right of access – You have the right to ask us for copies of your personal data.

Your right to rectification – You have the right to ask us to rectify personal data you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.

Your right to erasure – You have the right to ask us to erase your personal data in certain circumstances.

Your right to restriction of processing – You have the right to ask us to restrict the processing of your personal data in certain circumstances.

Your right to object to processing – You have the right to object to the processing of your personal data in certain circumstances.

Your right to data portability – You have the right to ask that we transfer the personal data you gave us to another organisation, or to you, in certain circumstances.

Your right to withdraw consent – When we use consent as our lawful basis you have the right to withdraw your consent.

You don’t usually need to pay a fee to exercise your rights. If you make a request, we have one calendar month to respond to you.

To make a data protection rights request, please contact us using the contact details at the top of this privacy notice.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:

  • Order information like what was purchased, when it was purchased and where it should be sent, and
  • Customer information like your name, email address, and billing and shipping information.

Our team members have access to this information to help fulfill orders, process refunds and support you.

Concerns

If you have any concerns about our use of your personal data, you can make a complaint to us using the contact details at the top of this privacy notice.

If you remain unhappy with how we’ve used your data after raising a complaint with us, you can also complain to the ICO.

The ICO’s address:

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline number: 0303 123 1113

Website: https://www.ico.org.uk/make-a-complaint

Last updated

24 May 2024