Privacy Policy

Last updated: January 2026

1. Introduction

This Privacy Policy explains how brasteloni.top Ltd ("we", "our", or "us") collects, uses, and protects your personal information when you visit our website brasteloni.top or use our fitness analytics services. We are committed to protecting your privacy and ensuring transparency about our data practices.

2. Data Controller Information

The data controller for your personal information is:

  • Company: brasteloni.top Ltd
  • Registration Number: 69584731
  • Address: 269 Main Street, Cardiff, Wales CF9I 6GX, United Kingdom
  • Email: [email protected]
  • Phone: +44 2916678838

3. Data Collection

We collect various types of personal data when you interact with our website and services. The data we collect includes:

3.1 Information You Provide Directly

  • Contact information (name, email address, phone number)
  • Company or gym details when requesting consultations
  • Messages and enquiries submitted through contact forms
  • Account information if you register for our services
  • Billing and payment information for service subscriptions

3.2 Information Collected Automatically

  • Website usage data and analytics information
  • IP addresses and device information
  • Browser type and operating system details
  • Pages visited and time spent on our website
  • Referral sources and search terms used

3.3 Fitness Business Data

For clients using our analytics services, we may process member data provided by fitness businesses, including membership information, visit patterns, and engagement metrics, strictly for the purpose of providing analytics insights.

4. How We Use Your Information

We use the personal data we collect for various purposes related to providing and improving our fitness analytics services. How we use your information depends on the legal basis for processing:

4.1 Service Provision (Contract Performance)

  • Delivering fitness analytics dashboards and reports
  • Processing payments and managing subscriptions
  • Providing customer support and technical assistance
  • Communicating about service updates and maintenance

4.2 Legitimate Business Interests

  • Responding to enquiries and consultation requests
  • Improving our website and service offerings
  • Conducting business analysis and market research
  • Preventing fraud and ensuring system security

4.3 Legal Compliance

  • Fulfilling regulatory and legal obligations
  • Maintaining business records as required by law
  • Cooperating with law enforcement when legally required

5. Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use, please refer to our Cookie Policy.

6. Data Sharing and Disclosure

We do not sell your personal information. We may share your data in the following circumstances:

6.1 Service Providers

We work with trusted third-party service providers who assist us in delivering our services, including cloud hosting, payment processing, and customer support platforms. These providers are contractually obligated to protect your data.

6.2 Business Transfers

In the event of a merger, acquisition, or sale of business assets, your information may be transferred as part of the transaction, subject to appropriate data protection safeguards.

6.3 Legal Requirements

We may disclose your information when required by law, court order, or to protect our legal rights and the safety of our users.

7. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected and to comply with our legal obligations. Our data retention periods include:

  • Contact enquiries: 3 years from last contact
  • Customer account data: Duration of service plus 7 years for accounting purposes
  • Website analytics data: 26 months (Google Analytics default)
  • Marketing communications: Until you unsubscribe or request deletion

8. Your Rights

Under the General Data Protection Regulation (GDPR) and UK data protection laws, you have several rights regarding your personal data:

8.1 Right of Access

You can request a copy of the personal data we hold about you and information about how we process it.

8.2 Right to Rectification

You can ask us to correct any inaccurate or incomplete personal data we hold about you.

8.3 Right to Erasure

You can request that we delete your personal data in certain circumstances, such as when it's no longer necessary for the original purpose.

8.4 Right to Restrict Processing

You can ask us to limit how we use your personal data in certain situations.

8.5 Right to Data Portability

You can request a copy of your personal data in a structured, machine-readable format.

8.6 Right to Object

You can object to our processing of your personal data for direct marketing purposes or based on legitimate interests.

To exercise any of these rights, please contact us using the contact information provided in this policy.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and staff training
  • Secure data centres and backup procedures

10. International Data Transfers

We primarily process data within the United Kingdom and European Economic Area. If we transfer data outside these regions, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions.

11. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected such information, we will take steps to delete it promptly.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.

13. Contact Information

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us:

14. Supervisory Authority

You have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection matters:

  • Website: ico.org.uk
  • Phone: 0303 123 1113
  • Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF