Privacy Policy
Quick Navigation
Privacy Policy
Your privacy is our priority
We are committed to protecting your privacy and ensuring transparency about our data practices. This policy applies to all users of the RepSet platform.
Introduction
Welcome to RepSet (“we,” “our,” or “us”), a gym and fitness management platform designed to empower gyms, staff, and members through digital solutions. This Privacy Policy explains how we collect, use, store, and protect your personal information when you access or use our platform and services.
By using RepSet, you acknowledge and consent to the data practices described herein. We are committed to maintaining your trust and protecting your privacy in compliance with applicable data protection laws, including the Digital Personal Data Protection Act, 2023 (India) and, where applicable, GDPR.
Key Principles
- • Transparency and fairness in all data practices
- • Purpose-limited and consent-based data collection
- • Secure handling and restricted data access
- • User control, correction, and deletion rights
Information We Collect
Personal Information
- • Full name, email address, and phone number
- • Profile photo, identity verification details (if required)
- • Billing and payment information processed via Razorpay
- • Emergency contact details for gym safety purposes
Fitness & Health Data
- • Workout history, schedules, and preferences
- • Body composition and measurement data (if provided)
- • Attendance logs and performance tracking
- • Trainer feedback and goal-setting progress
Technical & Usage Data
- • Device identifiers, browser type, and operating system
- • IP address, time zone, and login timestamps
- • Feature usage analytics and interaction metrics
- • Cookies and local storage identifiers for session continuity
Communication Data
- • Emails, chat messages, and support interactions
- • Notification preferences and delivery records
- • Feedback forms and survey responses
How We Use Your Information
Platform Operations
- • Account registration, authentication, and management
- • Membership and subscription processing
- • Attendance tracking and scheduling services
- • Trainer assignments and member communication
Platform Enhancement
- • Data-driven improvements and feature updates
- • Performance monitoring and error debugging
- • Testing new functionalities with anonymized metrics
- • AI-based analytics for personalized insights
Legal and Regulatory Compliance
- • Identity verification for lawful usage
- • Prevention of fraud, abuse, or unauthorized access
- • Compliance with tax, billing, and consumer protection laws
- • Responding to lawful requests or court orders
Marketing & Communication (Optional)
- • Informing users about offers, features, and updates
- • Conducting surveys and gathering feedback
- • Sending push or email notifications with prior consent
- • Users can opt out at any time via dashboard settings
Information Sharing & Disclosure
We do not sell or rent personal data. Information is shared only when necessary for legitimate business operations, legal obligations, or user-requested actions.
Within Your Gym Ecosystem
Limited sharing between gym admins, staff, and trainers for operational and fitness tracking purposes.
Service Providers & Integrations
Third-party vendors such as Razorpay (payments), Clerk (authentication), UploadThing (storage), and analytics partners strictly under confidentiality agreements.
Legal & Safety Obligations
Information may be disclosed if required by law, subpoena, or to prevent harm, fraud, or security incidents.
Corporate Transactions
In case of merger, acquisition, or restructuring, data may be transferred securely to the new entity with notice to users.
Data Security & Protection
We apply industry-standard safeguards to prevent unauthorized access, alteration, or misuse of personal data. Security is integral to our design and operations.
Encryption & Transport Security
All data transmissions are encrypted via HTTPS/TLS and stored securely using AES-256 standards.
Infrastructure & Storage
Data is hosted on secure cloud environments (PostgreSQL, UploadThing) with restricted administrator access.
Access Control & Monitoring
Role-based permissions and continuous audit logs monitor system activity for anomalies.
Breach Response Protocol
In the event of a data breach, affected users will be notified within 72 hours as per applicable law.
Data Retention & Deletion
We retain user data only for as long as necessary to fulfill service obligations or comply with legal and financial requirements.
Your Rights & Choices
You have the right to control your personal data and exercise the following rights at any time:
Children’s Privacy
RepSet is not intended for individuals under the age of 16. We do not knowingly collect data from minors. If a minor’s data is discovered, it will be promptly deleted.
Cross-Border Data Transfers
Your data may be stored or processed in locations outside your country of residence, where data protection laws may differ. RepSet ensures all transfers are compliant with recognized safeguards such as Standard Contractual Clauses (SCCs).
Contact Us
For privacy inquiries, data access requests, or concerns about this Policy, contact us using the details below:
Get in Touch
Policy Updates & Notifications
We may revise this Privacy Policy periodically to reflect operational, legal, or regulatory changes. Updates will be communicated through:
- Email notifications to registered users for material changes
- In-app banners or dashboard notifications
- Publication of the updated policy date on this page
Important: Your continued use of RepSet services after such updates constitutes acceptance of the revised Policy.