Privacy Policy

Last updated: 23 Sep 2024

Why do we have this privacy policy?

We are Gymshark and our respectful treatment of each individual and their personal data reflects our core values ​​and the values ​​of our brand(s). Therefore, we want you to know as much as possible about what we do with your personal data. Additionally, you and your personal data are protected by various laws and regulations and Gymshark is committed to complying with them and to respecting your privacy and protecting your data. While this privacy policy is quite long, we want you to be fully informed.

 

In this privacy policy, any reference to “us”, “we”, “our” or “ours” is a reference to Gymshark, and the particular part of the Gymshark group with which you have a relationship, and any reference to “you”, “your” and “yourself” is a reference to you as an individual who has a relationship or is in contact with us.

 

This Privacy Policy applies to anyone who interacts with us as a customer who has purchased one of our products or services (both in-store and online), users of apps we provide, anyone who has signed up to receive marketing materials from us, anyone who participates in our promotions/contests, and anyone who signs up to attend one of our events or who interacts with us on social media, except to the extent that the reason for your interaction with us is already covered by another privacy notice. For example, our Rest of the World Privacy Notice applies to your general use of our website(s). A copy of this can be found at https://support.gymshark.com/en-US/pages/privacy-notice-gs .

 

Please note that we have a separate privacy notice which relates to personal data collected by our video surveillance and access control systems, a copy of which can be found at https://support.gymshark.com/en/pages/privacy-notice . We also have a separate privacy notice which applies generally to individuals applying for jobs with us and which will be given to you as part of any application/interview process. Finally, we have a separate Rest of the World privacy notice which applies to anyone else who interacts with us, a copy of which can be found at https://support.gymshark.com/en/pages/privacy-notice . You should also read those privacy notices if they apply to your activities/interactions with us, as they may apply to you in addition to this privacy notice.

 

This privacy policy sets out details of how we collect and use personal information about you during and after your relationship with us, in accordance with applicable data protection laws.

 

Because this privacy policy covers a range of individuals and different types of relationships and interactions with us, not all aspects of this privacy policy will apply to you. The aspects of this privacy policy that apply to you will depend on the nature of your relationship and interactions with us. If you are unsure, you can always contact us at mydata@gymshark.com . If you are based in the EU, you can also contact our European Representative at gymshark@lionheartsquared.eu .

The person responsible for your personal data

For the purposes of data protection laws and this privacy policy, the controller of your personal data and the processing of your personal data is the part of the Gymshark group that processes your personal data. This will typically be the part of the Gymshark group that you interact or have a relationship with. As the controller of your personal data, we are responsible for deciding how we store and use your personal data. Our main trading company is Gymshark Limited (reg. no. 08130873), incorporated in England and Wales. If you are based in the UK, this company will be the controller of your personal data. If you are based outside the UK, the controller of your personal data may be another part of our group, but in most cases for the interactions covered by this privacy policy, the controller of your personal data will be Gymshark Limited. Sometimes we may share personal data with different parts of our group, so this privacy policy covers our whole group and more than one part of our group may be a controller of your personal data. Regardless of where you are located in the world, any questions you may have regarding your personal data will be handled by Gymshark Limited who can be contacted at mydata@gymshark.com . If you are based in the EU you can also contact our European Representative at gymshark@lionheartsquared.eu .

Your obligation to inform us of changes

It is important that the personal information we hold about you is accurate and up to date. Please keep us updated if your personal information changes during your interactions with us.

What happens if you do not provide personal information?

If you do not provide some of the personal information we require, it may negatively impact our ability to interact with you, for example, we may not be able to provide you with products or services you want to receive. However, in general, you are not required to provide us with your personal information.

If you have any questions or concerns, just ask!

We have appointed a Data Protection Officer (DPO) to oversee our compliance with data protection laws. If you have any questions about this privacy policy or how we handle your personal data, please contact our DPO at mydata@gymshark.com . If you are based in the EU, you can also contact our European Representative at gymshark@lionheartsquared.eu .

Changes to this Notice

We regularly monitor all of our privacy policies and may update this privacy policy at any time. The most current version of this policy is available on our website at https://support.gymshark.com/en/pages/privacy-notice or you can request a copy of it from mydata@gymshark.com . If you are located in the EU, you can also contact our European representative at gymshark@lionheartsquared.eu .

 

If there are any material changes to this privacy policy in the future, we will notify you, usually by updating the version on our website.

data protection principles

We are committed to being transparent about how we collect and process your personal data and how we comply with our data protection obligations. Data protection laws state that the personal data we hold about you:

  • Must be used in a lawful, fair and transparent manner.
  • Collected only for valid purposes that we have clearly explained to you and not used in a manner that is incompatible with those purposes.
  • Relevant to the purposes we have informed you about and limited to those purposes.
  • Be kept correct and up to date.
  • Only kept for as long as necessary for the purposes we informed you about.
  • Be kept securely.

To ensure this, we are required by applicable data protection laws to inform you of the information contained in this privacy policy. It is important that you read this document before interacting with us so that you understand how and why we process your personal data.

What personal data do we collect?

In connection with your relationship or interactions with us, we may collect and process a variety of personal data about you. This includes:

  • Personal contact information such as name, title, address (including billing address and shipping address), email address and telephone number(s).
  • Information about your date of birth, age, gender, marital status and the name of a delivery recipient.
  • Details of or relating to products or services you have ordered from us.
  • Details of apps you have licensed to use from us, as well as usage information about those apps, where they were downloaded from, traffic and communications data, and resources accessed.
  • Device Data when you use our apps or website, which may include information about the device you use and the unique device identifier, such as the IMEA number of your device, the MAC address of the device's wireless network interface, or the mobile phone used by the device, mobile network information, your mobile operating system, what type of mobile browser you use, time zone setting, the IP address, device type, usernames and account details, Location Data, which may include your current location disclosed by your own software. However, we do not use separate location tracking software.
  • Profile Data, including your user name, purchase history, interests, preferences, feedback and responses, and any inferences drawn from Personal Data to create a profile about you that reflects your preferences, characteristics, psychological trends, predispositions, behaviors, attitudes, intelligence, abilities and aptitudes.
  • Content Data, which includes information stored on your device, including login information, videos, photos and audio recordings or other digital content, check-ins or your workout data that you enter and upload, and your social media handles, posts and information about your followers where you tag us.
  • Payment details, payment card details, bank account details, financial transactions and refunds.
  • All terms and conditions relating to your relationship with us.
  • Any communication between us and you.
  • Your social media handles, social media posts, information about your social media followers, information about product/service recommendations made by you, and other aspects of your social media activity.
  • Publicly available personal information, including that which you have shared through a public platform, online or on social media.
  • Details of your sporting achievements and activities, together with related plans and progress, if you provide them to us.
  • Personal stories and information, including hobbies, interests and preferences.
  • Survey responses and results.
  • Fraud prevention information, which may include details of other transactions in which you have been involved.
  • Applications to participate in competitions, promotions or events, your participation in events and promotions and results or other related personal data.
  • How you use our website as we collect data about the pages you view and how you use them, user names, account details and passwords, entry and exit data when you view or leave our website, details of products, events and materials that may be of interest to you, online subscription information, for example when you subscribe to one of our updates, blogs or other materials, browser-related information, cookies placed on your device by our website (please see our separate Cookie Policy at https://support.gymshark.com/en-US/pages/cookie-policy for more information ).
  • Your use of the IT systems we make available to visitors to our premises, such as visitor internet facilities on our premises.
  • IP address information that allows us to track your use of our website.
  • Identification information including your driver's license and/or passport and background checks.
  • Gym workout records, professional details.
  • Size measurements that allow us to select suitable products for you in advance if you have booked a personal shopping appointment with us in our store, or if you have won a product or received it as a gift.
  • Vehicle registration number, make and model if you visit our premises or facilities or attend an event by car.
  • Details of all enquiries, complaints, claims and cases concerning us and you, including any related communications.
  • Video surveillance footage and other information obtained through electronic means such as magnetic stripe card recordings and access control systems when you visit our premises (see our separate Video Surveillance and Access Control Privacy Notice at https://support.gymshark.com/en/pages/privacy-notice ).
  • Photographs, video and audio recordings and other content, for example any taken or provided by you to us as part of our marketing or promotional campaigns, at events we host, when you enter a competition, when you post on social media, or when you are at our premises or facilities.
  • Any other personal information you provide to us.

We may also collect and process more sensitive special category personal data in some cases, including:

  • Information about your health, including all medical conditions, health and disease records, including where you tell us about any illness, injury or disability.
  • In some cases, equal opportunities information will be monitored, including information about your ethnic origin, sexual orientation, health and religion or beliefs. This will usually only be the case where it is relevant to events, promotions, campaigns or other activities that may affect you.

If you provide us with information about other people, for example friends of yours to whom you have requested us to deliver our products or for whom you have ordered a gift, they have the right to know what personal data we have about them, how we collect it and how we may use and share that information. Please inform them about this privacy policy. They have the same rights in relation to their personal data collected as set out in this privacy policy.

It is our intention not to collect any personal information about children

Our delivery of products or services (both in-store and online), our apps, our website, events, promotions, social media, content, blogs, materials and other services we offer are not intended for use by anyone under the age of 18, and we do not collect any personal information from anyone under the age of 18.

 

We may collect limited personal information relating to children in some cases where it relates to a person aged 18 or over with whom we have a relationship, for example a child attending an event or our premises when accompanied by a responsible adult, who has won a competition or is eligible to attend our event.

From which sources do we collect your personal data?

Gymshark collects your personal data in a variety of ways and from a variety of sources, as set out below:

  • Most of your personal information is collected directly from you, for example through contact with you, information you enter into your account on our website, information you enter into our app, orders you place, correspondence with you, through your applications, entry to competitions/promotions, event entries, participation in events or promotions, subscriptions, memberships, correspondence with you or other interactions with us, when you visit our premises or other personal information you provide to us.
  • From other people you know who have provided us with their personal information so that we can send you any of our products as a gift.
  • From websites, the internet, social media or other platforms, including public information sources.
  • From our website, apps and information technology and communications systems, access control systems and video surveillance and from suppliers we use in connection with them.
  • From third parties you have appointed, such as financial or legal advisors.
  • From third parties engaged by us, for example legal advisors, identity or background checkers, fraud prevention organizations, data cleansing service providers or market/data research and analytics service providers engaged by us.
  • By governments or authorities, regulators, police, law enforcement or security services.

We store your personal data in our information technology systems (including our email system and our control and video surveillance systems in our store).

What are our bases for processing your personal data?

Gymshark collects your personal data in a variety of ways and from a variety of sources, as set out below:

  • Most of your personal information is collected directly from you, for example through contact with you, information you enter into your account on our website, information you enter into our app, orders you place, correspondence with you, through your applications, entry to competitions/promotions, event entries, participation in events or promotions, subscriptions, memberships, correspondence with you or other interactions with us, when you visit our premises or other personal information you provide to us.
  • From other people you know who have provided us with their personal information so that we can send you any of our products as a gift.
  • From websites, the internet, social media or other platforms, including public information sources.
  • From our website, apps and information technology and communications systems, access control systems and video surveillance and from suppliers we use in connection with them.
  • From third parties you have appointed, such as financial or legal advisors.
  • From third parties engaged by us, for example legal advisors, identity or background checkers, fraud prevention organizations, data cleansing service providers or market/data research and analytics service providers engaged by us.
  • By governments or authorities, regulators, police, law enforcement or security services.

We store your personal data in our information technology systems (including our email system and our control and video surveillance systems in our store).

How will we use your personal information?

There are many ways in which we may need to use your personal data in connection with your relationship with us. We have set out the main uses below and identified the main applicable legal bases for processing, but there may be other specific uses linked to or covered by the uses below.

  • We will process your personal data to manage our relationship with you, not only for the direct or indirect entry or performance of a contract with you, but also for our legitimate interests. We may also rely on your consent in some limited circumstances.
  • We will process your personal data to process any order you (or someone you know, to whom the delivery is being made) place with us and to pick, pack, dispatch and track that order to ensure that it arrives safely. This is not only for the direct or indirect entry or performance of a contract with you, but also for our legitimate interests. We may also rely on your consent in some limited circumstances.
  • We will process your personal data to provide any services you request from us, not only for the direct or indirect purpose of entering into or performing a contract with you, but also for our legitimate interests. We may also rely on your consent in some limited circumstances.
  • We need to process your personal data to send you direct marketing materials about our products or services that you have asked for. This applies not only to the direct or indirect conclusion or performance of a contract with you, but also for our legitimate interests. We also need your consent when sending you marketing materials via electronic channels such as email or SMS/MMS.
  • We will process your personal data to create and develop a profile of you as a customer or potential customer of our products, services, apps and to send or display content, advertising or marketing materials that are most likely to be of interest to you. This applies not only to the direct or indirect conclusion or performance of a contract with you, but also for our legitimate interests. We also need your consent when we send you promotional materials via electronic channels such as email or SMS/MMS.
  • We also need to monitor and manage our relationship with you, which may include communicating with you, making decisions regarding your relationship with us and, in some cases, meeting with you. This is not only for the direct or indirect purpose of entering into or performing a contract with you, but also for our legitimate interests.
  • We may need to process your personal data to hold or run events, promotions or campaigns. This is in our legitimate interests and in some cases we may rely on your consent to do so, for example if you provide us with a photograph to use.
  • We may need to process your personal data to manage our social media or online relationships with you. This is in our legitimate interests and in some cases we may rely on your consent to do so, for example if you provide us with a video, photo or content to use.
  • We may need to process your personal data to hold or conduct events, promotions, campaigns and visits to our premises and to manage your participation in them. This may relate to the direct or indirect entry or performance of a contract with you, it may be in our legitimate interests or we are required to do so by law.
  • We may need to process your personal data to train our employees and ensure that they meet the high standards expected in relation to our brand. This is in our legitimate interests.
  • In some cases, we may need to carry out background, identity, fraud prevention or other checks on you to decide whether to enter into or enforce a relationship with you. This is in our legitimate interests and in some cases we are required to do so by law.
  • As a business, we may have many legal obligations relating to our relationship with you or your visit to our premises which we must comply with, for example to comply with consumer protection, data protection, health or safety laws so that we can ensure it is safe for you to visit our premises.
  • We also need to keep and maintain proper records relating to your relationship with us and information about you which is relevant to that relationship. As well as directly or indirectly entering into or performing a contract with you, it is also in our legitimate interests to do so and we may also have legal obligations to do so.
  • In some cases, we will need to process your personal data in order to prevent, detect or prosecute criminal activities. This will also be in our legitimate interests, we may also have a legal obligation or exercise a legal right to do so, and it will also be in the public interest.
  • You may have contacted us with a question, complaint or request and we need to be able to respond to you and address the points you have raised. This is also in our legitimate interests, we may also have legal obligations or have a legal right to do so.
  • We may need to collect evidence in relation to potential legal cases in which we may be involved. As well as directly or indirectly entering into a contract with you, it is also in our legitimate interests to do so, we may also have a legal obligation or exercise a legal right to do so and it may also be necessary to establish, exercise or defend legal claims.
  • To manage and record our relationship with you and related information, this may relate to entering into or performing a contract with you, either directly or indirectly, it will also be in our legitimate interests and we may also have legal obligations or exercise a legal right to do so.
  • To ensure effective general business administration and to administer our business. As well as directly or indirectly entering into or performing a contract with you, it is also in our legitimate interests to do so and we may also have legal obligations or exercise a legal right to do so.
  • To monitor the use of our website, apps and information and communications systems and social media accounts, to ensure network and information security, including preventing unauthorized access to our computer and electronic communications systems and preventing the spread of malicious software, and protecting your personal data. In addition to directly or indirectly entering into or fulfilling a contract with you, it is also in our legitimate interests and we may also have legal obligations or exercise a legal right to do so. With respect to social media, you may have already made the personal data public.
  • To conduct data analysis and analytical studies to review and better understand trends and improve our business, for use of our website, apps and social media relating to us, and the same in relation to our competitors. This is also in our legitimate interests and we may also have legal obligations or exercise a legal right to do so. Sometimes we anonymise and aggregate personal data for insight and research purposes, this data will not identify you.
  • We may conduct our market and/or product research, for example to improve our offering and product range or to improve our use of our website, apps or social media. This is in our legitimate interests.

We always strive to use your personal data in an ethical and non-intrusive manner. Your safety as a Gymshark customer or prospective Gymshark customer is very important to us. We will not use your personal information to target, segment or profile anyone based on their health (including pregnancy), adverse financial status or condition, political affiliation or beliefs, ethnic origin, religious or philosophical affiliation or beliefs, sex life or sexual orientation, data relating to an alleged or actual commission of a crime, for any unlawful or discriminatory purpose, or in any other way that would be inconsistent with your reasonable expectation of data protection.

Changing marketing preferences

You have the right to opt out of receiving marketing communications from us at any time by:

  • Update your preferences in your app settings or in your account on our website.
  • Notify us that you would like to change your marketing preferences by contacting our customer support team at support@gymshark.com .
  • Use the easy unsubscribe link in emails or other electronic marketing materials we send you.
  • Contact us by email at mydata@gymshark.com or by post at My Data Queries, GSHQ, Blythe Valley Park, 3, Central Boulevard, Solihull, B90 8AB, United Kingdom.
  • Contact our European Representative by email at gymshark@lionheartsquared.eu or by post at Lionheartsquared (Europe) Limited, 2 Pembroke House, Upper Pembroke Street 28 - 32, Dublin, D02 EK84, Republic of Ireland if you are based in the EU.

The actions listed above do not apply to service messages, such as order or tracking updates, and other non-marketing communications from us. They also do not apply to advertisements that may appear on our website, other websites or our apps. For more information about how we use cookies for advertising purposes, see the section below entitled "Automated Decision Making."

change of purpose

We will only use your personal information for the purposes for which we collected it, unless we reasonably believe we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you by updating this privacy policy on our website, so please check back frequently for updates.

 

Please note that we may process your personal data without your knowledge or consent in accordance with the rules above where this is required or permitted by law. We will rarely need to rely on your consent to process your personal data.

Automated decision-making

Automated decision-making occurs when an electronic system uses personal data to make a decision about that individual that produces legal effects concerning him or her, or similarly significantly affects him or her, without human intervention. We do not currently use this type of automated decision-making in relation to you in our business.

 

You will not be subject to decisions that will have a material impact on you that are based solely on automated decision-making unless we have a legal basis for doing so and we have notified you.

 

However, we use automated processing to enable us to show you personalized advertising while visiting our website or those of other companies and to create a customer profile for you. Any advertising you see may relate to your browsing activity on our website from your computer or other devices. 

 

We deliver these advertisements through third party market-leading specialist providers using technologies such as pixels, web beacons, ad tags, mobile identifiers and "cookies" placed on your computer or other devices (some of which are subject to your prior consent). For more information about our use of cookies and how you can remove or disable cookies at any time, please see our Cookie Policy - see https://support.gymshark.com/en-US/pages/cookie-policy .

 

We may analyse your online browsing and shopping activities and your responses to marketing communications. The results of this analysis, together with other demographic data, enable us to decide which advertising is appropriate for you and to ensure that we direct your attention to products, services, events and offers that are tailored and relevant to you. To do this, we use software and other technologies for automated processing. This enables us to provide a more personal service and experience.

 

We may review personal information held about you by third-party social media platform providers, such as the personal information available on social media platforms such as Twitter, Instagram, YouTube, Twitter and Facebook.

 

We want to inform you about products and services that are of interest and relevance to you as an individual. To help us do this, we process personal information through profiling and segmentation, identifying what our customers like and ensuring that advertisements we show you are more relevant based on demographics, interests, purchasing behavior, online web browsing activity and interaction with previous communications.

Who has internal access to your personal data?

Your personal information may be shared internally with our employees, including our customer care, order fulfillment, loyalty and retention, customer relationship management, media, insights, events, campaigns, technical and legal teams who need access to your personal information to perform their roles. We only grant access to your personal information to those of our employees who need access to your personal information.

To whom do we share your personal data externally?

When we use your personal information, we may share it with third parties, but we will only do this where it is reasonable to do so and where we have a legal basis for doing so. Third parties with whom we may share your personal information include:

  • Any third party approved by you.
  • Service providers or product providers to our business, such as information technology service providers, logistics and warehousing service providers, delivery and shipping service providers, fraud prevention organizations, marketing and public relations service providers, market research and analytics providers, data cleansing service providers.
  • Third parties who process personal data on our behalf and in accordance with our instructions.
  • Another company within our group of companies, particularly if you have a relationship with that part of our group.
  • Buyers, investors, financiers and their advisors if we sell or restructure all or a portion of our business, assets or stock, whether through a merger, restructuring or otherwise.
  • Our legal advisors and other professional advisers, including our auditors or other professional advisers appointed by you, for example a legal advisor.
  • Social media and other online platforms where relevant to our relationship with you.
  • Government agencies, HMRC, regulators, police, law enforcement, security services, courts/tribunals.

We use Google Analytics, which sets cookies to collect information about how visitors use our website. We use the information to compile reports and to improve the website. Cookies collect information in an anonymized form, including the number of visitors to the website and blog, where visitors have visited the website, and the pages they visited. To opt out of being tracked by Google Analytics across all websites visit  http://tools.google.com/dlpage/gaoptout .

 

We also work with Rakuten Advertising who may collect data when you interact with our website. The collection and use of this information is subject to Rakuten's privacy policy, which is available at https://rakutenadvertising.com/legal-notices/services-privacy-policy .

 

For more information about our use of cookies, please see our Cookie Policy at https://support.gymshark.com/en-US/pages/cookie-policy

 

We do not share personal information with third parties except as set out above, unless we are permitted to do so by law. We may provide aggregated statistical information and analytics about users of our products and services to third parties, but we will ensure that no one can be identified from this information before disclosing it.

International distribution

It is sometimes necessary to transfer your personal data outside the UK and/or the European Economic Area (EEA), or it is collected outside the UK and/or the EEA. This will usually happen when service providers to our business are located outside the EEA, or when you are based outside the EEA. These transfers will be subject to special rules under the relevant data protection laws.

 

The same applies to any transfer of personal data to another part of our group of companies based outside the UK and/or the EEA. We apply the same standards to any transfer of personal data between members of our group, regardless of where the group company is based.

 

Where we transfer your personal data outside the UK and/or the EEA, we will ensure that the transfer is subject to relevant data protection laws and that all personal data is kept secure. Our standard practice is to assess the laws and practices of the destination country and the relevant service provider, as well as the security measures to be put in place in relation to the personal data at the overseas location; alternatively, we will use standard data protection/contractual clauses. This means that you can expect a similar level of protection in relation to your personal data when making such a transfer.

 

Our directors and other key employees of ours may, in certain circumstances, access personal data from outside the UK and/or the EEA when they are abroad outside the UK or the EEA. If they do so, they will apply our security measures and the same legal protections will apply as would apply when accessing personal data from our premises.

 

In certain circumstances, the individuals to whom we disclose personal information may be located outside the UK and/or the EEA without us having an existing relationship with them, for example to a foreign police authority outside the UK and/or the EEA. In these cases, we will impose any legally required safeguards on the personal information before disclosing it.

 

If you would like further details on how we protect your personal data in relation to international transfers, please contact our DPO at mydata@gymshark.com . If you are based in the EU, you can also contact our European Representative at gymshark@lionheartsquared.eu .

How do we protect your personal data?

We are committed to keeping your personal information safe and secure and as such, we have implemented numerous security measures to protect against the loss, misuse and alteration of information under our control. We will always strive to use best-in-class security systems implemented in our networks and hardware to ensure that access and information is protected. Our security measures include:

  • Encryption of personal data where appropriate.
  • Regular cyber security assessments of all service providers that handle your personal data.
  • Regular planning and assessments to ensure we can respond to cyber security attacks and data security incidents.
  • Regular penetration testing of systems.
  • Security controls that protect our information technology systems infrastructure and our premises from external attacks and unauthorized access.
  • Regular backups of information technology system data with capabilities to correct errors or accidental deletion/modification of data.
  • Internal policies that define our information security rules for our employees.
  • Regular training for our employees to ensure that employees understand the appropriate use and processing of personal data.
  • If we engage third parties to process personal data on our behalf, they do so on the basis of our written instructions, they are subject to a duty of confidentiality and are obliged to take appropriate technical and organizational measures to ensure the security of personal data.

We take information security very seriously and will use all reasonable efforts to protect the integrity and security of the personal information we collect about you.

How long do we keep your personal data?

We will keep your personal information for the duration of your relationship with us and then for a further period. If you are a customer, this will normally be up to 6 years after you last purchased or ordered products or services from us, or used our apps. However, if you have only signed up to receive online marketing communications from us and have never ordered or purchased anything from us, we would keep your personal information for up to 2 years after you last used an account with us or last consented to continue receiving direct marketing from us. In some limited circumstances, it may be necessary to keep your personal information for longer, for example if the information remains relevant to a dispute or legal case or claim.

 

We will not keep your personal data for longer than is necessary for the purposes for which it was collected and used.

 

For further information, you can contact our DPO at mydata@gymshark.com.If you are based in the EU, you can also contact our European Representative at gymshark@lionheartsquared.eu .

YOUR RIGHTS

As a person whose personal data we collect and process, you have a number of rights. You can:

  • Withdraw your consent that you have given us, although this is only relevant where we are relying on your consent as a legal basis for using your personal data, but it is an absolute right. Once we have received notification that you have withdrawn your consent, we will no longer process your personal data for the purpose or purposes for which you originally gave your consent, unless we have another legal basis to do so.
  • Request details about how your personal data is used. This right is linked to the right of access set out below.
  • Obtain access to and details of your personal data held by us (this is commonly known as a "data subject access request"). This enables you to obtain a copy of the personal data we hold about you and to check whether we are lawfully processing it.
  • request correction of the personal data we hold about you. This enables you to correct any incomplete or inaccurate information we hold about you.
  • request the erasure of your personal data. This means that you can ask us to erase your personal data or stop processing it, for example if we no longer have a reason to process it. You also have the right to ask us to erase or remove your personal data if you have exercised your right to object to processing (see below). The right to erasure does not apply in all circumstances.
  • Object to the processing of your personal data where we rely on a legitimate interest (ours or those of a third party) and there is something about your individual situation which makes it necessary to object to processing on this ground.
  • Object to direct marketing where we process your personal data for direct marketing purposes, such as contacting you about products we think may be of interest to you. This is an absolute right.
  • Request the restriction of processing of your personal data. This enables you to ask us to stop processing your personal data for a period of time where it is inaccurate or where there is a dispute as to whether or not your interests override our legitimate grounds for processing your personal data.
  • In certain circumstances, request that your personal data be transferred to another party.
  • Object to certain automated decision-making processes using your personal data.

You should note that some of these rights, such as the right to request that we transfer your personal data to another service provider or the right to object to automated decision-making, may not apply because they are subject to specific requirements and exceptions that may not relate to personal data recorded and stored by us. For example, we do not use automated decision-making in relation to your personal data that produces legal or other material effects for you, but we do use automated processing to show you relevant advertising. However, some of your rights do not have conditions, so your right to withdraw your consent or to object to processing for direct marketing are absolute rights.

 

If you wish to exercise any of these rights, please contact our DPO at mydata@gymshark.com . If you are based in the EU, you can also contact our European Representative at gymshark@lionheartsquared.eu .

 

We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate safeguard to ensure that personal data is not disclosed to, or processed by, anyone who is not authorised to do so.

 

Although this privacy notice provides a general summary of your legal rights in relation to personal data, this is a complex area of ​​the law. For more information about your legal rights please visit the ICO website at https://ico.org.uk/for-the-public/ .

complaints

We hope that you have no reason to complain and we will always try to solve all your problems-

 

If you are resident in the UK, you may lodge a complaint with the ICO (the UK data protection authority) about our handling of your personal information or about your rights in relation to your personal information.

 

You can send a written complaint to the ICO, Wycliffe House, Water Lane, Wilmslow, SK9 5AF, United Kingdom, or visit https://ico.org.uk/make-a-complaint/.

 

If you are resident outside the UK, you may have the right to complain to your local data protection regulator – we recommend that you check your local data protection regulator’s website for more information.

Contact us

If you have any questions about our use of your personal data or this privacy policy, please contact our Data Protection Officer at mydata@gymshark.com or write to DPO, Gymshark, GSHQ, Blythe Valley Park, 3 Central Boulevard, Solihull, B90 8AB, United Kingdom. You may use these details regardless of which of our group companies you have a relationship with.If you are based in the EU, you can also write to our European Representative at gymshark@lionheartsquared.eu or to Lionheartsquared (Europe) Limited, 2 Pembroke House, Upper Pembroke Street 28 - 32, Dublin, D02 EK84, Republic of Ireland.

HOME

SHOP

SUPPORT

FAQ'S

Contact Us

Delivery

Returns & Refunds

Order Tracking

  SUBSCRIBE NOW

-ENJOY THE PERKS-
Thanks for contacting us. We'll get back to you as soon as possible.
Thanks for contacting us. We'll get back to you as soon as possible.
Title

© 2024 | HABITURN Limited | All Rights Reserved. | We Do Better!

Terms & Conditions

Terms of Use

Privacy Notice

Cookie Policy