What is GDPR?
General Data Protection Regulation (GDPR) is a European law that took effect from 25 May 2018. The legislation will affect anyone living inside the EU and any organisation that holds the data of EU residents. GDPR replaces the Data Protection Act, Personuppgiftslagen (PUL).
Key rights for your as a client of By Sophia Lie AB
• Right to be informed. You can ask about personal data, how it is used, and why it is being used at any time.
• Right of access. You can request a copy of personal information we hold about you at any time.
• Right of rectification. You can update (or request updates to) personal information at any time.
• Right of erasure. You may request that we erase your personal data, cease further dissemination of the data, and potentially have third parties halt processing of the data.
• Right to object. You can request that we cease to process your data based on legitimate interest or for direct marketing.
We collect and process a variety of personal information such as name, contact information, date of birth, health, fit and proper check, bank/financial information. If we take payment from you via payment card we will maintain a transaction history but not your payment card number.
Where Data is Held
You have the option to “opt in” to receive promotional and non-promotional e-mails, texts, newsletters in order to keep you informed of any promotional offers which we believe you may be interested in. By “opting in” you also allow the software to send you automated e-mail receipts, class and scheduling confirmation and reminders. You have the right (at any time) to “opt out” of receipt of these e-mails by going to your profile section on your account (once logged in) and changing the settings.
Credit/Debit Card information
If you are monthly unlimited member at by Sophia Lie AB then you will have your credit/debit card stored on the MINDBODY software to make monthly payments or buy services on-line via the By Sophia Lie AB app. You may also choose to store your card details when purchasing services online or in store. Details of your credit/debit card are encrypted at source and we never see these details, other than the last 4 digits for identifying purposes.
Use of Data
We use your information mainly to provide you with products and services, to understand our customer needs and improve the products and services we offer, and for the day to day running of the business. We also use it to comply with the laws and regulations that apply to us and to protect the business, our customers and employees.
We use profiling and segmentation to ensure communications are relevant and timely, and to provide an ever evolving experience to our customers and the community. When building a profile we may analyse geographic, demographic and other information relating to you in order to better understand your interest and preferences.
Unless you ask us not to, we will tell you about products and services we offer and about opportunities to support us. Occasionally, this may include information about partner organisations. You have a number of legal rights with regard to your data. These include the right to request a copy of the data held by us, to request that mistakes and inaccuracies are corrected and to request that we stop processing some or all of your personal data for some or all reasons. If you ask us to stop using your data for marketing purposes, we may still contact you for reasons relating to a product or service you have signed up to.
All third parties used by By Sophia Lie AB for the purposes of marketing (i.e. e-mail and text marketing services) have a clearly defined “opt out” feature where you can choose to immediately stop receiving such information.
If your request requires all data to be removed, this could result in an end to the relationship and services provided by By Sophia Lie AB.
If you would like more information on these rights or on how to do any of the above, please contact us by email.
Safety of Data
Your data will be held on our business systems (as noted above). Where possible we do not keep more than one record for each customer. We may need to disclose your details if required to the police, regulatory bodies, specialist advisors or legal advisors. Sensitive information is deleted when no longer needed and access is restricted to those who need to use it.
Due to the nature of our business and the service we provide, it is of necessity, from time to time, that we may keep records of clients health issues they may have disclosed to us in order for us to provide appropriate remedial treatment via the services we provide. These notes are kept in MINDBODY and linked to your account and are accessed only by authorised staff who are providing the services. These records are never disclosed to third parties (except on receipt of advance written permission by you) and you have the right, at any time, to request a copy of these files or that they be destroyed. If you cease to be a client of By Sophia Lie AB, you have the right, under law, to
request that these personal health files be made available to you.
We will not share any of your information with any other third parties without your agreement unless required in order to fulfil our contract with you, required by our regulators or allowed by law.
Question and Queries