top of page
Full Width Lightboxes - 2025-02-20T191258.022.png

CGI Privacy Policy

At CGI Holistic Fitness & Spa, we are committed to protecting your privacy and ensuring that your personal and health information is handled responsibly. This Privacy Policy outlines what information we collect, how we use it, who we share it with (and when), how we protect it, and your rights regarding your data.

1. Information We Collect

To provide high-quality services, CGI Holistic Fitness & Spa collects information that is relevant to membership management, service delivery, and customer experience improvements. The types of information we may collect include, but are not limited to:

  • Personal Information: Identifiers such as name, contact details, date of birth, and other relevant details provided during membership registration.

  • Payment Information: Details related to transactions, including payment methods and billing information.

  • Health and Wellness Information: Information voluntarily provided by members for fitness assessments, personalized training, or wellness programs.

  • Usage and Interaction Data: Information about how members engage with our services, including website activity, facility usage, and communication preferences.

  • Device and Technical Data: Information about devices used to access our platforms, such as IP addresses, browser types, and operating systems.

  • Feedback and Correspondence: Responses to surveys, feedback forms, and interactions with customer service.

 We collect only the information necessary to operate our services effectively and to enhance the member experience.

2. How We Use Your Information

Your information is used only for essential business operations and is never used beyond the purposes outlined below:

  • Service Fulfillment: Processing memberships, reservations, wellness services, class sign-ups, and program enrollments.

  • Communication: Sending important updates, transactional messages, administrative notices, and promotional offers.

  • Personalization: Customizing fitness and wellness plans, content recommendations, and personalized experiences based on your preferences.

  • Operational Support: Managing accounts, processing payments, scheduling sessions, and handling customer support requests.

  • Legal Compliance: Ensuring compliance with legal, tax, regulatory, and contractual obligations.

  • Service Improvement: Monitoring service usage, gathering feedback, and conducting research to enhance quality and effectiveness.

  • Fraud Prevention & Security: Detecting unauthorized activities, enforcing policies, verifying identities, and maintaining security protocols.

  • Marketing & Engagement: Sending promotional content, event invitations, and special offers if consent is provided.

  • Emergency Situations: Notifying emergency contacts or health professionals when required for safety or well-being purposes.

  • Corporate Transactions: Managing business transitions such as mergers, acquisitions, or service expansions.

3. Health Data Privacy

We recognize the sensitivity of health-related data and handle it with the highest level of security and confidentiality, adhering to strict professional standards:

  • Explicit Consent: Health data is collected, stored, and used only with your explicit consent and solely for fitness and wellness purposes.

  • Strict Access Controls: Only authorized personnel with a legitimate need can access your health data, ensuring that it is handled by trained professionals.

  • Secure Storage: All health-related data is encrypted and stored securely, following industry-standard security protocols to prevent unauthorized access.

  • Purpose-Specific Use: Your health data is used strictly for personalized fitness plans, wellness programs, and medical emergency protocols, and is not repurposed for any other activities.

  • Prohibition on Unauthorized Sharing: We do not share, sell, or disclose your health data to third parties for any marketing, research, or non-essential purposes without your explicit permission.

  • Legal and Safety Compliance: Health data will only be disclosed when legally required or when necessary to protect your safety, such as in a medical emergency.

  • Anonymization for Research: When used for internal improvements or research, health data is anonymized to remove personal identifiers, ensuring that it cannot be linked back to you.

  • Right to Access & Deletion: You have the right to request access to your health data, request corrections, and request deletion where legally and operationally possible.

We prioritize the confidentiality, integrity, and security of your health data and apply stringent measures to protect it from misuse or unauthorized disclosure.

4. Sharing Your Information

We respect your privacy and DO NOT sell, rent, or share your personal data with any third parties for independent marketing, advertising, or unrelated business purposes. Your data is shared only in the following circumstances:

  • Essential Service Providers: We may share your information with trusted third-party vendors strictly necessary for delivering services, such as payment processors, IT support, customer service platforms, and cloud storage providers. These vendors are contractually obligated to protect your data.

  • Legal and Regulatory Compliance: We may disclose your information if required by law, including subpoenas, court orders, regulatory investigations, or law enforcement requests.

  • Safety and Security: Information may be shared in situations where it is necessary to prevent fraud, unauthorized transactions, identity theft, or any illegal activities that may harm CGI Holistic Fitness & Spa, its members, or the public.

  • Medical Emergencies: In rare cases, we may share your health-related information with healthcare professionals or emergency responders when necessary to protect your health and safety.

  • Corporate Transactions: In the event of a merger, acquisition, reorganization, bankruptcy, or asset transfer, personal data may be transferred to ensure continuity of service. In such cases, we will notify you if your data is subject to different privacy practices.

  • Affiliates and Business Partners: We may share necessary information with affiliated companies and authorized business partners who assist us in providing member benefits and exclusive offers, only when explicit consent has been provided.

  • Aggregated or Anonymized Data: We may use and share aggregated or anonymized information (which cannot be linked back to an individual) for analytics, marketing insights, and service improvements.

 Beyond these specific cases, we do NOT share your personal information with anyone.

5. Data Security

We implement strict security measures to ensure your data remains safe from unauthorized access, breaches, or misuse:

  • Access Control & Authentication: Only authorized personnel with verified credentials and a legitimate need can access sensitive information.

  • Regular Security Audits: We conduct routine security audits, vulnerability assessments, and penetration testing to identify and mitigate risks.

  • Multi-Factor Authentication (MFA): Access to sensitive systems and data is protected by MFA to enhance security.

  • Continuous Monitoring & Threat Detection: Our systems are actively monitored to detect and respond to potential threats in real time.

  • Incident Response & Breach Notification: In the rare event of a security breach, affected users will be immediately notified, and corrective measures will be taken in compliance with legal obligations.

  • Employee Training & Compliance: Staff members receive ongoing data protection training to maintain the highest security standards.

We actively prevent unauthorized access, data breaches, and misuse of your personal information through industry-leading security practices.

6. Your Rights

We are committed to ensuring that you have full control over your personal data. You have the following rights:

  • Right to Access: You may request a copy of the personal data we hold about you.

  • Right to Rectification: If any of your data is inaccurate or incomplete, you have the right to request corrections.

  • Right to Deletion: You can request the deletion of your data, provided there are no overriding legal obligations for its retention.

  • Right to Restriction of Processing: You may request a temporary halt on data processing under certain conditions.

  • Right to Data Portability: You may request your data in a structured, commonly used, and machine-readable format.

  • Right to Object: You have the right to object to data processing based on legitimate interests or for direct marketing purposes.

  • Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw that consent at any time.

  • Right to Lodge a Complaint: If you believe your rights have been violated, you can file a complaint with the appropriate data protection authority.

  • Right to Non-Discrimination: Exercising your privacy rights will not result in discriminatory treatment.

 We are dedicated to ensuring that all requests regarding data rights are handled promptly and in compliance with applicable laws.

7. Data Retention

We retain your information only as long as necessary to fulfill the outlined purposes or as legally required. Expired data is securely deleted or anonymized.

8. Cookies and Tracking Technologies

We use cookies to enhance user experience and analyze website traffic. Types include:

  • Essential Cookies: Necessary for core functionality.

  • Performance Cookies: For analyzing user interactions.

  • Marketing Cookies: To deliver relevant advertisements.

Cookie preferences can be managed through your browser or our cookie management tool.

9. Updates to This Policy

We may update this policy periodically. Updates will be posted on our website with a revised "Effective Date." Significant changes will be communicated via email or website notifications. Continued use of our services indicates acceptance of the updated policy.

Contact Us 

For questions or concerns about this Privacy Policy, please reach out to us: 

Thank you for choosing CGI Holistic Fitness & Spa. We value your trust and are dedicated to protecting your privacy.

bottom of page