WorkoutBattle App – Privacy Policy

Article 1: Introduction

This privacy policy applies to the WorkoutBattle website and mobile application.

It explains:

• How personal data is collected and processed (e.g., name, age, email, location, IP address).
• User rights regarding their data.
• Who is responsible for data processing.
• Whether the data is shared with any third parties.
• Our cookie policy.

This policy complements the Terms of Use and Legal Notice available at: https://movelytics.fr/workoutbattle-cgu

Article 2: General Principles

In compliance with Regulation (EU) 2016/679 (GDPR), data collection and processing follows these principles:

• Lawfulness, fairness, and transparency – data is collected only with user consent and clearly explained.
• Purpose limitation – data is collected for specific, legitimate objectives.
• Data minimization – only necessary data is collected.
• Limited retention – data is kept only as long as required.
• Integrity and confidentiality – all collected data is secured and confidential.

Data collection and processing is lawful only if it meets one of the following conditions:

• User has given explicit consent.
• It is necessary for a contract.
• It fulfills a legal obligation.
• It protects vital interests.
• It serves the public interest or official authority.
• It is justified by the controller’s or third party’s legitimate interests.

Article 3: Data Collected

A. Types of Data

Data collected includes first name, last name, and email address.

Collected during user registration or login.

Data is stored securely until the user deletes their account.

Purpose: to provide access to the WorkoutBattle app.

Legal basis: user consent and legal obligations.

B. Data Sharing

Collected data is not shared with third parties. It is only processed by the site’s editor (Movelytics).

C. Hosting

The site is hosted by Amazon Web Services, Unit 27 – 6400 Cork Airport Business Park – Kinsale Road – Ireland.

Data is processed and hosted exclusively within France.

Article 4: Data Controller & DPO

A. Data Controller

Fabrice Sepret – fabrice@movelytics.fr

B. Responsibilities

The controller ensures data is protected, not shared without notice, and used only for stated purposes. Users will be notified of any corrections or deletions unless this involves disproportionate effort.

C. Data Protection Officer (DPO)

Fabrice Sepret also acts as DPO. He ensures compliance with privacy regulations. Contact: fabrice@movelytics.fr

Article 5: User Rights

Users have the right to request access, correction, deletion, or portability of their personal data, and to object to or restrict processing.

• Right to access, rectify or delete (by emailing: fabrice@movelytics.fr)
• Right to data portability (email request)
• Right to restrict or object to processing
• Right not to be subject to automated decision-making
• Right to define how their data should be handled after death
• Right to file a complaint with CNIL: https://www.cnil.fr

Children’s Data

Users under age 15 must provide parental consent to allow data collection. The editor reserves the right to verify the user's age.

Article 6: Changes to the Policy

It may be updated for legal compliance. Last update: 25/01/2025.

Article 7: User Acceptance

By browsing the site, the user acknowledges having read, understood, and accepted this privacy policy, especially regarding the collection and processing of personal data.