Privacy Policy

1. Introduction

Forma Fit (“we”, “us”, or “our”) operates a multi-tenant gym management platform available at formafit.app. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

By accessing or using Forma Fit, you agree to the collection and use of information in accordance with this policy. If you do not agree, please discontinue use of our service.

2. Information We Collect

We may collect the following categories of information:

• Account data: Name, email address, phone number, and password hash when you register for an account.
• Business data: Gym name, address, and configuration settings provided during onboarding.
• Member data: Information about gym members that you, as an operator, enter into the platform (names, contact details, membership status, check-in records).
• Usage data: Log data including IP addresses, browser type, pages visited, time spent, and referring URLs collected automatically when you interact with our service.
• Payment data: Billing information processed through our payment providers. We do not store full card numbers; payment data is handled by PCI-compliant processors.
• Communications: Messages, support tickets, and emails you send to us.

3. How We Use Your Information

We use collected information to:

• Provide, operate, and maintain the Forma Fit platform
• Process transactions and send related information such as receipts
• Send administrative communications including account confirmations, security alerts, and support responses
• Send marketing and promotional communications (you may opt out at any time)
• Monitor and analyze usage patterns to improve functionality and user experience
• Detect and prevent fraudulent or unauthorized activity
• Comply with legal obligations

4. Data Sharing

We do not sell your personal data. We may share information with third-party service providers who assist in operating our platform, including:

• Stripe — payment processing for membership billing and point-of-sale transactions
• Twilio — SMS and voice communications sent on your behalf to gym members
• Resend — transactional email delivery
• Google Analytics — anonymized usage analytics on our marketing pages

Each provider receives only the data necessary to perform their specific function. We require all third parties to maintain appropriate security measures.

We may also disclose information when required by law, to enforce our terms, or to protect the rights, property, or safety of Forma Fit, our customers, or the public.

5. Data Security

We implement industry-standard security measures to protect your information:

• All data is transmitted over TLS (HTTPS)
• Passwords are hashed using bcrypt or equivalent algorithms
• Database access is restricted to authorized services via environment-level credentials
• Payment data is handled entirely by PCI-compliant third-party processors

No method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we are committed to using commercially reasonable means to protect your data.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal data, subject to legal retention requirements.
• Data portability: Request your data in a structured, machine-readable format.
• Opt-out of marketing: Unsubscribe from promotional emails at any time using the link in each email.

To exercise any of these rights, contact us at support@formafit.app.

7. Cookies and Tracking

We use cookies and similar tracking technologies to operate our service and understand usage patterns. Types of cookies we use:

• Essential cookies: Required for authentication and core platform functionality. These cannot be disabled.
• Analytics cookies: Used to understand how visitors interact with our marketing pages (via Google Analytics). You may opt out via your browser settings or browser extensions.

Most browsers allow you to refuse cookies or delete existing ones. Doing so may affect your ability to use certain features of the platform.

8. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date at the top of this page and, where appropriate, notify you by email. Your continued use of Forma Fit after changes become effective constitutes acceptance of the revised policy.

9. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us: