Data Privacy Policy

Last Updated: August 01, 2025

1. Introduction 2. Scope & Definitions 3. Information We Collect 4. How We Use Data 5. Legal Bases 6. Data Sharing & Processors 7. Security 8. Data Retention 9. Your Rights 10. Cookies 11. Children’s Data 12. International Transfers 13. Changes to This Policy 14. Contact

1. Introduction

Welcome to Unimanage Gym Management Software ("Unimanage", "we", "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you use our website, software, and related services (collectively, the "Services"). By using the Services, you agree to the practices described in this policy.

2. Scope & Definitions

Personal Data means any information that identifies or relates to an identifiable individual. Customer refers to the gym/business that subscribes to our Services. End Users are staff or members who access the application under a Customer account.

3. Information We Collect

  • Account & Contact: name, email, phone, business details.
  • Operational: membership plans, attendance, billing, transactions.
  • Authentication: usernames, role/permissions; passwords stored as hashed values.
  • Technical: device, browser type, IP address, logs for security and diagnostics.
  • Support: tickets, emails, attachments you submit to us.

4. How We Use Data

  • Provide, maintain, and improve the Services.
  • Authenticate users and enforce access controls.
  • Process payments and generate invoices/reports.
  • Communicate about updates, security alerts, and support.
  • Comply with legal obligations and prevent misuse.

6. Data Sharing & Processors

We do not sell personal data. We may share limited data with vetted service providers (e.g., hosting, email, payment gateways) strictly under data processing agreements and only for service delivery. Access is restricted to authorized personnel.

7. Security

  • Encryption in transit (HTTPS/TLS) and at rest for sensitive fields.
  • Role-based access control and least-privilege principles.
  • Network firewalls, periodic updates, and security monitoring.
  • Audit logs for critical actions and sign-ins.

8. Data Retention

We retain data for as long as a Customer account remains active or as needed to provide the Services. Upon termination or valid request, data is deleted or anonymized per internal policy, subject to legal retention requirements.

9. Your Rights

Subject to local laws, you may request access, correction, export, or deletion of your personal data. Customers can also self-export selected data from within the product. For requests, see Contact below.

10. Cookies

We use essential cookies for login/session management and optional analytics cookies to improve the product. You can control cookies via your browser settings.

11. Children’s Data

Our Services are not intended for children under the age of 16. We do not knowingly collect personal data from children.

12. International Transfers

Where data is transferred across borders, we use appropriate safeguards such as contractual clauses to protect your information.

13. Changes to This Policy

We may update this policy from time to time. Material changes will be notified via the product or email.

14. Contact

Address: M-3, Gali No. 7, Mamura, Sector 66, Noida, Uttar Pradesh, 201301