top of page

Privacy Policy for Project 40

Effective Date: March 2025
 

At Project 40, we are committed to protecting your privacy. This Privacy Policy outlines how we collect, use, and protect your personal information when you visit our website, www.thisisprojec40.com or use our services. By using our website, you agree to the terms outlined in this policy.
 

1. Information We Collect

We may collect the following types of information when you use our website:

  • Personal Information: This includes your name, email address, phone number, payment information, and any other information you provide when signing up for our services or interacting with our content.

  • Usage Data: We may collect non-personal information such as your IP address, browser type, device information, operating system, and browsing behavior on our website (e.g., pages visited, time spent on the site).

  • Cookies and Tracking Technologies: We use cookies and similar technologies to enhance your browsing experience, analyze usage patterns, and personalize content.
     

2. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide and maintain our services, including access to workout videos, membership accounts, and other resources.

  • To process payments and fulfill your orders.

  • To communicate with you, including sending newsletters, updates, promotions, and customer support.

  • To improve our website and services, including analyzing usage trends and making improvements.

  • To ensure security and prevent fraud.
     

3. How We Share Your Information

We do not sell or rent your personal information to third parties. However, we may share your information in the following situations:

  • Service Providers: We may share your information with trusted third-party vendors who help us operate our website or provide services (e.g., payment processors, hosting services).

  • Legal Requirements: We may disclose your information if required by law or in response to legal processes (e.g., a subpoena).

  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.
     

4. Use of Third-Party Apps and Services

Our website is built on the Wix platform, and we may use third-party applications or services integrated with Wix to enhance functionality and improve user experience. These third-party apps may collect and process your personal data according to their own privacy policies. Examples include payment processors, email marketing services, analytics tools, and other integrations.

We encourage you to review the privacy policies of these third-party services before using them. While we strive to work with reputable third-party providers, we are not responsible for the practices of these services.
 

5. Data Security

We implement reasonable security measures to protect your personal information from unauthorized access, alteration, or destruction. However, no method of transmission over the internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security.
 

6. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access and Update: You can access and update your personal information through your account settings.

  • Opt-out: You can opt-out of receiving marketing emails by following the unsubscribe instructions in our emails.

  • Data Deletion: You can request the deletion of your personal information by contacting us directly, subject to any legal obligations we may have to retain certain information.
     

7. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time. Any changes will be reflected on this page, and the "Effective Date" will be updated accordingly. Please check this page periodically to stay informed about how we are protecting your information.
 

8. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:
info@thisisproject40.com

 

GDPR Compliance

Project 40 is committed to ensuring that your personal data is handled in accordance with GDPR and other applicable data protection laws. Below are the key points that demonstrate how we comply with GDPR:
 

1. Legal Basis for Processing Personal Data

Under GDPR, we must have a legal basis to process your personal data. The legal bases we rely on include:

  • Consent: We obtain your consent when you voluntarily provide your personal information, such as when signing up for newsletters, creating an account, or purchasing services.

  • Contractual Necessity: We process your personal data when necessary to fulfill our contract with you, such as delivering the services you have requested (e.g., access to workout videos, memberships).

  • Legitimate Interests: We may process your personal data where it is in our legitimate interests to do so, provided this does not outweigh your rights and freedoms. For example, we use personal data for analytics, marketing, or improving our services.

  • Legal Obligation: We may process personal data when required to comply with legal obligations (e.g., tax, accounting, or legal requirements).
     

2. Your Rights Under GDPR

As an individual residing in the EU/EEA, you have the following rights under GDPR:

  • Right of Access: You can request a copy of the personal data we hold about you.

  • Right to Rectification: You can request that we correct or update any inaccurate or incomplete information.

  • Right to Erasure (Right to be Forgotten): You can request that we delete your personal data under certain conditions, such as when the data is no longer needed for the purposes it was collected.

  • Right to Restrict Processing: You can ask us to restrict processing of your personal data in specific circumstances (e.g., when the data is inaccurate or processing is unlawful).

  • Right to Data Portability: You have the right to request your personal data in a structured, commonly used format for transfer to another service provider.

  • Right to Object: You can object to the processing of your personal data, particularly where it is based on legitimate interests or direct marketing.

  • Rights Related to Automated Decision-Making: We do not engage in automated decision-making that significantly affects you (such as profiling).
     

3. How to Exercise Your Rights

To exercise any of the rights outlined above, please contact us at [insert contact details]. We will respond to your request within one month, but we may extend this period by two additional months if the request is complex or numerous. You will be notified if this is the case.
 

4. Data Protection Officer (DPO)

While we do not have a formal DPO, we are committed to protecting your personal data and ensuring compliance with GDPR. If you have any concerns or need assistance regarding your rights under GDPR, please contact us using the details provided below.
 

5. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by law. Once your personal data is no longer needed, we will securely delete or anonymize it.
 

6. International Data Transfers

As part of our services, your personal data may be transferred to and processed in countries outside of the EU/EEA. We ensure that appropriate safeguards are in place to protect your data during these transfers, in compliance with GDPR requirements. This may include the use of Standard Contractual Clauses (SCCs) or other legal mechanisms for international transfers.
 

7. Third-Party Apps and Services

We use third-party apps and services integrated with Wix. Please be aware that these third parties may also process your personal data. We have selected these service providers with care, ensuring they comply with GDPR. You can review their individual privacy policies for more information.
 

8. Wix Security and Data Protection

As our website is hosted on Wix, we rely on Wix’s infrastructure to provide security and data protection. Wix uses state-of-the-art security features, including data encryption, secure data storage, and regular security updates to protect your personal data. Wix also implements firewalls, intrusion detection systems, and other security measures to prevent unauthorized access.

Wix is committed to compliance with GDPR and provides users with a range of tools and settings to help manage data privacy and security. For more information on how Wix handles your data and its security practices, you can review Wix’s own Privacy Policy and Security guidelines on their website.
 

9. Security Measures

We implement technical and organizational measures to ensure your personal data is protected against unauthorized access, disclosure, alteration, or destruction. These measures are continuously reviewed and updated to ensure the highest standards of security.

bottom of page