Privacy Policy

Last updated on 09/06/2026

1. Data Controller

The controller of your personal data is the company that publishes FitPlace, whose details appear in the Legal Notices. For any question relating to the protection of your data, you may contact our Data Protection Officer (DPO) at: dpo@fitplace.eu.

2. Data Collected and Legal Bases

We collect the following categories of data, each associated with a distinct legal basis: (a) Identification data (surname, first name, email, telephone) โ€” legal basis: performance of a contract (Article 6(1)(b) GDPR); (b) Professional data (qualifications, specialties, experience, diplomas) โ€” legal basis: performance of a contract; (c) Location data (city, postal code, GPS coordinates of place of practice) โ€” legal basis: performance of a contract (geographic matchmaking); (d) Financial data (Stripe identifier, transaction history) โ€” legal basis: performance of a contract and legal obligation (accounting); (e) Browsing data (display preferences, language) โ€” legal basis: legitimate interest (service improvement); (f) Consent timestamp data (date of acceptance of the T&Cs and Privacy Policy) โ€” legal basis: legal obligation.

3. Purposes of Processing

Your data is processed for: the creation and management of your user account; connecting Coaches and Establishments; processing missions, applications and negotiations; processing payments via Stripe; sending notifications relating to your activity on the platform; content moderation and fraud prevention; compliance with our legal and accounting obligations; improving our services and user experience.

4. Sub-processors and Recipients

Your data may be disclosed to the following sub-processors, acting on FitPlace's instructions and in compliance with the GDPR: (a) Stripe Inc. โ€” payment processing (financial data) โ€” headquarters: United States, covered by the EU-US Data Privacy Framework (European Commission adequacy decision of 10 July 2023); (b) Hosting provider โ€” platform and data hosting (all data) โ€” located within the European Union; (c) Email service provider โ€” sending notifications and transactional emails. FitPlace does not sell, rent or in any way transfer your personal data to third parties for commercial purposes.

5. Transfers Outside the European Union

Data transmitted to Stripe Inc. (United States) is governed by the EU-US Data Privacy Framework, recognised by the European Commission as providing an adequate level of protection (adequacy decision of 10 July 2023). No other transfer of data outside the European Union is carried out.

6. Retention Periods

Your data is retained for the following periods: (a) Active account โ€” data retained for the duration of registration on the platform; (b) Deleted account โ€” personal data erased within 30 days of deletion, except for data required to comply with legal obligations; (c) Accounting and financial data โ€” 10 years from the close of the financial year (legal obligation, Article L.123-22 of the Code de commerce); (d) Invoicing data โ€” 10 years; (e) Conversations and messages โ€” deleted with the account, unless a legal obligation requires otherwise; (f) Consent timestamp data โ€” 5 years from the date consent was obtained; (g) Reporting and moderation data โ€” 1 year after the report is closed.

7. Your Rights

In accordance with the GDPR (Articles 15 to 22) and the French Data Protection Act (Loi Informatique et Libertรฉs), you have the following rights: the right of access to your personal data; the right to rectification of inaccurate or incomplete data; the right to erasure ('right to be forgotten') of your data, subject to legal retention obligations; the right to restriction of processing; the right to data portability in a structured format (JSON) โ€” accessible from your account settings; the right to object to processing based on legitimate interest; the right to withdraw your consent at any time, without affecting the lawfulness of processing carried out prior to withdrawal; the right to lodge a complaint with the CNIL (French data protection authority) (Commission Nationale de l'Informatique et des Libertรฉs โ€” www.cnil.fr) or any competent supervisory authority in your country of residence. To exercise your rights, contact our DPO at: dpo@fitplace.eu. We undertake to respond within one (1) month.

8. Cookies and Local Storage

FitPlace uses the browser's local storage (localStorage) to save your theme preference (light/dark). This data is strictly necessary for the operation of the interface and does not constitute a tracker within the meaning of the ePrivacy regulations. FitPlace does not use any advertising tracking cookies or third-party analytics tools. Any technical cookies deposited by Stripe in connection with payment processing are necessary for the provision of the payment service.

9. Security

FitPlace implements appropriate technical and organisational measures to protect your data: password encryption; HTTPS connections; CSRF protection on all forms; role-based access control; mandatory email verification; message content filtering (protection against the inadvertent sharing of personal contact details).

10. Amendments and Contact

FitPlace reserves the right to update this Privacy Policy. Any substantial amendment will be notified by email and/or notification on the platform at least thirty (30) days before it takes effect. For any questions: dpo@fitplace.eu.