Your Personal Information
All personal information you share with us is maintained in accordance with the Personal Information Protection and Electronic Documents Act (2000). References to UNION STATION YOGA may include its affiliates, depending on the context.
We collect Personal Data about you when you visit UNION STATION YOGA or use our services, including the following:
Sharing Your Data & Data Processors
UNION STATION YOGA does not and will not ever sell your member details or personal information to any third parties. We will also never purchase information on our members from third party sources.
UNION STATION YOGA members have the right to withdraw consent for UNION STATION YOGA to hold your personal information and membership data by cancelling your membership or by any other form of request.
UNION STATION YOGA will never disclose your personal information without your consent unless disclosure is either necessary to prevent a threat to life or health, authorised or required by law, reasonably necessary to enforce the law or necessary to investigate a suspected unlawful activity.
MINDBODY stores all data in servers and backup servers located in the United States. MINDBODY has Privacy Shield certification which complies with GDPR regulations related to transferring data outside of the EU. Click here for a detailed explanation of how the Privacy Shield requirements align with the new GDPR guidelines.
Use of Your Information
We will process your Personal Data for a variety of reasons that are justified under data protection laws in the European Economic Area (EEA) and Switzerland.
To operate UNION STATION YOGA and provide services, including to:
With your consent, including to:
Under no circumstances do we sell participant or personal information to others. Please note that we will not share health information that may have been provided in connection with a program, program withdrawal or request for refund. With your consent, we may use certain information to provide you with information about UNION STATION YOGA and its affiliates and programming. This consent is optional and you can decide to withdraw it at any time. Information collected by UNION STATION YOGA about its users is used internally by authorized employees of UNION STATION YOGA for following reasons: To process payment, register you in the program of your choice, update you when required of any possible changes of the planned services at UNION STATION YOGA, determination of those areas, features, and services that are valued the most and found most helpful. Also, we collect information to determine the appropriate participation in the activities and services provided at the UNION STATION YOGA and on our site.
Your Rights Under the GDPR
Subject to limitations set out in EEA data protection laws, you have certain rights in respect of your Personal Data. In particular, you have a right of access, rectification, restriction, opposition, erasure and data portability. Please contact firstname.lastname@example.org if you wish to exercise these rights. If you wish to complete an access request to all personal data that UNION STATION YOGA holds on you, we would ask that you provide 2 points of data verification to prove your identity, for example, your Date of Birth and Postcode.
If you have an account with UNION STATION YOGA, you generally can review and edit Personal Data in the Account by logging in and updating the information directly.
Securing Your Information
The UNION STATION YOGA website uses sophisticated security and safeguard measures to protect users' information. One such measure is our use of secure server software (SSL), to ensure that your credit card will be protected against fraudulent use while on our site.
We maintain technical, physical, and administrative security measures designed to provide reasonable protection for your Personal Data against loss, misuse, unauthorised access, disclosure, and alteration. The security measures include firewalls, data encryption, physical access controls to our data centres, and information access authorisation controls. While we are dedicated to securing our systems and services, you are responsible for securing and maintaining the privacy of your password(s) and account/profile registration information and verifying that the personal data we maintain about you is accurate and current.
If the revised version includes a substantial change, we will provide you with 30 days prior notice by posting notice of the change on the “Blog” page of our website. We also may notify Users of the change using email or other means.
Please email us at email@example.com for any inquiries or requests regarding your personal data.
If you are not satisfied by the way in which we address your concerns, you have the right to lodge a complaint with the Supervisory Authority for data protection in your country. In the United Kingdom this is the Information Commissioners Office – www.ico.org.uk