Fitproof
Sign InSign Up Free

Privacy Policy

Last updated: February 25, 2026

At Fitproof (“Company”, “we”, “us”, or “our”), we are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform (www.fitproof.in), website, and services. This policy complies with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and other applicable Indian laws.

1. Information We Collect

We collect information that you provide directly to us, information collected automatically when you use our services, and information from third-party sources.

Personal Information

  • Full name, email address, phone number, and business details when you create an account
  • Gym name, address, city, and operational information
  • Trainer and member data that you input into the platform (names, contact details, attendance records)
  • Communications you send to us, including support requests and feedback

Payment Information

  • Payment transactions are processed through Razorpay, our third-party payment gateway
  • We do not store your credit card numbers, debit card details, UPI IDs, or banking credentials on our servers
  • Razorpay may collect and process payment-related data in accordance with their own privacy policy. You can review Razorpay's privacy policy at razorpay.com/privacy
  • We store only transaction references, amounts, dates, and payment status for your billing records

Automatically Collected Information

  • Device information (browser type, operating system, device identifiers)
  • Log data (IP address, access times, pages viewed, referring URLs)
  • Usage data (features used, actions taken within the platform)
  • Location data (approximate location based on IP address)

2. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve our gym management platform and services
  • To process subscription payments and send related information, including confirmations and invoices
  • To send technical notices, updates, security alerts, and administrative messages
  • To respond to your comments, questions, and customer service requests
  • To communicate about products, services, offers, and events (you can opt out at any time)
  • To monitor and analyze trends, usage, and activities to improve user experience
  • To detect, investigate, and prevent fraudulent transactions and unauthorized access
  • To comply with legal obligations and enforce our Terms of Service

3. Data Sharing & Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your information only in the following circumstances:

  • Payment Processor (Razorpay): We share necessary transaction details with Razorpay to process your subscription payments securely. Razorpay is PCI-DSS compliant and handles all payment data according to industry security standards.
  • Infrastructure Providers: We use Supabase for database hosting and Railway for application hosting. Your data is stored securely on their infrastructure with encryption at rest and in transit.
  • Email Service Providers: We use email services to send transactional and notification emails.
  • Legal Requirements: When required by law, regulation, legal process, or governmental request under applicable Indian law.
  • Business Transfers: In connection with a merger, acquisition, or sale of all or a portion of our assets, with prior notice to users.
  • With Your Consent: When you have given us explicit permission to share your data.
  • Aggregated Data: We may share anonymized, aggregated data that cannot identify you individually for analytics and research purposes.

4. Payment Data Security

Fitproof takes payment security seriously. Here is how we protect your financial data:

  • All payment processing is handled by Razorpay, which is PCI-DSS Level 1 compliant — the highest level of security certification in the payment industry
  • We never store, process, or have access to your full card numbers, CVV, UPI PIN, or net banking passwords
  • All payment pages use 256-bit SSL encryption
  • We only store transaction IDs, payment amounts, dates, and status for record-keeping
  • Razorpay's security practices are audited by PCI-qualified security assessors (QSA)

5. Cookies & Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your activity on our platform:

  • Essential Cookies: Required for the platform to function properly (authentication, session management, security). These cannot be disabled.
  • Analytics Cookies: Help us understand how users interact with our platform to improve the experience. You can opt out of these.
  • Preference Cookies: Remember your settings and preferences (theme, language) for a better experience.

You can control cookie preferences through your browser settings. Disabling essential cookies may prevent you from using certain features of our platform.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information, in compliance with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. These measures include:

  • Encryption of data in transit using TLS/SSL protocols
  • Encryption of sensitive data at rest in our database
  • Row-Level Security (RLS) policies ensuring each gym owner can only access their own data
  • Secure authentication with email verification and password hashing
  • Regular security assessments of our infrastructure
  • Access controls limiting who within our organization can access user data

While we strive to protect your personal information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security but are committed to maintaining industry-standard protections and promptly addressing any security incidents.

7. Data Retention

We retain your personal information as follows:

  • Active accounts: Your data is retained for as long as your account is active and you maintain a subscription
  • After cancellation: Your data is retained for 30 days after subscription cancellation, giving you time to reactivate or export your data
  • After account deletion: Your data is permanently deleted within 30 days of account deletion, except where retention is required by law
  • Payment records: Transaction records are retained for 7 years to comply with Indian tax and accounting regulations
  • Legal obligations: Certain data may be retained longer if required by applicable Indian law or regulation

8. Your Rights

Under applicable Indian data protection laws, you have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you
  • Right to Correction: You can request correction of inaccurate or incomplete personal data
  • Right to Withdrawal of Consent: You can withdraw your consent for data processing at any time by contacting us. Note that withdrawal may affect your ability to use certain platform features
  • Right to Data Portability: You can request your data in a structured, commonly used format
  • Right to Erasure: You can request deletion of your personal data, subject to legal retention requirements
  • Right to Lodge a Complaint: You may file a complaint with the appropriate regulatory authority if you believe your data has been mishandled

To exercise any of these rights, please contact us at fitproof.help@gmail.com. We will respond to your request within 30 days.

9. Children's Privacy

Our platform is designed for use by gym owners and fitness professionals, and is not intended for use by children under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take steps to delete it promptly. If you believe that a child under 18 has provided us with personal information, please contact us at fitproof.help@gmail.com.

10. Third-Party Links & Services

Our platform may contain links to third-party websites or services, including but not limited to Razorpay for payment processing. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you interact with through our platform.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

  • Posting the updated policy on this page with a new “Last updated” date
  • Sending an email notification to your registered email address
  • Displaying a notice within the platform dashboard

We encourage you to review this policy periodically to stay informed about how we are protecting your data.

12. Grievance Officer

In accordance with the Information Technology Act, 2000 and the rules made thereunder, the details of the Grievance Officer are provided below. If you have any concerns or complaints regarding the processing of your personal data, you may contact:

Grievance Officer

Name: Piyush Jangir

Designation: Founder & CEO

Email: fitproof.help@gmail.com

Address: Jaipur, Rajasthan, India

Response Time: Within 48 hours of receiving the complaint

Resolution Time: Within 30 days of acknowledgment

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Fitproof

Operated by: Piyush Jangir (Sole Proprietor)

Email: fitproof.help@gmail.com

Address: Jaipur, Rajasthan, India

Website: www.fitproof.in

You can also reach us through our Contact Page.