Privacy Policy

Effective Date: April 9, 2026 | Last Updated: May 20, 2026

1. Introduction

FitOps Pro LLC ("Company," "we," "us," or "our") operates the FitOps Pro platform ("Platform," "Service"), a software-as-a-service (SaaS) business management platform accessible via web application and mobile application. This Privacy Policy describes how we collect, use, disclose, retain, and protect the personal information of users who access or use our Service, including fitness coaches ("Coaches") and their clients ("Clients").

By accessing or using the Platform, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree, you must not access or use the Platform.

This Privacy Policy applies to all information collected through our Platform, our mobile applications, and any related services, sales, marketing, or events (collectively, the "Services").

2. Information We Collect

2.1 Coach Account Information

When a Coach registers for and uses the Platform, we collect:

Full name, email address, phone number
Business name and business address
Employer Identification Number (EIN) or Tax Identification Number
Login credentials (password stored in hashed form)
Profile and branding information (logo, colors, business description)
Subscription and billing information (processed by Stripe; see Section 5)
Communication preferences and settings

2.2 Client Information

Coaches add their Clients to the Platform. Client information may include:

Full name, email address, phone number
Health and fitness data, including but not limited to: body weight, body measurements, body fat percentage, progress photos, fitness goals, workout logs, exercise performance data, and check-in responses
Health device data, including step counts, sleep duration, and sleep quality data synced from Apple HealthKit or Google Health Connect
Nutritional information and dietary data
Communication records (messages, voice messages, call logs)
Payment information (processed by Stripe; card details are never stored on our servers)
Mobile device information when using the FitOps Pro mobile application

2.3 Device and Usage Information

We automatically collect certain information when you access the Platform:

Device type, operating system, and version
Browser type and version (for web application)
IP address and approximate geographic location
Pages viewed, features used, and actions taken within the Platform
Date, time, and duration of visits
Referring URL and search terms used to find our Platform
Crash reports and performance diagnostics
Push notification tokens (for mobile application)

2.4 Communication Data

When Coaches and Clients communicate through the Platform, we collect:

SMS and text message content, timestamps, and delivery status
Voice call records, including duration and timestamps
In-app chat messages, including text, voice messages, and media
Email communications sent through the Platform
Communication opt-in and opt-out records

2.5 AI-Processed Data

Certain data is processed using artificial intelligence services:

Audio recordings submitted via the Platform may be transcribed using AI-powered transcription services
Check-in responses and health data may be analyzed to generate AI-powered summaries and action items
Transcription and summary outputs are stored within the Platform

2.6 Health and Fitness Device Data

With your explicit permission, the FitOps Pro mobile application may access:

Apple HealthKit data: Step count and sleep analysis data. We read this data only with your explicit authorization through the iOS Health permissions prompt. We do not write data to HealthKit. HealthKit data is not used for advertising or marketing purposes and is not sold to third parties or data brokers.
Google Health Connect data: Step count and sleep session data. We access this data only with your explicit permission through the Health Connect permissions prompt. We do not write data to Health Connect.

You may revoke access to HealthKit or Health Connect data at any time through your device settings. Revoking access will prevent the Platform from syncing new health data but will not delete previously synced data from the Platform.

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Service Delivery and Operations

To create, maintain, and manage your account
To provide, operate, and improve the Platform and its features
To process payments and manage subscriptions
To facilitate communications between Coaches and Clients
To deliver workout programs, track progress, and manage coaching relationships
To sync and display health and fitness data from connected devices

3.2 Communications

To send transactional messages (account verification, password resets, payment confirmations, billing notifications)
To deliver Coach-to-Client communications via SMS, voice, email, WhatsApp Business, and in-app messaging
To send service-related announcements and updates
To provide customer support and respond to inquiries

3.3 AI Processing

To transcribe audio and video submissions for Coach review
To generate summaries and action items from check-in data
To provide data-driven insights to Coaches about Client progress

3.4 Analytics and Improvement

To analyze usage patterns and improve the Platform
To diagnose technical issues and improve performance
To develop new features and services

3.5 Legal and Compliance

To comply with legal obligations and regulatory requirements
To enforce our Terms and Conditions
To protect against fraud, abuse, and unauthorized access
To respond to legal processes (subpoenas, court orders, government requests)

4. SMS, Voice, Email, and WhatsApp Communications

4.1 Contact Form SMS Communications

When you submit our public contact form at fitopspro.com/contact, you may optionally consent to receive SMS text messages from FitOps Pro LLC at the phone number you provide. The form presents two separate, independent SMS consent checkboxes — one for transactional messages and one for marketing messages. You may check either, both, or neither.

Both checkboxes are optional and unchecked by default. Neither is required to submit the form or to receive a response from us. If you leave both unchecked, we will reply to your inquiry by email or voice call only, and your phone number will not be added to any SMS list.

Transactional SMS Consent (Optional Checkbox 1): If you check the transactional SMS box, you will receive non-marketing SMS from FitOps Pro LLC related directly to your inquiry, including: replies to your message, demo-scheduling confirmations, onboarding assistance, and account notifications. These messages are sent on an as-needed transactional basis.

Marketing SMS Consent (Optional Checkbox 2): If you check the marketing SMS box, you will additionally receive promotional and marketing SMS from FitOps Pro LLC, including: platform feature announcements, content updates, special offers, and product news. You may consent to transactional messages without consenting to marketing, and vice versa.

For both consent types: message frequency varies. Message and data rates may apply. Reply STOP to any message to opt out of further SMS of that type, or HELP for help. You may also revoke either consent at any time by emailing [email protected]. Opting out of SMS does not affect your ability to contact us through other channels.

Immediately after you opt in via the contact form, FitOps Pro LLC sends an automated confirmation SMS to the phone number provided that reads: "You are subscribed to SMS from FitOps Pro LLC. Msg frequency varies. Msg&Data rates may apply. Reply HELP for help, STOP to cancel." This serves as a final consent confirmation and provides STOP/HELP instructions.

FitOps Pro LLC records the following information at the time of opt-in, solely for audit and compliance purposes: which checkbox(es) you checked, the exact disclosure text shown for each consent type, the timestamp of opt-in, the source URL (fitopspro.com/contact), and the IP address and user-agent of the submitting device.

4.2 Coach Communications Consent

By registering for the Platform as a paid Coach, Coaches consent to receive transactional SMS messages, voice calls, and emails from FitOps Pro LLC related to their account and service operations. These communications may include:

Account verification and security notifications
Billing alerts, payment confirmations, and payment failure notifications
Service updates and platform announcements
Client activity notifications

Coach SMS consent is collected at the time of paid account registration via acceptance of our Terms of Service (Section 7.1 — Coach Consent to Platform Communications). Message frequency varies based on account activity. Message and data rates may apply. Coaches may opt out of non-essential communications at any time by replying STOP to any SMS message or by contacting [email protected].

4.3 Coach-to-Client Communications

The Platform enables Coaches to communicate with their Clients via SMS, voice calls, email, and WhatsApp Business messaging using dedicated communication channels provisioned through our third-party providers (Twilio for SMS and voice; Amazon Web Services Simple Email Service (SES) for email; Meta Platforms for WhatsApp Business via the WhatsApp Business Cloud API). Coaches are assigned dedicated phone numbers, may authenticate custom email sending domains, and may connect their own WhatsApp Business Account through Meta's official onboarding flow.

Coach Responsibility for Client Consent: Coaches are solely responsible for obtaining proper consent from their Clients before initiating SMS, voice, email, or WhatsApp communications through the Platform. This includes:

Obtaining express written consent from Clients before sending SMS messages, as required by the Telephone Consumer Protection Act (TCPA) and applicable state laws
Clearly informing Clients of the types of messages they will receive, message frequency, and that message and data rates may apply
Providing Clients with clear opt-out instructions (e.g., reply STOP to any SMS message)
Honoring all opt-out requests promptly and maintaining opt-out records
Complying with all applicable federal, state, and local laws governing electronic communications

4.4 Client Opt-Out Rights

Clients may opt out of communications at any time by:

Replying STOP to any SMS message received through the Platform
Blocking the Coach's WhatsApp Business number directly within WhatsApp, or sending "STOP" to the Coach's WhatsApp number
Using the unsubscribe link included in marketing emails (transactional emails such as receipts and account notifications remain non-optional while the account is active)
Contacting their Coach directly to request removal from messaging
Contacting us at [email protected]

After opting out of SMS, Clients will receive a single confirmation message. Opting out of one channel does not affect the Client's account status or access to other Platform features, and Clients may continue to receive transactional service messages over remaining channels.

4.5 Supported Carriers

SMS services are supported on all major U.S. carriers. Carriers are not liable for delayed or undelivered messages.

4.6 SMS Mobile Information and Data Sharing

No Sharing of Mobile Information. The mobile phone numbers and mobile information that users provide to FitOps Pro LLC in connection with SMS communications will not be shared with third parties or affiliates for marketing or promotional purposes. No mobile information will be shared with third parties or affiliates for marketing or promotional purposes; this exclusion explicitly includes our SMS opt-in data, mobile phone numbers, and consent records collected via the contact form, Coach signup, or any other opt-in path described in this Section 4.

Subcontractor Use. Information sharing with subcontractors who perform support services on our behalf — including our SMS gateway provider (Twilio Inc.) and our database provider (Supabase Inc.) — is permitted solely for the purpose of providing the SMS service itself, and these subcontractors are contractually prohibited from using mobile information for marketing or promotional purposes.

Message Frequency. Message frequency varies. Messages are sent on an as-needed transactional basis based on user activity and the messages the user has opted in to receive. We do not send recurring scheduled marketing blasts.

Message and Data Rates. Message and data rates may apply. Standard message and data rates from your wireless carrier may apply to any SMS messages you send or receive in connection with the FitOps Pro LLC SMS program.

Opt-Out. Users may opt out of SMS at any time by replying STOP to any message, by emailing [email protected], or by contacting us at the address listed at the bottom of this Privacy Policy. Reply HELP for help.

5. Third-Party Service Providers

We use the following third-party service providers to operate the Platform. Each provider processes data in accordance with their own privacy policies:

5.1 Stripe

Purpose: Payment processing for Coach subscriptions and Coach-to-Client billing.

Stripe collects and processes payment card information directly. We do not store credit card numbers, CVVs, or full card details on our servers. Stripe is a PCI-DSS Level 1 certified service provider. For more information, see Stripe's Privacy Policy.

5.2 Twilio

Purpose: SMS messaging and voice call services.

Twilio processes phone numbers, message content, call recordings (if applicable), and delivery/call metadata. Each Coach is assigned a dedicated phone number provisioned through Twilio. For more information, see Twilio's Privacy Policy.

5.3 Amazon Web Services (AWS SES)

Purpose: Transactional and Coach-to-Client email delivery.

AWS Simple Email Service processes email addresses, email content, and delivery metadata. Coaches may authenticate custom sending domains via DKIM, SPF, and DMARC for branded email delivery from their own domain. For more information, see AWS's Privacy Notice.

5.4 Supabase

Purpose: Database hosting, authentication, and file storage.

Supabase hosts our database infrastructure and stores all Platform data, including user accounts, fitness data, communications, and uploaded files. Data is encrypted at rest and in transit. For more information, see Supabase's Privacy Policy.

5.5 OpenAI

Purpose: AI-powered transcription and content summarization.

Audio and text data may be sent to OpenAI's API for transcription and summary generation. We use OpenAI's API services, which means data sent to OpenAI is not used to train their models. For more information, see OpenAI's Privacy Policy.

5.6 Apple HealthKit

Purpose: Reading step count and sleep data from iOS devices.

HealthKit data is accessed only with explicit user permission and is used solely for displaying health metrics within the Platform. HealthKit data is not used for advertising, is not sold to data brokers, and is not shared with third parties except as needed to provide the Service. Our use of HealthKit data complies with Apple's HealthKit guidelines.

5.7 Google Health Connect

Purpose: Reading step count and sleep data from Android devices.

Health Connect data is accessed only with explicit user permission and is used solely for displaying health metrics within the Platform. Health Connect data is handled in accordance with Google's Health Connect developer requirements.

5.8 Expo / React Native

Purpose: Mobile application framework.

Our mobile application is built using Expo and React Native. Expo may collect anonymized crash reports and performance diagnostics to help us improve application stability. For more information, see Expo's Privacy Policy.

5.9 Netlify

Purpose: Web application hosting.

Netlify hosts our web application and may process IP addresses and request metadata for content delivery and security purposes. For more information, see Netlify's Privacy Policy.

5.10 Meta Platforms (WhatsApp Business Cloud API)

Purpose: Coach-to-Client messaging over WhatsApp.

FitOps Pro LLC is a designated Tech Provider with Meta Platforms. Coaches who choose to use WhatsApp messaging connect their own WhatsApp Business Account to the Platform through Meta's official onboarding flow. Meta processes phone numbers, message content (including text, media attachments, and templates), delivery receipts, and conversation metadata in accordance with their own policies. Each Coach's WhatsApp data is isolated to their own connected account and is used solely to enable that Coach to communicate with their Clients. For more information, see WhatsApp Business Policy and Meta's Privacy Policy.

6. Cookies and Similar Technologies

We use only the cookies and similar technologies strictly necessary to operate the Platform. We do not currently deploy non-essential cookies (such as analytics, advertising, or behavioral tracking) on the public marketing website at fitopspro.com. The authenticated Coach Hub web application (app.fitopspro.com) uses first-party authentication and preference cookies only.

6.1 Strictly Necessary Cookies

Required for authentication, session management, security, fraud prevention, and core Platform functionality. These cannot be disabled without impairing Platform functionality. Under the GDPR, the UK Privacy and Electronic Communications Regulations (PECR), and the EU ePrivacy Directive, your consent is not required for strictly necessary cookies.

6.2 Preference Cookies

Used to remember your settings (e.g., theme, display options, last-viewed page) across sessions within the authenticated Coach Hub. These are first-party cookies that do not track activity across other websites.

6.3 Future Use of Analytics or Marketing Cookies

If we ever introduce analytics, advertising, or other non-essential cookies, we will:

Display a cookie consent banner before any non-essential cookie is set
Obtain your explicit opt-in consent in accordance with the GDPR, UK PECR, and the EU ePrivacy Directive
Allow you to withdraw consent at any time with the same ease with which you provided it
Update this Privacy Policy and notify registered users of the change

6.4 Browser Controls and Privacy Signals

You can manage cookie preferences through your browser settings. Disabling strictly necessary cookies will impair Platform functionality. Our Platform does not currently respond to "Do Not Track" or Global Privacy Control (GPC) browser signals because we do not process any data those signals are designed to opt out of. We will honor GPC signals from EEA, UK, and California residents as a valid opt-out the moment we introduce any non-essential tracking or sale/sharing of personal information.

7. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

Coach-Client Relationship: Client data entered into the Platform is accessible to the Coach who manages that Client's account. Coaches control the collection and use of their Clients' data within the Platform.
Service Providers: We share data with the third-party providers described in Section 5, solely for the purpose of operating and improving the Platform.
Legal Requirements: We may disclose information when required by law, regulation, legal process, or governmental request.
Protection of Rights: We may disclose information when we believe disclosure is necessary to protect our rights, your safety, or the safety of others, investigate fraud, or respond to a government request.
Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change via email or prominent notice on the Platform.

8. Data Retention

We retain personal information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements:

Active Accounts: Data is retained for the duration of your active account.
Closed Coach Accounts: Upon account termination, we retain account data for up to 90 days to allow for account recovery or dispute resolution, after which data is permanently deleted or anonymized.
Client Data: Client data is retained as long as the Coach's account is active. When a Coach deletes a Client or terminates their account, Client data is deleted in accordance with our retention schedule.
Communication Records: SMS, voice, and email records are retained for a minimum of 5 years to comply with telecommunications regulations and for dispute resolution purposes.
Payment Records: Transaction records are retained as required by applicable tax and financial regulations.
Anonymized Data: We may retain anonymized, aggregated data indefinitely for analytics and service improvement purposes. This data cannot be used to identify any individual.

9. Data Security

We implement reasonable and appropriate technical, administrative, and physical safeguards to protect your personal information from unauthorized access, disclosure, alteration, and destruction. These measures include:

Encryption of data in transit (TLS/SSL) and at rest
Secure authentication with hashed passwords
Role-based access controls limiting data access to authorized personnel
Regular security assessments and monitoring
Secure hosting infrastructure with SOC 2 compliant providers
Payment data handled by PCI-DSS Level 1 certified processors

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

10. Your Privacy Rights

10.1 General Rights

Depending on your jurisdiction, you may have the right to:

Access: Request a copy of the personal information we hold about you.
Correction: Request correction of inaccurate or incomplete personal information.
Deletion: Request deletion of your personal information, subject to legal retention requirements.
Portability: Request your data in a structured, commonly used, machine-readable format.
Objection: Object to certain types of data processing.
Withdraw Consent: Withdraw previously given consent for data processing.

To exercise any of these rights, contact us at [email protected]. We will respond to verifiable requests within 45 days.

10.2 California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

Right to Know: You may request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which we collected it, the business or commercial purpose for collecting it, the categories of third parties with whom we share it, and the specific pieces of personal information we collected.
Right to Delete: You may request that we delete your personal information, subject to certain exceptions.
Right to Correct: You may request that we correct inaccurate personal information.
Right to Opt Out of Sale/Sharing: We do not sell personal information. We do not share personal information for cross-context behavioral advertising.
Right to Limit Use of Sensitive Information: You may limit our use of sensitive personal information to purposes necessary to provide the Services.
Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To submit a request, contact us at [email protected]. We may need to verify your identity before processing your request. You may designate an authorized agent to make a request on your behalf.

10.3 Other State Privacy Rights

Residents of Virginia, Colorado, Connecticut, Utah, and other states with consumer privacy laws may have similar rights. We will honor verified requests in accordance with applicable law. Contact us at [email protected] for more information.

10.4 EEA, UK, and Swiss Privacy Rights (GDPR / UK GDPR)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, you have additional rights under the EU General Data Protection Regulation (GDPR), the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018, and the Swiss Federal Act on Data Protection (FADP). These include:

Right of access (Art. 15 GDPR): Confirm whether we process your personal data and obtain a copy.
Right to rectification (Art. 16): Have inaccurate or incomplete data corrected.
Right to erasure / "right to be forgotten" (Art. 17): Have your data deleted in certain circumstances.
Right to restriction (Art. 18): Limit how we use your data while a dispute is resolved.
Right to data portability (Art. 20): Receive your data in a structured, commonly used, machine-readable format.
Right to object (Art. 21): Object to processing based on legitimate interests, or for direct marketing purposes.
Right to withdraw consent (Art. 7(3)): Withdraw consent for any processing based on consent, at any time, without affecting the lawfulness of prior processing.
Rights regarding automated decision-making (Art. 22): Not be subject to decisions based solely on automated processing that produce legal or similarly significant effects. See "Automated Processing and AI" below.
Right to lodge a complaint with a supervisory authority: UK residents may contact the Information Commissioner's Office (ICO) at ico.org.uk/make-a-complaint. EEA residents may file with their national Data Protection Authority — find yours via the European Data Protection Board members list. Swiss residents may contact the Federal Data Protection and Information Commissioner (FDPIC) at edoeb.admin.ch.

Legal Bases for Processing. We rely on the following lawful bases under Article 6 GDPR:

Contract (Art. 6(1)(b)): Processing necessary to provide the Platform you signed up for, including account management, billing, and core Service functionality.
Consent (Art. 6(1)(a)): Processing where you have explicitly opted in — including SMS communications, marketing emails, and any future non-essential cookies. You may withdraw consent at any time without affecting the lawfulness of prior processing.
Legitimate Interests (Art. 6(1)(f)): Processing for fraud prevention, security, Service improvement, and protecting our legal rights. We have conducted a Legitimate Interests Assessment for each such use and determined that our interests are not overridden by your fundamental rights and freedoms. You may request a summary of any Legitimate Interests Assessment by emailing [email protected].
Legal Obligation (Art. 6(1)(c)): Processing required by law, such as tax and financial record-keeping, responding to lawful government requests, and complying with court orders.

Health and Fitness Data (Article 9 GDPR). The Platform may process health and fitness data (workout logs, weigh-ins, body measurements, photos for progress tracking, fitness device data from Apple HealthKit or Google Health Connect, AI-derived health insights) which constitutes "special category" personal data under Article 9 GDPR. We process this data only on the basis of your explicit consent, given freely when you provide it to your Coach through the Platform. You may withdraw this consent at any time by asking your Coach to remove the data, by deleting it yourself through the Platform's data export and deletion features, or by contacting us at [email protected].

Automated Processing and AI. The Platform uses AI to assist with check-in reviews, message reply suggestions, and program recommendations. These AI features assist Coaches but do not make decisions about your subscription, account standing, or any other matter that produces legal or similarly significant effects on you under Article 22 GDPR. All decisions of material significance are made by human Coaches or by FitOps Pro staff. If you wish to opt out of AI-derived features applied to your account, contact your Coach or email [email protected].

EU/UK Representative. FitOps Pro LLC does not currently maintain an Article 27 GDPR or UK GDPR representative in the EEA or UK, as our processing of EEA/UK personal data is below the threshold requiring one. We will appoint a representative if and when our processing reaches that threshold. In the interim, direct all GDPR/UK GDPR inquiries to [email protected] with the subject line "GDPR Request."

Response Times. We will respond to verifiable EEA/UK data subject requests within one (1) calendar month, extendable by an additional two (2) months for complex or numerous requests in accordance with Article 12(3) GDPR. We will inform you of any extension and the reasons for it within the first month. For other jurisdictions, the response times stated elsewhere in this Privacy Policy apply.

11. Children's Privacy

The Platform is not directed to individuals under the age of 18. We do not knowingly collect personal information from anyone under 18 years of age. Coaches must not add Clients under the age of 18 to the Platform without proper parental or guardian consent and compliance with all applicable laws, including the Children's Online Privacy Protection Act (COPPA).

If we learn that we have collected personal information from a child under 18, we will take steps to delete that information as quickly as possible. If you believe we have inadvertently collected information from a child under 18, please contact us at [email protected].

12. International Data Transfers

The Platform is operated from the United States, and FitOps Pro LLC is a Minnesota limited liability company. Most of our third-party service providers listed in Section 5 — Twilio, Amazon Web Services, Supabase, Stripe, OpenAI, Netlify, Expo, Meta Platforms — are also located in the United States, though some operate global infrastructure.

12.1 Transfer Mechanisms for EEA / UK / Swiss Data

When we transfer personal data of EEA, UK, or Swiss residents to the United States or to other jurisdictions outside the EEA/UK/Switzerland, we rely on the following legally recognized transfer mechanisms:

EU Standard Contractual Clauses (SCCs) — Module 2 (Controller to Processor): Executed with each of our US-based subprocessors who handle EEA personal data.
UK International Data Transfer Agreement (IDTA) / UK Addendum to the EU SCCs: Applied to transfers of UK personal data.
EU-U.S. Data Privacy Framework (DPF): Where a receiving subprocessor is self-certified under the DPF.
Swiss-U.S. Data Privacy Framework / Swiss SCCs: Where applicable to Swiss personal data transfers.

You may request a copy of the relevant transfer mechanism for your data by emailing [email protected] with the subject line "Transfer Mechanism Request."

12.2 Supplementary Measures

In addition to the contractual transfer mechanisms above, we apply supplementary technical and organizational measures to protect personal data transferred outside the EEA, UK, or Switzerland, including:

End-to-end encryption in transit (TLS 1.2 or higher) for all data transfers
Encryption at rest in production databases (AES-256)
Pseudonymization of personal identifiers where technically feasible
Role-based access controls and audit logging across subprocessor systems
Subprocessor agreements that restrict access by government authorities to lawful, proportionate requests and require us to be notified of such requests where legally permitted

12.3 Your Acknowledgment

By using the Platform from outside the United States, you acknowledge that your information may be transferred to and processed in the United States and other countries. We have taken the steps described above to provide your data with a level of protection essentially equivalent to that under EU and UK law.

13. Data Processing Roles

For the purposes of applicable data protection laws:

FitOps Pro LLC acts as a data processor with respect to Client data that Coaches enter into the Platform. Coaches act as data controllers for their Clients' personal information and are responsible for having a lawful basis for collecting and processing that data.
FitOps Pro LLC acts as a data controller with respect to Coach account information and Platform usage data.

Coaches are responsible for providing their own privacy notices to their Clients and ensuring their use of the Platform complies with all applicable data protection laws.

14. Links to Third-Party Websites

The Platform may contain links to third-party websites or services that are not owned or controlled by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party website you visit.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

Update the "Effective Date" and "Last Updated" date at the top of this page
Notify registered users via email or prominent notice on the Platform
Where required by law, obtain your consent before implementing material changes

Your continued use of the Platform after any changes to this Privacy Policy constitutes your acceptance of the updated Privacy Policy.

16. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

FitOps Pro LLC
Doing business as FitOps Pro
Email: [email protected]
Postal address: 210 N Oak Ave Apt 207, Owatonna, MN 55060, United States
Entity registration: Minnesota Secretary of State, File 1644642900029
EIN: 42-2063959

For data subject access requests or privacy complaints, please email [email protected] with the subject line "Privacy Request." For GDPR or UK GDPR-specific requests, please use the subject line "GDPR Request" so we can route your inquiry to the appropriate review track and meet the one-month response window under Article 12(3) GDPR.