PERSONVERNERKLÆRING

Privacy Policy
Aura Fitness One
Effective Date: 1 June 2026.
At Aura Fitness One, we are committed to protecting your privacy and handling your personal information responsibly. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our personal training services, visit our website, or contact us.

1. Data Controller
Aura Fitness One
Lervigsveien 16
4006 Stavanger
Norway
Email: post@aurafitnessone.com
Phone (SMS/Text): +47 468 50 227
2. Information We might Collect
We may collect the following information:
Personal Information
Full name
Date of birth
Email address
Phone number
Address (if required)
Emergency contact information
To provide safe and effective personal training, we may collect:
Health questionnaire responses
Medical conditions relevant to exercise
Injuries or physical limitations
Body measurements (only with your consent)
Exercise history and goals
Payment Information
Payment records
Billing information
Payment card details are processed securely through our payment provider and are not stored by Aura Fitness One.
3. How We Use Your Information
Your information is used to:
Provide personal training services
Create safe and individualized exercise programs
Book and manage appointments
Process payments
Communicate regarding appointments and services
Send service updates
Send marketing emails only if you have given your consent
Meet legal, accounting, and insurance obligations
4. Legal Basis for Processing
Where applicable under the GDPR, we process your personal information based on:
Your consent
Performance of a contract
Compliance with legal obligations
Legitimate business interests
Health information is processed only where necessary to provide safe training and with the appropriate legal basis.
5. Sharing Your Information
Aura Fitness One does not sell your personal information.
We may share information with:
Payment service providers
Booking and scheduling software providers
Accounting professionals
Insurance providers (when necessary)
Healthcare professionals (only with your consent or where legally required)
Public authorities where required by law
All third-party providers are expected to protect your personal information in accordance with applicable privacy laws.
6. Data Security
We use appropriate technical and organizational measures to safeguard your personal information against unauthorized access, alteration, disclosure, or destruction.
7. Data Retention
We retain your personal information only for as long as necessary to:
Provide our services
Meet legal and tax obligations
Resolve disputes
Maintain business records
Health-related information is retained only as long as necessary and in accordance with applicable laws.
8. Your Rights
Under applicable privacy laws, including the GDPR, you have the right to:
Access your personal data
Correct inaccurate information
Request deletion of your information
Restrict processing
Object to processing
Receive a copy of your personal data (data portability)
Withdraw consent at any time where consent is the basis for processing
Lodge a complaint with your local data protection authority.
9. Cookies
If our website uses cookies, they may be used to:
Improve website functionality
Analyze website traffic
Remember your preferences
You may manage cookie preferences through your browser settings.
10. Marketing Communications
We will only send promotional emails or messages where you have consented or where permitted by law. You may unsubscribe at any time.

11. Children’s Privacy
Our services are intended for individuals aged 16 and over. Clients under 16 require the consent of a parent or legal guardian.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The latest version will always be available through our website or upon request.
13. Contact Us
If you have any questions about this Privacy Policy or how we process your personal information, please contact us:
Aura Fitness One
Lervigsveien 16
4006 Stavanger
Norway
Email: post@aurafitnessone.com
Phone (SMS/Text): +47 468 50 227
This policy is suitable for publishing on your website and is written to align with GDPR principles for a personal training business in Norway. If you also have an online booking system, client app, or accept payments through providers such as Stripe or Vipps, you should add a short section naming those service providers and explaining how they process customer data.