1. Introduction
The https://www.sciencetraining.io website (the “Website”) is provided by Science Training Limited Liability Company, based in Athens, Greece, Lykourgou 1 Str. (“Science Training”). Science Training offers a complete online, cloud based, personalized coaching platform (the “Services”). The Services help coaches design training programs, monitor training programs and progress made by each athlete, and analyze data for each athlete (the “Science Training Software”).
Science Training is committed to respect your privacy and applicable data protection laws and regulations. This Privacy Policy (the “Policy”) intends to inform you about the way we use your personal data (i.e. any data related to an identifiable natural person, either directly or indirectly), either we collect them, when you visit our Website or when ordering and using our Services through the Science Training Software.
By accessing and using this Website, you confirm that you have read and fully understood this Policy, that you agree to the collection and the usage of your own and others’ personal data in accordance with the Policy and that you have the authority to provide Science Training with all information submitted by you via the Website and Science Training Software, including but not limited to the personal data of third parties.
2. General Principles of the Processing
Science Training (referred to as “we”, “us”, “our”, or “Science Training” in this Policy) collects and processes personal data in a transparent manner, to the extent necessary for specified, explicit and legitimate purposes, and does not process it further in a manner incompatible with those purposes.
3. Usage of data we collect about you
3.1 When visiting our Website
A visitor of our Website is the person simply visiting our Website, as well as the person interacting with our Website by filling in and sending the contact form, or ordering our Newsletter (referred to as “you”, “your” or “Visitor” in this Policy).
3.1.1 Cookies
A cookie is a small data file stored by your browser at your device’s hard disk for record-keeping purposes, namely it records information about the use and activity on the Website. This information may include, but is not limited to, your Internet Protocol address, browser type, but also user’s web browsing history before visiting the Website, our Website’s search history.
Some cookies are “first party cookies”, which means that they are set by us. Cookies set by parties other than us are called “third party cookies”.
Cookies are used for different reasons.
There are the necessary cookies, which are required for technical reasons in order for a website to operate.
Some cookies are used to enhance the performance and functionality of a website, but are non-essential to their use. However, if you decide not to accept such cookies, certain functionality may become unavailable. Such cookies are called preferences cookies.
Some cookies collect information that is used in aggregate form to help a website owner understand how its website is being used. Such cookies are called statistic cookies and they are either first party or third-party cookies. A third party, for example Google, stores a Google Analytics cookie in order to be able to differentiate between users and be able to show to the website owner how many times people visit a website on average (not individually) and information on what pages they’ve seen, how long the duration was, and so on.
Some cookies are used for marketing purposes. These are the marketing cookies, and they may be third-party cookies. Third-party cookies are placed by providers (e.g. by Google, Facebook), who a website owner may have engaged to provide advertising services on its behalf. If, from the analysis of information collected by third-party cookies, visitors of a webpage are interested in one of the services, then advertising material would be projected on third party websites. To see how data is collected and analyzed by third party cookies, you can also visit the websites of the third parties.
When you visit our Website, you are asked to consent to the use of cookies, and our Cookies Notice informs you exactly about the type of cookies we use, their provider, the type of data they collect, their purpose (e.g. session, personalization, marketing etc) and their expiry. You may choose to consent to none, one or more of the above cookies (with the exception of the “necessary cookies”). You may withdraw your consent to the use of cookies any time during your visit to our Website freely and easily by clicking on “Manage Cookies Settings” button next to our “Privacy Policy” button.
Additionally, you can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from the websites you visit.
3.1.2 Newsletter
If you wish to receive our Newsletter, for example announcements about new offers and actions of Science Training, you may enter your e-mail address on this Website. Your email address is solely used for the purpose of sending our Newsletter and you are removed from the Newsletter recipient list, once you choose to unsubscribe. You may be removed from this list, easily and without cost, by selecting the “unsubscribe” link within the e-mail content. You can also send an email at info@sciencetraining.io.
The legal basis of this processing activity is your consent, and you may withdraw your consent freely at any time, as set out above. If you withdraw your consent, we delete you from the mailing list; however, we retain a record of those that have unsubscribed from our mailing list, as this is required by applicable law provisions.
To send the Newsletter, we use mailchimp, a US based company as a provider of electronic communication platform. For the privacy policy of mailchimp see https://mailchimp.com/legal/privacy/.
3.1.3 Contact Form
If you wish to communicate with us by using the contact form, you may enter your name, e-mail address, the matter you would like to discuss about with us and write your message in the dedicated space. Such personal data is used solely for the purpose of responding to you, and we keep your data only as long as it is necessary to respond to your request.
3.1.4 Email notifications and messages related to our software
We will occasionally send out email messages or notifications about a change in how our software works, or to help you get a better user experience out of it. Your email address is used for the purpose of sending these messages or notifications. To send these emails, we will either use Mailchimp, a US based company as a provider of electronic communication platform (for the privacy policy of Mailchimp see: https://mailchimp.com/legal/privacy/) or our business email accounts.
4. Data Collected through User’s Signing up in the Services.
A User is a Visitor of our Website that has either purchased or signed up for free and is using the Services offered through Science Training Software (referred to as „Services“ in this Privacy Policy). A User may be a Coach, obtaining a “Coach Account” (either “Free Coach Account” or Pro-Coach Account”) or an Athlete, obtaining an “Athlete Account”. For the types of Accounts offered through the Services, see our Terms of Use.
With regard to our Users, we process following categories of personal data:
- Name & Surname (optional)
- Email and Password
- Last IP Address of the User
4.1 Contact and Billing purposes
We process User’s Email and Password to identify our Users & Accounts, and allow them to log into their Account.
We process Emails to send billing-related emails, if the Account is on a paid subscription, and only to the Coaches.
The legal basis of these processing activities is the provision of the Services. Therefore, we retain relevant personal data for the duration of the Agreement. After termination or expiry of the Agreement we retain billing data as long as it is required by law for accounting and tax purposes, and in case of a judicial challenge to defend our claims.
4.2 Processing of Name and Surname
Name & Surname are used for better communication and account management.
We use the Name & Surname in some automated system notifications and emails.
5. Personal Data Processed, while using the Services.
Following types of personal data are being processed, when using the Services, and for the purpose of providing the Services:
Name, email, address and/or telephone number (“Contact Information”), as well as username and password of registered Coaches and Athletes (“Identification data”).
Browser type, operating system, IP address and device information, time of connection (“Analytical Information”).
Data imported into the Services from third parties, namely from platforms offering physiological performance analysis software. Personal data integrated in the Services from such platforms are health data, for the time being heart rate, as well as geolocation data, speed/power, direction, gradient, date, time, and duration of training.
For Athletes: unique identifier, age/birth date, primary sport, gender (optionally), then-current weight (optionally), country, time zone, phone number (optionally), date format preference, device connections, threshold heart rate, maximum heart rate, resting heart rate, heart rate zones, threshold power, power zones, threshold speed, speed zones, and/or coaching emphasis.
For Coaches: unique identifier, birth date, weight (optionally), sports, country, names of Athletes that accept the invitation, available training days, training programs on the Athlete’s calendar.
We process the Last IP Address of the Users to acquire geolocation data, namely the city location from which the Account was accessed. We then use this information to derive the Country and the timezone. This allows us to pre-fill the Timezone settings for the Account, so that Users do not have to set a Timezone, or pre-select the Country. This processing activity is necessary for the functionality of the Services.
We also process the last IP Address, occasionally, to monitor compliance with our Terms of Use, i.e. prohibition of using multiple free accounts of the same type.
We may also collect, extract, compile, synthesize, and analyze non-personally identifiable data or information (data or information that does not identify an entity or natural person as the source thereof) resulting from your access to the Website and your use and operation of the Services, for the purpose of ameliorating the Services. Such analytical data and information is used only in an aggregated form, without directly identifying you, any User, or any other entity or natural person as the source thereof.
Personal data is being retained for the duration of the Account. If an Athlete, invited by his/her Coach to the Services, ceases to be connected to the Coach, then Coach has no access and does not view the Athlete Account any longer. The Athlete, who is not linked to a Coach, may view his/her account in static form or may choose to terminate his/her Account or the Athlete may choose to connect his/her Account to a new Coach. If an Athlete disconnects his/her Coach from the Account, then the Athlete may view and share with a newly connected Coach his/her Account, and data uploaded to the Account of the past three months before disconnection.
Data is uploaded in the Services by the Coach and the Athlete. Data is also transmitted to the Services by third parties, offering physiological performance analysis software, based on the consent of the data subject for this transmission of data to Science Training. Data is being retained for the duration of the Account, in Amazon Data Center in the US (S3 -storage, EC2-cloud server).
6. YOUR RIGHTS
Under the European General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), or other applicable data privacy law, you have certain rights with respect to your personal data:
6.1 Consent
Athletes provide their consent for the transmission of their data from third parties software, offering physiological performance analysis software. Such consent is collected by the third parties, before activating the transmission. Also, Athletes have to provide their consent, when connecting to a Coach, to the data being made accessible to the Coach and a Coach, when connecting to an Athlete, has to agree to use personal data of the Athlete only for the purpose of providing coaching and training services.
6.2 Right to Withdraw a Consent
Athletes have the right to withdraw their consent, when the legal basis of the processing is consent.
Athletes may choose to use the “disconnect”-button in the Services, so as to stop integration of personal data from third party platforms.
Athletes may also choose to disconnect their Coach, if they do not wish that he/she views their data any longer.
6.3 Transparency and Information Right
Coaches and Athletes have a right to be informed about personal data Science Training collects about them, for what purposes, and in what way Science Training uses them. Our Privacy Policy is accessible via the Website, and should be carefully read before registering to the Services. Coaches and Athletes have to accept the Privacy Policy, before signing up to the Services.
6.4 Right of Access
Coaches and Athletes have a right to access personal data held by Science Training about them, as well as information about how Science Training uses their data. Coaches and Athletes have access to their Personal Data, when accessing their Account.
However, receiving personal data, in a commonly used and machine-readable format, is not yet technically feasible.
6.5 Right to Rectification and Right to Erasure
Coaches and Athletes have a right to require Company to rectify any inaccurate personal data held in the Services. In particular, they have the right to rectify their personal information, as well as their records, namely their best time per distance, and speed/power corresponding to anaerobic threshold.
Coaches and Athletes have the right to request erasure of their personal data, if they are no longer necessary for the purpose collected, if they withdraw their consent to the data processing, and unless retention is required by a law provision or is necessary for the establishment of or defence against legal claims.
Also, without deleting their whole Account, Athletes and Coaches may delete their planned workout. Personal data integrated through third party platforms, have to be deleted via third party account, and in synchronization with the Services, so that they can be deleted from the Services, as well.
6.6 Right to Object and Right to the restriction of the processing
Coaches and Athletes have the right to request restriction of processing, if the accuracy of personal data is disputed, for that period of time that allows Company to verify the accuracy of personal data or based on any other legitimate reason specified in applicable data protection laws. For example, Users may ask suspension of the processing of their personal data, if they want us to establish its accuracy or the reason for processing it.
Coach and Athlete have a right to object to the processing of personal data in the Services, when such data is being processed to serve a legitimate interest of Company, such as analytical data. In this case, Science Training shall no longer process the personal data, unless it demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.
Also, Coach and Athletes have the right to object to the use of other data processors (onward transfer). In that case, Company shall try to find an acceptable solution within a reasonable time period. If that is not possible, Customer may terminate the Services and Company shall refund Customer any prepaid fees covering the remainder of the Services.
6.7 Children
You may not create an Account unless you are 18 years of age or older. If you are a parent or guardian of a child, then you may create an Account and allow your child to access that Account and the Services under your direct supervision. You will be solely responsible for all access to and use of the Services and that Account by your child.
6.8 Complaint to a Supervisory Authority
You have the right to lodge a complaint with a Supervisory Authority, meaning an independent public authority which is established by a EU Member State, pursuant to the GDPR, if you consider that the processing of your personal data infringes the GDPR and other applicable European Union or member state data privacy laws.
6.9 Right to opt out and right to Non-Discrimination
If you are a California resident, you should be specifically aware that you have the right to direct a business that sells (or may in the future sell) your Personal Information to stop selling your Personal Information and to refrain from doing so in the future. However, Science Training does not sell your Personal Information to any other party.
If you are a California resident, you should be specifically aware that we will not discriminate against California residents or against any person, if they exercise any of the rights provided in the CCPA, or the GDPR, or any applicable privacy law provision. In particular, we will not deny goods or services; charge different prices or rates for goods or services, including through the use of discounts or other benefits or imposing penalties; provide a different level or quality of goods or services; or suggest that anybody (including California residents) will receive a different price or rate for goods or services or a different level or quality of goods or services.
7. Security
We take appropriate technical and organizational security measures to protect the integrity, accessibility and confidentiality of your data.
For a description of our security measures, please see here.
8. Sharing your Data – International Data Transfer
We do not share personal data with any third party, unless required to do so by law; in such a case, we shall inform you of that legal requirement before processing, unless that law prohibits such information on important grounds of public interest, e.g. to protect confidentiality of a criminal investigation.
8.1 Sharing your Data with associates
However, we do share personal data with our associates (sub-contractors and sub-processors), solely for the provision of the Services and the provision of this Website. We have taken measures to make sure that our processors and sub-processors provide at least the same level of data protection as we do.
To see our full list of Sub-processors, their tasks and locations, see here.
8.2 Social media
You may be able to access third party social media services through our Website by using social media plugins on our Website. In that case URL data may be transferred to this third party, based on this party’s Privacy Policy. Make sure you read the Privacy Policy of this third party, before you proceed to the plugin.
9. Changes to this Privacy Policy
Our Privacy Policy may change from time to time and any changes to this Policy will be updated so as to describe these changes. You are expected to check our website from time to time to take notice of any changes in this Policy. If you have any further questions about this Policy or how we handle your personal data, which are eventually not dealt with here, please get in touch with us by writing to info@sciencetraining.io
