Privacy Policy

Effective Date: 30 April 2025
Last Updated: 30 April 2025

Original Buns of Steel ("we", "our", or "us") is committed to protecting your privacy and ensuring you have a positive experience on our website http://www.originalbunsofsteel.com.

This Privacy Policy explains how we collect, use, share, and safeguard your personal data when you use our website and services, in accordance with the General Data Protection Regulation (GDPR).

1. Data Controller

For the purposes of the GDPR, the Data Controller is:

Original Buns of Steel
Email: info@originalbunsofsteel.com

2. What Personal Data We Collect

We may collect the following categories of personal data:

a. Account & Identity Data

  • Name
  • Email address
  • Password (encrypted)
  • Billing details

b. Subscription & Fitness Data

  • Workout preferences and history (if provided)
  • Subscription level and payment activity

c. Technical & Usage Data

  • IP address
  • Device and browser type
  • Date/time of visits and page interactions
  • Referral source and clickstream behavior

d. Cookies & Tracking

See our Cookie Policy section below.

3. Legal Bases for Processing

We process personal data lawfully under the following GDPR bases:

  • Contractual necessity – to provide access to subscription services
  • Consent – for optional features such as newsletters or marketing
  • Legal obligation – to comply with legal or tax requirements
  • Legitimate interests – for improving our services and ensuring security

4. How We Use Your Data

We use your information to:

  • Register your account and manage subscriptions
  • Deliver exercise content and features
  • Process billing and payment transactions
  • Personalize user experiences
  • Send relevant updates and offers (when consented)
  • Monitor, maintain, and improve site performance and security

5. Sharing Your Data

We do not sell your personal information. We may share it with:

  • Payment processors (e.g., Stripe, PayPal)
  • Email marketing tools (e.g., Mailchimp)
  • Analytics platforms (e.g., Google Analytics)
  • Hosting and infrastructure providers
  • Authorities when required by law or to protect rights

All third parties are GDPR-compliant and bound by data processing agreements.

6. International Data Transfers

When your data is transferred outside the European Economic Area (EEA), we ensure:

  • Standard Contractual Clauses (SCCs) are in place
  • Service providers are certified under relevant data protection frameworks

7. Data Retention

We retain your personal data for:

  • As long as you have an active account
  • As required for legal, tax, or regulatory obligations
  • Until you request deletion, subject to lawful exceptions

8. Your Rights Under GDPR

As a data subject, you have the right to:

  • Access your data
  • Correct inaccurate or incomplete data
  • Erase your data (“right to be forgotten”)
  • Restrict or object to certain processing
  • Withdraw consent at any time
  • Data portability – request your data in a structured format

To exercise these rights, contact us at info@originalbunsofsteel.com.

You also have the right to file a complaint with your local Data Protection Authority if you believe your rights have been violated.

9. Data Security

We take data security seriously and use:

  • SSL (Secure Socket Layer) encryption
  • Secure server environments
  • Access restrictions and two-factor authentication (where applicable)

While we take reasonable measures, no system is entirely immune to risks.

10. Children’s Privacy

Our services are not intended for individuals under age 16. We do not knowingly collect personal data from minors.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted here with a revised “Last Updated” date. Continued use of the site implies acceptance of the updated terms.

Cookie Policy

What Are Cookies?

Cookies are small text files stored on your device to help websites function, remember user preferences, and improve user experience.

Types of Cookies We Use

1. Strictly Necessary Cookies

These enable core functionality like login and session management. They cannot be disabled.

2. Performance Cookies

Used to collect anonymous information about how visitors use our website (e.g., page views, time spent).

3. Functional Cookies

Allow the site to remember your choices and preferences (e.g., saved workouts).

4. Marketing Cookies

Used to deliver personalized advertisements or emails. These require your consent.

Third-Party Cookies

We may use cookies set by:

  • Google Analytics
  • Facebook Pixel (if used)
  • Stripe or PayPal for secure payment processing
  • Mailchimp or email providers for campaigns

Please refer to their respective cookie and privacy policies.

Cookie Consent and Control

You will be asked to accept or reject cookies when you visit our site for the first time.

You can also control cookies by changing your browser settings:

  • Chrome: chrome://settings/siteData
  • Safari: Preferences → Privacy
  • Firefox: Options → Privacy & Security
  • Edge: Settings → Site permissions → Cookies

Disabling cookies may limit certain features of the website.

Contact

If you have any questions about this Privacy and Cookie Policy, please contact us:

Original Buns of Steel
Email: info@originalbunsofsteel.com