Effective Date: March 2026
At BikeRowSki (“we”, “our”, “us”), we are committed to protecting your privacy and handling your personal data with transparency and care line with applicable data protection law, including the EU General Data Protection Regulation (GDPR). This Privacy Policy explains how we collect, use, store, and safeguard your information when you visit our studios, use our booking platform, purchase memberships, or engage with our services.
1. Who We Are
BikeRowSki operates as a franchise network of independently operated fitness studios and related services supported by BikeRowSki Limited (BikeRowSki Ltd). For most membership and booking activities, your local BikeRowSki studio and BikeRowSki Ltd work together to decide how your personal data is used so that we can run our services safely and efficiently.
BikeRowSki Ltd provides the central systems and support for the franchise network and is responsible, together with your local studio, for ensuring your personal data is handled in line with applicable data protection laws.
If you have any questions about this policy or how we use your personal data, you can contact us at:
- Email: info@bikerowski.ie
- Postal address: As per studio location address
2. Information We Collect
When you register with BikeRowSki, book a class, or purchase a membership, we may collect the following information:
- Name, email address, phone number, and postal address
- Date of birth and emergency contact details
- Health or fitness information that you voluntarily provide (for example, injuries or relevant medical conditions to help keep you safe in class)
- Cookies on the BikeRowSki website that help us provide you a tailored experience. Please refer to the cookies section below for more information on what cookies we use and how we use them.
- When you buy our products or services, we will collect your credit or debit card information and/or your bank account number and sort code.
- Booking history, attendance records and transaction history
- Communication preferences
- CCTV footage when you visit our studios
We only collect information that is necessary to operate our services safely and effectively. Our services are aimed at individuals 16 years and over. We do not knowingly accept memberships from children under 16. If we become aware that we have collected personal data from a child without appropriate consent, we will delete it.
3. How We Use Your Information
Your data helps us provide a safe, supportive, and efficient experience across our studios. We use your information to:
- Manage bookings, memberships, and class attendance
- Process payments securely
- Communicate important updates related to your membership or classes
- Provide customer support
- Maintain safety within our studios
- Improve our services and member experience
- Meet legal and regulatory obligations
- Send you information about classes, events, promotions, and offers that may be of interest to you (you can opt out of marketing communications at any time)
4. Legal Bases for Processing
We process personal data on the following legal grounds:
- Consent – for email marketing and non-essential cookies
- Contract – to deliver services you’ve signed up for
- Legal obligation – such as tax or health & safety compliance
- Legitimate interest – to run and grow our business (where not overridden by your rights)
5. Payment Processing and Security
All payments at BikeRowSki are securely processed through our booking partner Momence, which integrates with Stripe, a certified payment processor that complies with the highest global security standards, including PCI-DSS.
BikeRowSki Ltd and its franchise locations:
- Do not store your full card details
- Do not have access to complete credit or debit card numbers
- Cannot view sensitive payment credentials
Payment information is encrypted, tokenised, and securely stored by Stripe. This allows memberships and future purchases to be processed safely while protecting your financial data.
For operational purposes, we may only see limited details such as:
- Card type
- Last four digits of the card
- Expiry date
This structure significantly reduces the risk of payment data exposure and ensures your information is handled using industry-leading security practices.
6. Who Can Access Your Data
Access to personal data is restricted and provided only where necessary.
Your information may be accessed by:
- The BikeRowSki studio you attend, , to manage your membership and classes
- Authorised personnel within BikeRowSki Ltd for operational oversight, reporting, system administration, and member support
- Trusted technology partners who help us deliver our services (such as Momence for bookings, Stripe for payments and Google Analytics for website analytics)
All franchise partners are contractually required to handle personal data in accordance with applicable data protection laws, including GDPR.
Your data is never shared outside of the BikeRowSki franchise network unless required for legal, regulatory, or essential operational purposes (for example, to comply with law enforcement or to protect our legal rights).
7. Third-Party Service Providers
We use carefully selected third-party providers to operate our business efficiently and securely, including:
- Momence – booking and member management platform
- Stripe – secure payment processor
These providers process your data on our behalf and are contractually obligated to:
- Process your personal data only on our instructions
- Apply appropriate technical and organisational security measures
- Keep your data confidential
8. Data Transfers Outside the EU/EEA
Where our service providers process data outside the EU/EEA, we ensure appropriate safeguards are in place, including:
- EU Standard Contractual Clauses
- Transfers to countries deemed adequate by the European Commission
9. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, misuse, or alteration.
Our partners use secure, encrypted systems aligned with recognised industry standards.
While no digital platform can guarantee absolute security, we continuously review our practices to maintain a high level of protection.
10. Data Retention
We retain personal data only for as long as necessary to:
- Deliver our services
- Comply with legal and financial obligations
- Resolve disputes
- Enforce our agreements
When information is no longer required, it is securely deleted or anonymised.
11. Your Rights
Under applicable data protection laws, including the GDPR, you have the right to:
- Request access to your personal data
- Request correction of inaccurate data
- Request erasure where appropriate (“right to be forgotten”)
- Restrict or object to certain processing (for example, to direct marketing)
- Request a copy of your data in a portable format (data portability)
- Withdraw consent where we rely on consent (this will not affect processing carried out before you withdrew consent.
To exercise any of these rights, please contact us using the details above.
If you are unhappy with how we handle your personal data, you also have the right to lodge a complaint with your local data protection authority. For example, in Ireland this is the Data Protection Commission (www.dataprotection.ie). We would, however, appreciate the chance to deal with your concerns first, so please contact us using the details above.
12. Cookies and Tracking Technologies
We use CookieYes to manage your cookie preferences and ensure compliance with GDPR.
Upon visiting our site, you are presented with a Cookie Consent banner from CookieYes, where you can:
- Accept or reject non-essential cookies
- Access detailed information about cookie categories (necessary, analytics, marketing)
- Revoke or modify consent at any time
13. Updates to This Policy
We may update this Privacy Policy periodically to reflect operational, legal, or regulatory changes. The most current version will always be available through our website or booking platform.