Data Protection
DATA PROTECTION & PRIVACY POLICY
Savage Fitness Sales Academy Inc. (doing business as She Scales University, together with our affiliates, “we,” “our,” or “us”) is committed to providing a superior learning experience for everyone we work with. We know that our users are committed to their success, and we are equally committed to ensuring that each interaction with our content is optimized for maximum educational potential. To enable us to do this, Savage Fitness Sales Academy Inc. needs to gather and use certain information about individuals.
We gather information from customers, affiliates, business contacts, employees, and other people the organization has a relationship with or may need to contact.
This policy describes how this personal data is collected, handled, and stored to meet the company’s data protection standards — and to comply with applicable laws.
Why This Policy Exists
This data protection policy provides guidance regarding how Savage Fitness Sales Academy Inc.:
Complies with data protection law and follows industry best practices;
Protects the rights of staff, customers, affiliates, and partners;
Stores and processes individuals’ data and provides transparency regarding same; and
Reduces the risk of suffering a security incident.
EU General Data Protection Regulation (GDPR) Overview
The GDPR (General Data Protection Regulation) describes how organizations that conduct business with individuals or entities located in EU (European Union) nations — including Savage Fitness Sales Academy Inc. — must collect, handle, and store the personal data of individuals in the EU (“EU Personal Data”).
These rules apply regardless of whether data is stored electronically, on paper, or in any other manner. To comply, EU Personal Data must be collected and used fairly, stored safely, and not disclosed unlawfully.
The GDPR is underpinned by eight core principles. EU Personal Data must:
Be processed fairly and lawfully
Be obtained only for specific, lawful purposes
Be adequate, relevant, and not excessive
Be accurate and kept up to date
Not be retained longer than necessary
Be processed in accordance with data subject rights
Be protected using appropriate security measures
Not be transferred outside the EEA without adequate protection or lawful basis
1. Policy Statement
Every day our business receives, uses, and stores personal information about customers, affiliates, partners, and colleagues. It is important that this information is handled lawfully and appropriately in line with applicable data protection laws, including the GDPR and other relevant privacy regulations (collectively, “Data Protection Requirements”).
We take our data protection duties seriously because we respect the trust placed in us to use personal information responsibly.
2. About This Policy
This policy sets out the basis on which we process personal data we collect or receive.
It does not form part of any employment contract and may be amended at any time.
Savage Fitness Sales Academy Inc. is responsible for ensuring compliance with Data Protection Requirements and this policy.
3. What is Personal Data?
Personal data is any information relating to an identified or identifiable individual, whether stored electronically or on paper. This includes identifiers such as:
Name
Identification number
Location data
Online identifier
Physical, genetic, mental, economic, cultural, or social identity
Processing includes any operation performed on personal data, including:
Collection
Storage
Use
Organization
Disclosure
Transfer
Deletion
4. Data Protection Principles
We process personal data in compliance with GDPR principles:
Lawfulness, fairness, and transparency
Purpose limitation
Data minimization
Accuracy
Storage limitation
Integrity and confidentiality
Accountability
We ensure data is not transferred to countries without adequate protection unless lawful safeguards are in place.
5. Fair and Lawful Processing
We process personal data only where a lawful basis exists, including:
Consent
Contract necessity
Legal obligation
Legitimate business interests
Sensitive personal data is processed only when additional legal conditions are met.
HOW WE COLLECT INFORMATION
When you interact with our website, products, and services, we may collect information you voluntarily provide:
When you visit our website or use our services
When you participate in surveys or marketing promotions
When you provide reviews, ratings, or preferences
When you create or update your profile/account
This information may include:
Name
Email address
Mailing address or postal code
Payment method details
Phone number
Customer service communications
Chat transcripts
Account preferences
We also collect technical data such as:
IP address
Browser type
Device information
Pages visited
Course progress
Search queries
Interaction and usage data
HOW WE USE INFORMATION
We may use your information to:
Provide, administer, and improve services
Personalize user experience
Process payments and registrations
Respond to requests
Provide customer support
Communicate via email, phone, or mail
Improve programs, services, and content
Analyze platform usage and performance
Protect rights, safety, and property
Comply with legal obligations
COOKIES
Our website uses cookies and similar technologies.
Types include:
Strictly Necessary Cookies
Functionality Cookies
Analytical/Performance Cookies
Third-Party Advertising and Analytics Cookies
Cookies may be disabled via browser settings, but this may impact functionality.
6. Processing for Limited Purposes
We process data based on:
Consent
Contract performance
Legal obligations
Legitimate business interests
Where legitimate interests are used, they do not override user rights.
7. Notifying Individuals
Where required, we will inform individuals of:
Purpose and legal basis for processing
Legitimate interests (if applicable)
Third-party sharing
International transfers and safeguards
Data retention periods
User rights (access, correction, deletion, restriction, portability)
Right to withdraw consent
Whether data is mandatory
Automated decision-making (if applicable)
Identity of data controller: [email protected]
8. Data Minimization
We only collect data necessary for the intended purpose.
9. Data Accuracy
We take reasonable steps to ensure data is accurate and up to date.
10. Data Retention
We retain data only as long as necessary for business or legal purposes.
11. Data Subject Rights
Individuals have rights including:
Access
Correction
Deletion
Restriction
Objection
Data portability
Complaint to a supervisory authority
Protection from automated decision-making
12. Data Security
We implement appropriate technical, physical, and administrative safeguards.
We ensure data processors follow security requirements.
International Transfers
Data may be transferred outside the EEA where:
Adequate protections exist
Consent is provided
Contract performance requires it
Legal obligations require it
Safeguards are in place
13. Disclosure of Personal Data
We may share data with:
Service providers (hosting, email, payments)
Legal authorities when required
Business affiliates or subsidiaries
Buyers in mergers or acquisitions
With user consent
14. Subject Access Requests
Individuals may request access to their data.
Identity verification may be required before disclosure.
Requests may be processed electronically where possible.
15. Changes to This Policy
We may update this policy at any time. Material changes will be communicated via website notice or email.
16. Contact Us
For questions about this policy, contact:
For GDPR information, visit:
https://www.eugdpr.org/