top of page

Pilates * Wellness

Venice

Privacy Policy

Privacy Policy 

PRIVACY POLICY

Last updated: 20th November 2025

AURA Pilates & Wellness Studio S.R.L.s (“AURA”, “we”, “us”, or “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, share, and protect your information when you visit our website, create an account, purchase services, or attend classes at AURA.

We process your data in accordance with the General Data Protection Regulation (EU Regulation 2016/679 – GDPR) and applicable laws of Italy.

By using our website and services, you acknowledge that you have read and understood this Privacy Policy.

1. Data Controller

The Data Controller is:

AURA Pilates & Wellness Studio S.R.L.s
Registered in Italy
5101 Cannaregio, 30121 Venice Italy
Email: memebrship@aurapilateswellness.com
Phone: +393928240740

2. Types of Personal Data We Collect

We may collect, use, and process the following categories of personal data:

2.1 Information You Provide Directly

  • Identity Data: name, surname, date of birth.

  • Contact Data: email address, phone number, address.

  • Account Data: login details, password (encrypted).

  • Booking Data: class bookings, attendance history, cancellations.

  • Payment Data: payment method, billing details (processed by secure third-party providers; we do not store full card numbers).

  • Health Information (Special Category Data): information you voluntarily disclose about injuries, relevant medical conditions, pregnancy status, or physical limitations to ensure safe participation.

  • Communication Data: messages you send us by email, forms, or chat.

2.2 Information We Automatically Collect

  • Technical Data: IP address, browser type, device characteristics.

  • Usage Data: pages visited, time spent on the website, actions performed.

  • Cookies: as described in our Cookies Policy.

2.3 Information from Third Parties

  • Payment providers (e.g., Stripe, GoCardless).

  • Booking platforms or scheduling software.

  • Social media platforms if you connect your account.

3. Legal Basis for Processing

We process your personal data under the following lawful bases:

  • Performance of a contract: to manage your bookings, memberships, payments, and studio usage.

  • Legitimate interests: to improve our services, prevent fraud, and ensure studio safety.

  • Legal obligations: accounting, taxation, safety, regulatory compliance.

  • Consent: for marketing communications and processing special-category health data.

You may withdraw your consent at any time.

4. How We Use Your Personal Data

We process your data for the following purposes:

4.1 Service Delivery & Operations

  • Managing bookings, class packs, memberships, and waitlists

  • Processing payments and generating invoices

  • Enabling your account and user profile

  • Communicating class reminders and operational updates

  • Adapting classes to your physical condition or limitations

4.2 Marketing & Communication

  • Sending newsletters, updates, promotions, or events

  • Personalising marketing content based on your preferences
    (Only with your explicit consent)

4.3 Safety & Compliance

  • Ensuring safe participation in classes

  • Managing incidents and insurance matters

  • Complying with tax, accounting, or regulatory requirements

4.4 Website Improvement & Analytics

  • Monitoring usage patterns

  • Enhancing website performance and security

  • Troubleshooting and optimisation

5. Special Category Data (Health Information)

To ensure your safety during physical activity, instructors may ask about:

  • injuries, recent surgeries

  • pregnancy

  • chronic conditions affecting physical exercise

This information is processed only with your explicit consent, is strictly confidential, and is not shared externally unless required by law or in a medical emergency.

You may refuse to provide health information, but this may limit your ability to participate safely in certain classes.

6. Sharing Your Data

We share your personal data only when necessary and always securely.

We may share data with:

  • Payment processors (e.g., Stripe, GoCardless)

  • Booking and studio management platforms

  • Email service providers

  • Instructors and staff for operational purposes

  • IT and security providers

  • Legal, accounting, or regulatory bodies when required

We never sell your personal data.

7. International Transfers

If our third-party providers process your data outside the EU/EEA, we ensure protection through:

  • EU-US Data Privacy Framework participation,

  • Standard Contractual Clauses (SCCs), or

  • Other GDPR-compliant safeguards.

8. Data Retention

We retain personal data only for as long as necessary:

  • Account data: as long as your account remains active

  • Booking & attendance data: 5 years

  • Payment records: 10 years (legal obligation)

  • Marketing consent: until withdrawal

  • Health information: only as long as needed for safe participation

You may request deletion of your account at any time (see Section 11).

9. Security Measures

We take the protection of your data seriously and implement:

  • encryption of data in transit and at rest

  • restricted access to authorised personnel only

  • secure password storage

  • regular audits and data protection reviews

  • secure payment processing through certified providers

  • firewall and anti-intrusion systems

Despite our efforts, no system is 100% secure. You use the website at your own risk.

10. Your Rights Under GDPR

You have the following rights:

  • Right of access – obtain a copy of your data

  • Right to rectification – correct inaccurate information

  • Right to erasure (“right to be forgotten”)

  • Right to restrict processing

  • Right to data portability

  • Right to object to certain types of processing

  • Right to withdraw consent at any time

  • Right to lodge a complaint with the relevant Data Protection Authority in Italy

To exercise your rights, contact us at:
[Insert Contact Email]

11. Account Deletion

You may request the deletion of your account and associated personal data by contacting us.
Certain data (e.g., financial records) may be retained where required by law.

12. Third-Party Links

Our website may contain links to external sites.
We are not responsible for the privacy practices, content, or security of those websites.
We encourage you to read their privacy policies.

13. Children’s Privacy

Our services are not intended for individuals under 16 without parental consent.
We do not knowingly collect personal data from children without proper authorisation.

14. Changes to This Policy

We may update this Privacy Policy from time to time.
The latest version will always be available on our website with the effective date indicated at the top.

We will notify users of material changes via email or website notice.

15. Contact Us

For questions, concerns, or GDPR requests:

AURA Pilates & Wellness Studio S.R.L.s
Cannaregio 5101 Venice 30121

Email: membership@aurapilateswellness.com
Phone: +393928240740

bottom of page