top of page
AdobeStock_283646233 (1).jpeg

Privacy Policy

Last Updated: 18 November 2025

Introduction

BarbellMedia (“we”, “us”, or “our”) operates an e-commerce website that sells gym apparel and digital workout programmes. We are committed to protecting your privacy and complying with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

This Privacy Policy explains:

  • what personal information we collect,

  • how we use and share it, and

  • what rights you have in relation to your data.

We only collect the minimum personal data necessary to process your orders, and we do not use your information for marketing or analytics purposes. Users are not required to create accounts to shop with us, and we do not send unsolicited marketing emails.

By using our website or purchasing our products, you agree to the practices described in this Privacy Policy.

If you have any questions, you can contact us using the details in the Contact Us section below.

Information We Collect and Why

We collect personal information only as needed to fulfil your orders and provide our services, including processing payments and delivering products. This includes:

Contact Information

  • Your name

  • Shipping address

  • Email address

We need these details to:

  • process your order

  • deliver physical products

  • send order confirmations/receipts

  • provide digital products via email

We do not collect extra details that we don’t need for these purposes.

Payment Information

Payment details (e.g. credit/debit card number, expiry date, billing address) are required to complete your purchase.

  • We use trusted third-party payment processors to handle transactions.

  • Your card details are entered on secure payment pages and are transmitted directly to the payment provider.

  • We do not see or store your full card details on our servers.

  • Our payment processors are required to comply with PCI-DSS (Payment Card Industry Data Security Standard).

Order Details

We keep records of your purchases, such as:

  • products purchased

  • sizes and options selected

  • prices

  • order dates

We use this information to:

  • fulfil your order (contractual necessity)

  • provide customer support

  • handle any returns/refunds where applicable

  • meet legal, tax and accounting obligations

Product Reviews (User-Generated Content)

If you submit a review on our site, we collect:

  • the name or display name you choose

  • the content of your review

We use this information to:

  • display your review publicly on our website

  • improve our products and services

Please avoid including sensitive or private information in your review, because whatever you post may be visible to other visitors. We may moderate and remove reviews that contain personal data or break our guidelines.

You can contact us if you’d like a review you posted to be updated or removed.

Communications

If you contact us by email or via a contact form, we collect:

  • your name (if given)

  • your email address (or other contact details)

  • the content of your message

We use this information solely to respond to your enquiry and keep a record of communications in case of follow-up.

Automatically Collected Technical Data

We do not use analytics services (like Google Analytics) or tracking pixels for marketing.

However, when you use our website, our servers may automatically record basic technical information such as:

  • IP address

  • browser type and version

  • device type

  • pages visited and time of visit

We use this technical data to:

  • keep the website running smoothly

  • maintain security and prevent fraud

  • diagnose and fix technical issues

We do not use this data to identify you personally or track you across other websites.

Why We Collect This Information

In summary, we collect and use your personal information in order to:

  • perform our contract with you (e.g. process payments, ship orders, provide downloads)

  • communicate with you about orders and support

  • manage and display product reviews you submit

  • comply with legal and financial record-keeping obligations

We do not collect data for advertising profiles, and we do not sell or monetise your data.

How We Use and Process Your Information

We process your personal information only for the purposes described above and only to the extent necessary.

Order Processing and Delivery

We use your contact and payment details to:

  • process your order and payment

  • deliver your physical products

  • deliver digital products by email or link

This processing is necessary for us to perform the contract with you (i.e. your purchase).

Payments

As explained, payments are handled by third-party payment processors. We pass only the necessary billing information to them so they can process your payment securely. We do not store your full card details on our systems.

Communication with You

We use your email (or phone number, if provided) to send:

  • order confirmations and receipts

  • shipping and delivery updates

  • responses to enquiries or support requests

  • other essential service messages (e.g. an issue with your order)

We do not send promotional or marketing emails unless you have separately and explicitly opted in.

Display of Reviews

If you submit a review, we use your name/alias and review content to display it on the relevant product page. We may also analyse reviews internally to improve our products and services.

If we ever wish to use your review in wider marketing (e.g. on social media or as a testimonial), we will ask for your consent first.

Site Functionality and Security

We may use cookies and similar technologies to:

  • keep your shopping cart active

  • maintain your session during checkout

  • provide basic site functionality (see Cookies and Tracking below)

We also process technical data to:

  • safeguard the security of our website

  • protect against fraud and abuse

  • troubleshoot and fix errors

This processing is based on our legitimate interests in running a secure and reliable service, balanced against your privacy rights.

Legal Compliance and Record-Keeping

We may process and retain certain information where required to:

  • comply with UK tax, accounting and other legal obligations

  • respond to lawful requests from authorities or courts

  • enforce our Terms & Conditions

  • protect our rights and the rights of others

We only keep information as long as necessary for these purposes.

We do not use your personal information for any incompatible purpose, and we do not use it for targeted advertising or profiling.

How We Share Your Information

We do not sell your personal information to anyone.

We only share your information with third parties in the following limited situations:

Service Providers (Processors)

We share information with trusted third-party service providers who help us run our business, such as:

  • Payment processors – receive your payment details to process transactions. They may have their own privacy policies that govern how they handle that data.

  • Shipping and logistics partners – receive your name, address and (if necessary) phone number to deliver your order.

  • Website hosting and IT providers – host our website and store information securely on our behalf.

  • Email and communication providers – send order confirmations and respond to your support messages.

  • Review or form tools (if used) – process review submissions or contact forms.

These providers act on our instructions and are not allowed to use your data for their own purposes. We share only the minimum amount of data necessary for them to perform their services.

Business Transfers

If BarbellMedia is ever involved in a merger, acquisition, asset sale or other corporate transaction, customer information may be transferred as part of that deal. If this happens, your information will remain protected in line with this Privacy Policy or any successor policy that is at least as protective, and we will notify you where required by law.

Legal Obligations and Protection of Rights

We may disclose your personal information where required or permitted by law, for example:

  • to comply with a legal obligation or court order

  • to respond to lawful requests from public authorities

  • to enforce our Terms & Conditions

  • to protect the rights, property, or safety of BarbellMedia, our users or others

With Your Consent

In situations not covered above, we will only share your personal information with your explicit consent. For example, if you agree to let us feature your testimonial on our homepage.

Cookies and Tracking Technologies

We keep our use of cookies and similar technologies to a minimum.

  • We do not use analytics, advertising or third-party tracking cookies.

  • We do not use cookies to build marketing profiles or track your activity across other websites.

Essential Cookies

We may use strictly necessary cookies or similar technologies to:

  • remember what you put in your shopping cart

  • keep you logged in during checkout (if applicable)

  • maintain basic site security and functionality

These cookies are essential to provide the services you request (e.g. purchasing a product) and are not used for advertising or profiling.

Under UK law (including the Privacy and Electronic Communications Regulations – PECR), consent is not required for these strictly necessary cookies.

No Cookie Banner

Because we do not use non-essential cookies (such as analytics or advertising cookies), we do not show a cookie consent banner. If our cookie practices change in the future (for example, if we introduce analytics), we will update this policy and, where required, provide an appropriate consent mechanism.

Do Not Track (DNT)

Some browsers offer a “Do Not Track” (DNT) setting. There is currently no widely accepted standard for how websites should respond to these signals.

We do not track users across third-party sites, and we do not use behavioural advertising. Therefore, we do not treat DNT signals differently, but we do not engage in cross-site tracking in any event.

Data Storage, Retention and Security

Where and How Your Data Is Stored

Your personal information is stored on secure servers managed by us or our trusted service providers. These may be located in the UK and, where necessary, in other countries (see International Data Transfers below).

We retain your information only for as long as necessary to:

  • fulfil the purposes outlined in this policy

  • complete your purchases

  • comply with our legal, accounting, and reporting obligations

For example, we may keep order records for a number of years as required by tax law. Reviews may remain visible on the site until you ask us to remove them.

When we no longer need your personal information and are not required by law to retain it, we will either delete it securely or anonymise it.

Security Measures

We take appropriate technical and organisational measures to protect your personal information against:

  • unauthorised access

  • accidental or unlawful destruction

  • loss or alteration

These measures include, for example:

  • using HTTPS/SSL to encrypt data in transit

  • limiting access to personal data to staff and service providers who need it

  • using firewalls, secure hosting and regular software updates

  • monitoring for potential vulnerabilities or breaches

Our payment processors are also required to meet strong security standards (including PCI-DSS) for handling payment card data.

While no method of transmission or storage is completely secure, we strive to use industry-standard safeguards to protect your personal information. If we become aware of a data breach that affects your personal data, we will notify you and the relevant authorities where required by law.

International Data Transfers

BarbellMedia is based in the United Kingdom. If you are located outside the UK, your personal data will be transferred to and processed in the UK and possibly in other countries where our service providers are located.

Where we transfer personal data from the UK or the European Economic Area (EEA) to countries that do not have an “adequacy” decision, we put appropriate safeguards in place, such as:

  • using the UK International Data Transfer Agreement (IDTA) or

  • the UK Addendum to the EU Standard Contractual Clauses, or

  • other lawful transfer mechanisms approved under UK data protection law.

In some cases, transfers may also be necessary for the performance of a contract with you (for example, shipping products to you in another country).

You can contact us if you would like more details about the specific safeguards we apply to international transfers.

Legal Bases for Processing (UK GDPR / EU GDPR)

Under the UK GDPR (and, where applicable, EU GDPR), we must have a lawful basis for processing your personal data. We rely on the following bases:

  • Contractual necessity – Most processing we do is necessary to perform our contract with you or to take steps at your request before entering into a contract (e.g. processing your order and payment, providing support).

  • Legal obligation – We process some data because we are legally required to (for example, keeping accounting records or complying with tax and consumer protection laws).

  • Legitimate interests – We may process data where it is in our legitimate interest to do so and where your rights and interests do not override those interests (for example, maintaining site security, preventing fraud, or using basic cookies to keep your basket).

  • Consent – In certain limited cases, we may rely on your consent (e.g. displaying a review you submitted or if we ever ask to use your story as a testimonial). Where we rely on consent, you can withdraw it at any time.

If you have questions about the legal bases we rely on for any specific processing activity, please contact us.

Your Rights (UK / EEA Users)

If you are in the UK or EEA, you have the following rights regarding your personal data:

  • Right of access – You can request confirmation of whether we process your personal data and ask for a copy of the data we hold about you.

  • Right to rectification – You can ask us to correct or complete any inaccurate or incomplete personal data.

  • Right to erasure – In certain circumstances, you can ask us to delete your personal data (for example, when it is no longer needed for the purpose it was collected, or you withdraw consent and there is no other legal basis). We may not be able to delete data that we are legally required to keep (e.g. tax records).

  • Right to restrict processing – You can ask us to restrict processing of your data in certain situations (for example, while we verify its accuracy or where you have objected to our use of it).

  • Right to object – You can object to processing based on our legitimate interests. We will stop processing your personal data unless we have compelling legitimate grounds to continue or need to process it for legal claims.

  • Right to data portability – You can ask to receive personal data you have provided to us in a structured, commonly used and machine-readable format, and to have it transferred to another controller where technically feasible.

  • Right to withdraw consent – Where processing is based on your consent, you can withdraw that consent at any time. This will not affect the lawfulness of processing carried out before withdrawal.

To exercise any of these rights, please contact us using the details in the Contact Us section. We may need to verify your identity before acting on your request.

We aim to respond within one month of receiving your request (or explain if more time is needed in complex cases).

Complaints to the ICO

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK data protection regulator, if you believe your data has been handled unlawfully.

We would, however, appreciate the chance to deal with your concerns first, so please contact us in the first instance.

Children’s Privacy

Our website and products are not directed at children under the age of 13, and we do not knowingly collect personal information from children under 13.

  • If you are under 13, please do not provide any personal information on our site.

  • If we learn that we have collected personal data from a child under 13, we will delete it as soon as reasonably possible.

  • If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can take appropriate action.

Young people aged 13–17 should only use our site with the knowledge and consent of a parent or guardian.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

  • changes in our practices

  • changes in technology

  • changes in legal or regulatory requirements

When we make changes, we will update the “Last Updated” date at the top of this page. If we make significant changes, we may provide a more prominent notice (for example, on our homepage).

If you do not agree with the changes, you should stop using our site. By continuing to use the site after the updated Privacy Policy takes effect, you agree to the revised policy.

Contact Us

If you have any questions, concerns, or requests about this Privacy Policy or how we handle your personal data, please contact us:

Email: barbellmediaofficial@gmail.com

Please include “Privacy Enquiry” in the subject line of your email or letter.

For rights requests, please provide enough information for us to verify your identity (for example, your name, email address used for orders, and recent order information).

bottom of page