Privacy policy

Privacy policy USA

Switch to the EU privacy policy.
Switch to the UK privacy policy.

This is the privacy policy for the platform www.fitchef.com, the FitChef App and Interface (hereinafter referred to as the "Platform") offered by FitChef USA B.V. (hereinafter referred to as "FitChef", "we" or "us"). More company and contact information is included at the bottom of this privacy policy.

Access and use of the Platform is at all times subject to this privacy policy and the terms and conditions. This privacy policy may be amended from time to time in connection with changes in law or, for example, if new functionalities are added to the Platform.

If the client uses the Platform, FitChef (and third parties engaged by FitChef) may process privacy-sensitive data of the client. Such data may therefore be personal data.

FitChef is committed to handling personal data properly and protecting the privacy and (personal) data of its customers. Personal data are therefore carefully processed and secured by FitChef. In this privacy policy, FitChef explains which personal data are processed and used and for what purpose.

1.1 FitChef is data controller

FitChef is responsible for processing the personal data of the Customer. This means that FitChef determines which data are processed, why this is done and how this is done. Such processing may take various forms, such as: collection, recording, storage, updating, modification, retrieval, consultation, use, transmission, and deletion of data. FitChef's practices are in strict compliance with applicable laws and regulations, with particular attention to compliance with the UK General Data Protection Regulation (hereinafter "UK GDPR") and the EU General Data Protection Regulation (hereinafter "EU GDPR"), to ensure that data are processed carefully and lawfully.

This entails that, in any event, FitChef:

  • Processes personal data in accordance with the purpose for which it was provided. These purposes and types of personal data are described in this Privacy Policy;
  • Processing of personal data is limited to only that data which is minimally necessary for the purposes for which it is processed;
  • Processes personal data only if there is a basis for doing so. FitChef requests explicit consent if this is necessary for the processing of personal data or because an agreement has been concluded or if FitChef has a legal duty to process personal data;
  • Has taken appropriate technical and organisational measures to ensure the security of personal data;
  • Does not transfer personal data to other parties, unless this is necessary for the fulfilment of the purposes for which these data have been provided;
  • Informs the Customer of the rights regarding the processing of personal data.

1.2 Overview of processing and activities

FitChef processes personal data because the Customer uses FitChef's services and/or because the Customer itself provides these data to FitChef through the Interface. FitChef processes personal data solely for the purposes of carrying out its services and informing Customers about changes to the services. When processing personal data, FitChef adheres to the UK GDPR and EU GDPR. This means that FitChef, among other things, properly records the purposes for processing personal data, stores as little data as possible, takes the necessary security measures and respects the rights of Customers and users of the Interfaces.

To process personal data, FitChef uses processors. FitChef does this for at least the following purposes:

  • Storing data essential for offering our services;
  • Sending mailings to leads and Customers;
  • Facilitating payment processes;
  • Performing analyses;
  • Hosting the platform;
  • Managing content through our CMS system;
  • Using a CRM for Customer relationship management;
  • Managing financial administration;
  • Integrating services via connectivity platforms;
  • Developing the platform via issue tracking;
  • Providing customer support;
  • Sharing data with resellers, but only when explicitly authorised by the Customer.

FitChef has signed a processing agreement with these processors in order to optimally protect the personal data and to make agreements with processors on how to handle these personal data.

1.2.1 The client enters the website and does not complete the registration process

During the registration process with FitChef, the Customer goes through the six-part step-by-step plan for calculating his or her personal macro and calorie requirements, specifying his or her own e-mail address and specifying individual preferences for weekly menus. The Customer also explicitly agrees to the Terms and Conditions and the privacy and Cookie Policy by placing a tick. If the Customer agrees but no agreement is ultimately reached, FitChef retains a limited set of data, including name and email address. FitChef sends emails to the Customer to help complete the sign-up process and to send commercial emails. However, the Customer has the option to unsubscribe from receiving such emails at any time by using the unsubscribe link at the bottom of the email. Once unsubscribed, the Customer will not receive any further emails from FitChef, and all personal data will be deleted.

In order to provide this service, FitChef requests the following information, among others:

  • First name;
  • E-mail address;
  • Objective (to lose, maintain or gain weight).

The legal bases for processing personal data in this activity are: consent and legitimate interest (direct marketing).

1.2.2 The customer enters the website and completes the registration process (and enters into an agreement with FitChef)

When the Customer completes all the required procedures on the platform, including successfully completing the six-part step-by-step plan for calculating their personal macro and calorie needs, providing their own e-mail address, and specifying individual preferences for weekly menus, the Customer must explicitly agree to the general Terms and Conditions, as well as the privacy and cookie statement, before the Customer proceeds to the payment procedure. The Customer can then conclude the Agreement by making the payment. FitChef processes some personal data on the basis of this (contractual) relationship. Indeed, it is on the basis of the Customer's personal data that FitChef creates customised eating schedules appropriate to the personal macro and calorie requirements for its Customers.

In order to provide this service, FitChef requests the following data, among others:

  • Name
  • E-mail address
  • Gender
  • Age
  • Height
  • Weight
  • Sport and exercise activity
  • Dietary preferences (see below)
  • Objective
  • IP data

FitChef requires the following data to process the Customer's dietary preferences:

  • Intolerances;
  • Excluded ingredients;
  • Dietary preferences such as carbohydrates;
  • Number of desired meal times per day;
  • Preferred recipes for in weekly menus;
  • Choice of supermarket;
  • Replacing recipes;
  • Weighing frequency.

FitChef also processes:

  • Financial Data, which means the payment method and card association used to process your payments for your Subscription. We do not store or process your card details ourselves; they are processed and stored via one of our contracted third-party service providers. We encrypt your payment card details in your browser and securely transfer this data to our relevant third-party payment provider to process a payment.
  • Transaction Data, which means details about transactions you have made in connection with FitChef, including the payments to and from you along with other details of services you have purchased from us.
  • Profile Data, which includes your email address and details of any purchases or orders made by you, and your interests, preferences, feedback, and survey or questionnaire responses.

The Customer has the option to have these data deleted in their own personal environment. However, the consequence is that the functionalities offered by FitChef in the Interface will no longer work properly.

Consent can be withdrawn by the Customer at any time, even for specific processing purposes. A full withdrawal does mean that the services cannot (no longer) be provided by FitChef.

The legal bases for processing personal data in this activity are: performance of the agreement, consent (e.g., for newsletters, marketing, and sales purposes), legitimate interest, and legal obligation.

1.2.2 FitChef and the processing of personal data for commercial purposes

FitChef processes personal data of a Customer or potential Customer (including name and email address) partly for commercial purposes, such as market research and marketing and sales activities. Marketing and sales activities will take place both after the conclusion of the Agreement and after a potential Customer has partially completed the registration process and no agreement to provide a service (tailor-made meal plans) has been concluded (yet).

Unsubscribing for this is done in the same way as described in 1.2.1.

The legal bases for processing personal data in this activity are: consent and legitimate interest (direct marketing).

1.3 FitChef and cooperation partners

FitChef cooperates with partners, also known as resellers. These partners promote FitChef's services under their own name (white label) and receive a commission in return for their services. These partners do not have access to personal data, either provided by FitChef or by the Customer themselves.

FitChef offers the Interface to resellers via the website "weekschedule.co.uk" or a subdomain of the reseller. However, the data shared by Customers is processed exclusively by FitChef and not by the reseller. The Customer has the option to expressly consent to sharing data with specifically named third parties. If the Customer chooses to share data with third parties, this can be indicated and can be changed at any time during the term of the Subscription. Any data shared with third parties will be processed under the responsibility of those relevant third parties.

1.4 Other processing

FitChef collects and uses personal data from visitors and Customers to operate the Interface and to provide the requested services, products, and services. Such personal data is also used to keep you informed of available services from FitChef. FitChef may also contact you via surveys to research opinions about current services or potential new services. Such personal information may be used for research and analysis purposes in order to improve the Website and services. If FitChef proceeds with such processing, FitChef will make every effort to anonymise as much data as possible.

1.5 Transfer to third parties

FitChef does not sell, rent or lease Customer lists to third parties. However, FitChef may transfer personal data to third parties such as resellers. FitChef will only do so if the Customer (or visitor) explicitly consents to this (see also 1.3).

FitChef will never disclose Customers' and visitors' personal data, without notice, except when required to do so by law or in the good faith belief that such action is necessary to:

  • to comply with a legal request or with legal process;
  • protect and defend the rights or property of FitChef; and
  • to act under exigent circumstances to protect the personal safety of users of FitChef, or the public.

The parties that process personal data on our or your behalf are:

  • Drupal as CMS;
  • Slack for internal communication;
  • Postmark & Mautic for sending emails;
  • Stripe & Mollie for receiving payments and administration;
  • Google Analytics for website analytics;
  • Google Cloud for hosting platform;
  • Teamleader & Hubspot as CRM;
  • Hotjar for screen recording and heatmaps
  • Zapier for sending personal data with resellers, provided the customer has given explicit consent;
  • GitLab for version management, (CI/CD) deployment and issue tracking;
  • Helpscout & Tidio for providing customer support;
  • Slack to support communication regarding resolving issues;

Transfer FitChef

At the time FitChef sells its business, personal data (mail address file and other data) will also be transferred to the purchasing party, this in the context of the continuation of the business

Outside the EEA

FitChef processes personal data exclusively within the EEA (European Economic Area). In principle, FitChef has chosen to keep data storage within the EEA.

Minors

FitChef's website does not intend to collect data about website visitors who are under 18 years of age, unless they have permission from their parents or guardian. However, FitChef cannot verify whether a visitor is over 18 years of age. FitChef therefore advises parents to be involved in their children's online activities to avoid collecting data about children without parental consent. If the Customer is convinced that FitChef has collected personal data about a minor without consent, please contact us at [email protected] and this information will be deleted as soon as possible.

1.6 Retention of personal data

The starting point for the retention of personal data is that all data will not be kept for longer than necessary. FitChef will therefore not keep personal data longer than strictly necessary to realise the purposes for which the data are collected. Exceptions to this are the data that FitChef must keep longer because the law requires it, such as in the context of keeping records. The maximum retention period is 7 years.

Personal data will be stored by FitChef for the purposes of the aforementioned processing operations (see 1.2.1. to 1.2.3.) for the period of:

- in case of an agreement/legal obligation: up to 7 years after termination of the agreement or expiry of the legal obligation;
- in case of consent/justified interest: until revocation of consent/expiration of interest (newsletters, customer satisfaction survey)

1.7 Protection and security of personal data

FitChef ensures appropriate organisational, technical and physical security of the personal data of Customers and visitors. FitChef safely stores personal data supplied to computer servers in a controlled, secure environment, protected from unauthorised access, use or disclosure. FitChef has also implemented the following security measures:

  • Adequate back-up procedures for system and data;
  • Provisions for adequate access security for systems and data, including at least personal identification (through personal login), assignment and monitoring of user profiles, adequate firewall protection against outside access;
  • Use of up-to-date virus scanners;
  • Prohibition of use of mobile memory media for privacy-sensitive information;
  • Internal/external fallback options and fallback infrastructure;
  • Service contracts for critical systems;
  • Monitoring improper access from the internet, secure e-mail traffic and storage, website security;
  • Awareness within organisation for information security, s, risks of phishing etc and courses on privacy;
  • Procedure for recording and evaluating data breaches (security incidents);
  • The operational security of and risks surrounding critical systems are evaluated annually and recorded in writing;
  • Procedures for periodically testing, assessing and evaluating the effectiveness of technical and organisational measures;
  • Clean desk policy;
  • Having confidentiality agreements signed with partners such as sales partners (account managers).

2. Bases for processing personal data

The GDPR has six bases for processing personal data:

  • Consent of the person concerned.
  • Data processing is necessary for the performance of an agreement.
  • Data processing is necessary for the fulfilment of a legal obligation.
  • Data processing is necessary to protect vital interests.
  • The data processing is necessary for the performance of a task in the public interest or the exercise of public authority.
  • The data processing is necessary for the protection of legitimate interests

The services offered by FitChef are based on bases 1,2,3 and 6.

3. Customers' rights in relation to personal data.

Customers who are citizens of any of the member states of the European Union and Customers from outside of the European Union while residing in or travelling in the European Union (collectively, “EU Customers”), have a number of rights under this policy as interpreted under the General Data Protection Regulation. The privacy rights of all other Customers (“Non-EU Customers”) are determined by this policy as interpreted under applicable privacy laws that will vary by Non- EU Customer based on citizenship and residency considerations. All customers have the following rights under this policy: right to access, right to information, right to rectification, right to oblivion (data erasure), right to restriction of processing, right to portability (data portability), right to object and right not to be subjected to automated individual decision-making / profiling. The following describes the right to information and the right to oblivion, as well as the procedure to exercise them.

3.1 Right to information and oblivion

The customer has the right to request the information that FitChef has of the customer and, if desired, to change or delete it (or have it deleted). A customer can do this himself via the personal settings of his own account. If this cannot be done via these settings or if the customer has other questions/comments on data processing, please send an itemised request to [email protected].

To ensure that the request for inspection has been made by the customer, FitChef may - for the prevention of abuse - ask for a copy of the identity document to accompany the request. Please note that this copy should black out the passport photo, MRZ (machine readable zone, the strip of numbers at the bottom of the passport), passport number and Citizen Service Number (CSN). This is to protect the customer's privacy. FitChef will respond to the request as soon as possible, but in any case within four weeks.

4. Visitors to FitChef's website

FitChef is interested in data that provides insight into the use of our website, such as the number of visitors during a specific period, the origin of our visitors based on their country of origin, and the most consulted pages. To collect this information, FitChef records visitors' IP address and domain name. In addition, FitChef keeps track of the type of browser visitors use to access the website, with the aim of tailoring our facilities and features to the visitors' devices used.

The information collected is owned by FitChef and is used to improve our services, marketing initiatives and overall user experience on our website.

Cookie statement

FitChef uses cookies when offering electronic services. A cookie is a simple small file sent with pages of this website and stored by the browser on the computer's hard drive. Cookies are used to record settings and preferences. Customers can disable these cookies via their browser. The specific procedure varies from one browser to another and can be consulted in the browser's help function. However, completely refusing cookies may limit the user experience of the website.

Placed cookies

Cookies are also placed on the FitChef website by the US company Google as part of its "Analytics" service. This service is used to generate reports on the use of the website by customers. Google may provide the collected information to third parties when required by law or when third parties process the information on Google's behalf. FitChef has no influence on this.

Cookie overview

Our cookie overview can be consulted at https://fitchef.com/cookies. FitChef does not have full control over what the above parties themselves do with the personal data they obtain through the cookies placed. More information on how these parties store and use the personal data collected can be found in the privacy statement of the relevant party. Please note that these statements may change regularly.

Enabling and disabling cookies

It is possible to disable the placing of cookies by adjusting the browser settings. Detailed instructions can be found in the manual of the browser used by the customer. Certain functionalities on the website may not or only partially function if cookies are switched off.

Deleting cookies

Most cookies have a limited lifespan, meaning they expire automatically after a certain period of time and no longer record data from the site visit. Visitors can also choose to delete cookies manually before their lifetime has expired. Consult the browser's manual for detailed instructions.

Regulator for EU Customers: Dutch Data Protection Authority

FitChef is available in case of complaints about the processing of personal data. Based on the General Data Protection Regulation, EU Customers also have the right to file a complaint with the the Dutch Data Protection Authority (‘Autoriteit Persoonsgegevens’) or with another European privacy regulator

Contact details Dutch regulator:

Bezuidenhoutseweg 30 (by appointment only) in The Hague (2594 AV)
Postal address: PO Box 93374 (2509 AJ) in The Hague
Telephone: 0900 200 12 01

Regulator for Non-EU Customers: To be determined on a customer-by-customer basis

FitChef is available in case of complaints about the processing of personal data. Upon the written request of its Non-EU Customers, FitChef will identify and deliver to the inquiring Non-EU Customer, the name and contact details of all regulators having authority to enforce the data privacy rights of the inquiring Non-EU Customer. For Non-EU Customers in the United States of America, these regulators may include, without limitation, state attorneys general, the United States Federal Trade Commission, and agencies charged with enforcement of specific types of protected information.

Changes to this privacy policy

FitChef reserves the right to amend privacy policy. Such changes will not be published on the website. Therefore, regular consultation of this statement is necessary to be aware of relevant changes.

Contact and company details

FitChef USA B.V.
Cimburgalaan 2 in Breda (4819 BC) - only statutory address and no visiting address
E-mail: [email protected]
Chamber of Commerce number: 93022832


This text and page was last modified on: 01-03-2024

Privacy policy EU

Switch to the USA privacy policy.
Switch to the UK privacy policy.

This is the privacy policy for the platform www.fitchef.com, the FitChef App and Interface (hereinafter referred to as the "Platform") offered by FitChef B.V. (hereinafter referred to as "FitChef", "we" or "us"). More company and contact information is included at the bottom of this privacy policy.

Access and use of the Platform is at all times subject to this privacy policy and the terms and conditions. This privacy policy may be amended from time to time in connection with changes in law or, for example, if new functionalities are added to the Platform.

If the client uses the Platform, FitChef (and third parties engaged by FitChef) may process privacy-sensitive data of the client. Such data may therefore be personal data.

FitChef is committed to handling personal data properly and protecting the privacy and (personal) data of its customers. Personal data are therefore carefully processed and secured by FitChef. In this privacy policy, FitChef explains which personal data are processed and used and for what purpose.

1.1 FitChef is data controller

FitChef is responsible for processing the personal data of the customer. This means that FitChef determines which data are processed, why this is done and how this is done. Such processing may take various forms, such as: collection, recording, storage, updating, modification, retrieval, consultation, use, transmission, and deletion of data. FitChef's practices are in strict compliance with applicable laws and regulations, with particular attention to compliance with the General Data Protection Regulation (hereinafter "GDPR"), to ensure that data are processed carefully and lawfully.

This entails that, in any event, FitChef:

  • Process personal data in accordance with the purpose for which it was provided. These purposes and types of personal data are described in this privacy policy;
  • Processing personal data are limited to only those data that are minimally necessary for the purposes for which they are processed;
  • Process personal data only if there is a basis for doing so. FitChef requests explicit and unambiguous consent if this is necessary for the processing of personal data or because an agreement has been concluded or if FitChef has a legal duty to process personal data;
  • Has taken appropriate technical and organisational measures to ensure the security of personal data;
  • Does not transfer personal data to other parties, unless this is necessary for the fulfilment of the purposes for which these data have been provided;
  • Informs the customer of the rights regarding the processing of personal data.

1.2 Overview of processing and activities

FitChef processes personal data because the client uses FitChef's services and/or because the client itself provides these data to FitChef through the Platform. FitChef processes these personal data solely for the purposes of carrying out its services and informing about changes to the services. When processing personal data, FitChef adheres to the GDPR. This means that FitChef, among other things, properly records the purposes for processing personal data, stores as little data as possible, takes the necessary security measures and respects the rights of customers and visitors.

To process personal data, FitChef uses processors. FitChef does this for at least the following purposes:

  • Storing data essential for offering our services;
  • Sending mailings to leads and customers;
  • Facilitating payment processes;
  • Performing analyses;
  • Hosting the platform;
  • Managing content through our CMS system;
  • Using a CRM for customer relationship management
  • Managing financial administration;
  • Integrating services via connectivity platforms;
  • Developing the platform via issue tracking;
  • Providing customer support;
  • Sharing data with resellers, but only when explicitly authorised by the customer.

FitChef has signed a processing agreement with these processors in order to optimally protect the personal data and to make agreements with processors on how to handle these personal data.

1.2.1 The client enters the website and does not complete the registration
process

During the registration process with FitChef, the customer goes through the six-part step-by-step plan for calculating his or her personal macro and calorie requirements, specifying his or her own e-mail address and specifying individual preferences for weekly menus. The customer also explicitly agrees to the terms and conditions and the privacy and cookie policy by placing a tick. If the customer agrees but no agreement is ultimately reached, FitChef retains a limited set of data, including name and email address. FitChef sends emails to the customer to help complete the sign-up process and to send commercial emails. However, the customer has the option to unsubscribe from receiving such emails at any time by using the unsubscribe link at the bottom of the email. Once unsubscribed, the customer will not receive any further emails from FitChef, and all personal data will be deleted.

In order to provide this service, FitChef requests the following information, among others:

  • First name;
  • E-mail address;
  • Objective (to lose, maintain or gain weight).

The legal bases for processing personal data in this activity are: consent and legitimate interest (direct marketing).

1.2.2 The customer enters the website and completes the registration process (and enters into an agreement with FitChef)

When the customer completes all the required procedures on the platform, including successfully completing the six-part step-by-step plan for calculating their personal macro and calorie needs, providing their own e-mail address, and specifying individual preferences for weekly menus, the customer must explicitly agree to the general terms and conditions, as well as the privacy and cookie statement, before the customer proceeds to the payment procedure. The customer can then conclude the agreement by making the payment. FitChef processes some personal data on the basis of this (contractual) relationship. Indeed, it is on the basis of the customer's personal data that FitChef creates customised eating schedules appropriate to the personal macro and calorie requirements for its customers. In order to provide this service, FitChef requests the following data, among others:

  • Name
  • E-mail address
  • Gender
  • Age
  • Height
  • Weight
  • Sport and exercise activity
  • Dietary preferences (see below)
  • Objective
  • IP data

FitChef requires the following data to process the customer's dietary preferences:

  • Intolerances;
  • Excluded ingredients;
  • Dietary preferences such as carbohydrates;
  • Number of desired meal times per day;
  • Preferred recipes for in weekly menus;
  • Choice of supermarket;
  • Replacing recipes;
  • Weighing moments.

FitChef also processes

  • Financial Data, which means the payment method and card association used to process your payments for your Subscription. We do not store or process your card details ourselves, they are processed and stored via one of our contracted third-party service providers.
  • Transaction Data, which means details about transactions you have made in connection with FitChef, including the payments to and from you along with other details of services you have purchased from us.
  • Profile Data, which includes your email address and details of any purchases or orders made by you, and your interests, preferences, feedback and survey or questionnaire responses.

The customer has the option to have these data deleted in their own personal environment. However, the consequence is that the functionalities offered by FitChef in the Platform will no longer work properly.

Consent can be withdrawn by the customer at any time, even for specific processing purposes. A full withdrawal does mean that the services cannot (no longer) be provided by FitChef.

The legal bases for processing personal data in this activity are: performance of the agreement, consent (e.g. for newsletters, marketing and sales purposes), legitimate interest and legal obligation.

1.2.3 FitChef and the processing of personal data for commercial purposes

FitChef processes personal data of a customer or potential customer (including name and email address) partly for commercial purposes, such as market research and marketing and sales activities. Marketing and sales activities will take place both after the conclusion of the agreement and after a potential client has partially completed the registration process and no agreement to provide a service (tailor-made meal plans) has been concluded (yet).

Unsubscribing for this is done in the same way as described in 1.2.1. The legal bases for processing personal data in this activity are: consent and legitimate interest (direct marketing).

1.3 FitChef and cooperation partners

FitChef cooperates with partners, also known as resellers. These partners promote FitChef's services under their own name (white label) and receive a commission in return for their services. These partners do not have access to personal data, either provided by FitChef or by the customer themselves.

FitChef offers the Platform to resellers via the website "fitchef.com" or a subdomain of the reseller. However, the data shared by customers is processed exclusively by FitChef and not by the reseller. The customer has the option to expressly consent to sharing data with specifically named third parties. If the customer chooses to share data with third parties, this can be indicated and can be changed at any time during the term of the subscription. Any data shared with third parties will be processed under the responsibility of those relevant third parties.

1.4 Other processing

FitChef collects and uses personal data from visitors and customers to operate the Platform and to provide the requested services, products and services. Such personal data is also used to keep you informed of available services from FitChef. FitChef may also contact you via surveys to research opinions about current services or potential new services. Such personal information may be used for research and analysis purposes in order to improve the website and services. If FitChef proceeds with such processing, FitChef will make every effort to anonymise as much data as possible.

1.5 Transfer to third parties

FitChef does not sell, rent or lease customer lists to third parties. However, FitChef may transfer personal data to third parties such as resellers. FitChef will only do so if the customer (or visitor) explicitly consents to this (see also 1.3).

FitChef will never disclose customers' and visitors' personal data, without notice, except when required to do so by law or in the good faith belief that such action is necessary to:

  • to comply with a legal request or with legal process;
  • protect and defend the rights or property of FitChef; and
  • to act under exigent circumstances to protect the personal safety of users of FitChef, or the public.

The parties that process personal data on our or your behalf are:

  • Drupal as CMS;
  • Slack for internal communication;
  • Postmark & Mautic for sending emails;
  • Stripe & Mollie for receiving payments and administration;
  • Google Analytics for website analytics;
  • Google Cloud for hosting platform;
  • Teamleader & Hubspot as CRM;
  • Hotjar for screen recording and heatmaps;
  • Zapier for sending personal data with resellers, provided the customer has given explicit consent;
  • GitLab for version management, (CI/CD) deployment and issue tracking.
  • Helpscout & Tidio for providing customer support;
  • Slack to support communication regarding resolving issues.

Transfer FitChef

At the time FitChef sells its business, personal data (mail address file and other data) will also be transferred to the purchasing party, this in the context of the continuation of the business.

Outside the EEA

FitChef processes personal data exclusively within the EEA (European Economic Area). In principle, FitChef has chosen to keep data storage within the EEA.

Minors

FitChef's website does not intend to collect data about website visitors who are under 18 years of age, unless they have permission from their parents or guardian. However, FitChef cannot verify whether a visitor is over 18 years of age. FitChef therefore advises parents to be involved in their children's online activities to avoid collecting data about children without parental consent. If the customer is convinced that FitChef has collected personal data about a minor without consent, please contact us at [email protected] and this information will be deleted as soon as possible.

1.6 Retention of personal data

The starting point for the retention of personal data is that all data will not be kept for longer than necessary. FitChef will therefore not keep personal data longer than strictly necessary to realise the purposes for which the data are collected. Exceptions to this are the data that FitChef must keep longer because the law requires it, such as in the context of keeping records. The maximum retention period is then 7 years.

Personal data will be stored by FitChef for the purposes of the aforementioned processing operations (see 1.2.1. to 1.2.3.) for the period of:

- in case of an agreement/legal obligation: up to 7 years after termination of the agreement or expiry of the legal obligation;
- in case of consent/justified interest: until revocation of consent/expiration of interest (newsletters, customer satisfaction survey)

1.7 Protection and security of personal data

FitChef ensures appropriate organisational, technical and physical security of the personal data of customers and visitors. FitChef safely stores personal data supplied to computer servers in a controlled, secure environment, protected from unauthorised access, use or disclosure. FitChef has also implemented the following security measures:

  • Adequate back-up procedures for system and data;
  • Provisions for adequate access security for systems and data, including at least personal identification (through personal login), assignment and monitoring of user profiles, adequate firewall protection against outside access;
  • Use of up to date virus scanners;
  • Prohibition of use of mobile memory media for privacy-sensitive information;
  • Internal/external fallback options and fallback infrastructure;
  • Service contracts for critical systems;
  • Monitoring improper access from the internet, secure e-mail traffic and storage, website security;
  • Awareness within organisation for information security, s, risks of phishing etc and courses on privacy;
  • Procedure for recording and evaluating data breaches (security incidents) ;
  • The operational security of and risks surrounding critical systems are evaluated annually and recorded in writing;
  • Procedures for periodically testing, assessing and evaluating the effectiveness of technical and organisational measures;
  • Clean desk policy;
  • Having confidentiality agreements signed with cooperation partners such as sales partners (account managers).

2. Bases for processing personal data

The GDPR has six bases for processing personal data:

  • Consent of the person concerned.
  • Data processing is necessary for the performance of an agreement.
  • Data processing is necessary for the fulfilment of a legal obligation.
  • Data processing is necessary to protect vital interests.
  • The data processing is necessary for the performance of a task in the public interest or the exercise of public authority.
  • The data processing is necessary for the protection of legitimate interests.

The services offered by FitChef are based on bases 1,2,3 and 6.

3. Customers' rights in relation to personal data.

Customers who are citizens of any of the member states of the European Union and Customers from outside of the European Union while residing in or traveling in the European Union (collectively, “EU Customers”), have a number of rights under this policy as interpreted under the General Data Protection Regulation. The privacy rights of all other Customers (“Non-EU Customers”) are determined by this policy as interpreted under applicable privacy laws that will vary by Non- EU Customer based on citizenship and residency considerations. All customers have the following rights under this policy: right to access, right to information, right to rectification, right to oblivion (data erasure), right to restriction of processing, right to portability (data portability), right to object and right not to be subjected to automated individual decision-making / profiling. The following describes the right to information and the right to oblivion, as well as the procedure to exercise them.

3.1 Right to information and oblivion

The customer has the right to request the information that FitChef has of the customer and, if desired, to change or delete it (or have it deleted). A customer can do this himself via the personal settings of his own account. If this cannot be done via these settings or if the customer has other questions/comments on data processing, please send an itemised request to [email protected].

To ensure that the request for inspection has been made by the customer, FitChef may - for the prevention of abuse - ask for a copy of the identity document to accompany the request. Please note that this copy should black out the passport photo, MRZ (machine readable zone, the strip of numbers at the bottom of the passport), passport number and Citizen Service Number (CSN). This is to protect the customer's privacy. FitChef will respond to the request as soon as possible, but in any case within four weeks.

4. Visitors to FitChef's website

FitChef is interested in data that provides insight into the use of our website, such as the number of visitors during a specific period, the origin of our visitors based on their country of origin, and the most consulted pages. To collect this information, FitChef records visitors' IP address and domain name. In addition, FitChef keeps track of the type of browser visitors use to access the website, with the aim of tailoring our facilities and features to the visitors' devices used. The information collected is owned by FitChef and is used to improve our services, marketing initiatives and overall user experience on our website

Cookie statement

FitChef uses cookies when offering electronic services. A cookie is a simple small file sent with pages of this website and stored by the browser on the computer's hard drive. Cookies are used to record settings and preferences. Customers can disable these cookies via their browser. The specific procedure varies from one browser to another and can be consulted in the browser's help function. However, completely refusing cookies may limit the user experience of the website.

Placed cookies

Cookies are also placed on the FitChef website by the US company Google as part of its "Analytics" service. This service is used to generate reports on the use of the website by customers. Google may provide the collected information to third parties when required by law or when third parties process the information on Google's behalf. FitChef has no influence on this.

Cookie overview

Our cookie overview can be consulted at https://fitchef.com/cookies. FitChef does not have full control over what the above parties themselves do with the personal data they obtain through the cookies placed. More information on how these parties store and use the personal data collected can be found in the privacy statement of the relevant party. Please note that these statements may change regularly.

Enabling and disabling cookies

It is possible to disable the placing of cookies by adjusting the browser settings. Detailed instructions can be found in the manual of the browser used by the customer. Certain functionalities on the website may not or only partially function if cookies are switched off.

Deleting cookies

Most cookies have a limited lifespan, meaning they expire automatically after a certain period of time and no longer record data from the site visit. Visitors can also choose to delete cookies manually before their lifetime has expired. Consult the browser's manual for detailed instructions.

Regulator for EU Customers: Dutch Data Protection Authority

FitChef is available in case of complaints about the processing of personal data. Based on the General Data Protection Regulation, EU Customers also have the right to file a complaint with the Dutch Data Protection Authority (‘Autoriteit Persoonsgegevens’) or with another European privacy regulator

Contact details Dutch regulator:

Bezuidenhoutseweg 30 (by appointment only) in The Hague (2594 AV)
Postal address: PO Box 93374 (2509 AJ) in The Hague
Telephone: 0900 200 12 01

Changes to this privacy policy

FitChef reserves the right to amend privacy policy. Such changes will not be published on the website. Therefore, regular consultation of this statement is necessary to be aware of relevant changes.

Contact and company details

FitChef B.V.
Cimburgalaan 2 in Breda (4819 BC) - only statutory address and no visiting address
E-mail: [email protected]
Chamber of Commerce number: 76435008


This text and page was last modified on: 01-03-2024

Privacy policy UK

Switch to the EU privacy policy.
Switch to the USA privacy policy.

This is the Privacy Policy for the website www.fitchef.com, the FitChef mobile application or any other interface (hereinafter referred to as the "Interface") offered by FitChef B.V. (hereinafter referred to as "FitChef", "we" or "us"). More company and contact information is included at the bottom of this Privacy Policy.

Capitalised terms used in this Privacy Policy shall have the meaning given to them in the Terms and Conditions, unless otherwise stated.

Access and use of the Interface is at all times subject to this Privacy Policy and the Terms and Conditions. This Privacy Policy may be amended from time to time in connection with changes in law or, for example, if new functionalities are added to the Interface.

If the Customer uses the Interface, FitChef (and third parties engaged by FitChef) may process Customerpersonal data of the user.

FitChef is committed to handling personal data properly and protecting the privacy and (personal) data of its Customers. Personal data are therefore carefully processed and secured by FitChef. In this Privacy Policy, FitChef explains which personal data are processed and used and for what purpose.

1.1 FitChef is data controller

FitChef is responsible for processing the personal data of the Customer. This means that FitChef determines which data are processed, why this is done and how this is done. Such processing may take various forms, such as: collection, recording, storage, updating, modification, retrieval, consultation, use, transmission, and deletion of data. FitChef's practices are in strict compliance with applicable laws and regulations, with particular attention to compliance with the UK General Data Protection Regulation (hereinafter "UK GDPR") and the EU General Data Protection Regulation (hereinafter "EU GDPR"), to ensure that data are processed carefully and lawfully.

This entails that, in any event, FitChef:

  • Processes personal data in accordance with the purpose for which it was provided. These purposes and types of personal data are described in this Privacy Policy;
  • Processing of personal data is limited to only that data which is minimally necessary for the purposes for which it is processed;
  • Processes personal data only if there is a basis for doing so. FitChef requests explicit consent if this is necessary for the processing of personal data or because an agreement has been concluded or if FitChef has a legal duty to process personal data;
  • Has taken appropriate technical and organisational measures to ensure the security of personal data;
  • Does not transfer personal data to other parties, unless this is necessary for the fulfilment of the purposes for which these data have been provided;
  • Informs the Customer of the rights regarding the processing of personal data.

1.2 Overview of processing and activities

FitChef processes personal data because the Customer uses FitChef's services and/or because the Customer itself provides these data to FitChef through the Interface. FitChef processes  personal data solely for the purposes of carrying out its services and informing Customers about changes to the services. When processing personal data, FitChef adheres to the UK GDPR and EU GDPR. This means that FitChef, among other things, properly records the purposes for processing personal data, stores as little data as possible, takes the necessary security measures and respects the rights of Customers and users of the Interfaces.

To process personal data, FitChef uses processors. FitChef does this for at least the following purposes:

  • Storing data essential for offering our services;
  • Sending mailings to leads and Customers;
  • Facilitating payment processes;
  • Performing analyses;
  • Hosting the platform;
  • Managing content through our CMS system;
  • Using a CRM for Customer relationship management
  • Managing financial administration;
  • Integrating services via connectivity platforms;
  • Providing customer support; 
  • Developing the platform via issue tracking;
  • Sharing data with resellers, but only when explicitly authorised by the Customer.

FitChef has signed a processing agreement with these processors in order to optimally protect the personal data and to make agreements with processors on how to handle these personal data.  

1.2.1 The Customer enters the Interface and does not complete the registration process

During the registration process with FitChef, the CCustomer goes through the six-part step-by-step plan for calculating his or her personal macro and calorie requirements, specifying his or her own e-mail address and specifying individual preferences for weekly menus. The Customer also explicitly agrees to the Terms and Conditions and the privacy and Cookie Policy by placing a tick. If the Customer agrees but no agreement is ultimately reached, FitChef retains a limited set of data, including name and email address. FitChef sends emails to the Customer to help complete the sign-up process and to send commercial emails. However, the Customer has the option to unsubscribe from receiving such emails at any time by using the unsubscribe link at the bottom of the email. Once unsubscribed, the Customer will not receive any further emails from FitChef, and all personal data will be deleted.

In order to provide this service, FitChef requests the following information, among others:

  • First name;
  • E-mail address;
  • Objective (to lose, maintain or gain weight).

The legal bases for processing personal data in this activity are: consent and legitimate interest (direct marketing).

1.2.2 The Customer enters the website and completes the registration process (and enters into an agreement with FitChef)

When the Customer completes all the required procedures on the platform, including successfully completing the six-part step-by-step plan for calculating their personal macro and calorie needs, providing their own e-mail address, and specifying individual preferences for weekly menus, the Customer must explicitly agree to the general Terms and Conditions, as well as the privacy and cookie statement, before the Customer proceeds to the payment procedure. The Customer can then conclude the Agreement by making the payment. FitChef processes some personal data on the basis of this (contractual) relationship. Indeed, it is on the basis of the Customer's personal data that FitChef creates customised eating schedules appropriate to the personal macro and calorie requirements for its Customers. In order to provide this service, FitChef requests the following data, among others:

  • Name
  • E-mail address
  • Gender
  • Age
  • Height
  • Weight
  • Sport and exercise activity
  • Dietary preferences (see below)
  • Objective
  • IP data

FitChef requires the following data to process the Customer's dietary preferences:

  • Intolerances;
  • Excluded ingredients;
  • Dietary preferences such as carbohydrates;
  • Number of desired meal times per day;
  • Preferred recipes for in weekly menus;
  • Choice of supermarket;
  • Replacing recipes;
  • Weighing frequency.

FitChef also processes

  • Financial Data, which means the payment method and card association used to process your payments for your Subscription.  We do not store or process your card details ourselves, they are processed and stored via one of our contracted third-party service providers.
  • Transaction Data, which means details about transactions you have made in connection with FitChef, including the payments to and from you along with other details of services you have purchased from us.
  • Profile Data, which includes your email address and details of any purchases or orders made by you, and your interests, preferences, feedback and survey or questionnaire responses.

The Customer has the option to have these data deleted in their own personal environment. However, the consequence is that the functionalities offered by FitChef in the Interface will no longer work properly.

Consent can be withdrawn by the Customer at any time, even for specific processing purposes. A full withdrawal does mean that the services cannot (no longer) be provided by FitChef.

The legal bases for processing personal data in this activity are: performance of the agreement, consent (e.g. for newsletters, marketing and sales purposes), legitimate interest and legal obligation.

1.2.3 FitChef and the processing of personal data for commercial purposes

FitChef processes personal data of a Customer or potential Customer (including name and email address) partly for commercial purposes, such as market research and marketing and sales activities. Marketing and sales activities will take place both after the conclusion of the Agreement and after a potential Customer has partially completed the registration process and no agreement to provide a service (tailor-made meal plans) has been concluded (yet).

Unsubscribing for this is done in the same way as described in 1.2.1.

The legal bases for processing personal data in this activity are: consent and legitimate interest (direct marketing).

1.3 FitChef and cooperation partners

FitChef cooperates with partners, also known as resellers. These partners promote FitChef's services under their own name (white label) and receive a commission in return for their services. These partners do not have access to personal data, either provided by FitChef or by the Customer themselves.

FitChef offers the Interface to resellers via the website "weekschedule.co.uk" or a subdomain of the reseller. However, the data shared by Customers is processed exclusively by FitChef and not by the reseller. The Customer has the option to expressly consent to sharing data with specifically named third parties. If the Customer chooses to share data with third parties, this can be indicated and can be changed at any time during the term of the Subscription. Any data shared with third parties will be processed under the responsibility of those relevant third parties.

1.4 Other processing

FitChef collects and uses personal data from visitors and Customers to operate the Interface and to provide the requested services, products and services. Such personal data is also used to keep you informed of available services from FitChef. FitChef may also contact you via surveys to research opinions about current services or potential new services. Such personal information may be used for research and analysis purposes in order to improve the Website and services. If FitChef proceeds with such processing, FitChef will make every effort to anonymise as much data as possible.

1.5 Transfer to third parties

FitChef does not sell, rent or lease Customer lists to third parties. However, FitChef may transfer personal data to third parties such as resellers. FitChef will only do so if the Customer (or visitor) explicitly consents to this (see also 1.3).

FitChef will never disclose Customers' and visitors' personal data, without notice, except when required to do so by law or in the good faith belief that such action is necessary to:

  • to comply with a legal request or with legal process;
  • protect and defend the rights or property of FitChef; and
  • to act under exigent circumstances to protect the personal safety of users of FitChef, or the public.

The parties that process personal data on our or your behalf are:

  • Drupal as CMS;
  • Mautic & Postmark for sending emails;
  • Stripe for receiving payments and administration;
  • Google Analytics for website analytics;
  • Google Cloud for hosting platform;
  • Teamleader & Hubspot as CRM;
  • Hotjar for screen recordings and heatmaps;
  • Zapier for sending personal data with resellers, provided the Customer has given explicit consent;
  • GitLab for version management, (CI/CD) deployment and issue tracking.
  • Helpscout & Tidio for providing customer support;
  • Slack to support communication regarding resolving issues.

Transfer FitChef

At the time FitChef sells its business, personal data (mail address file and other data) will also be transferred to the purchasing party, this in the context of the continuation of the business.

Outside the EEA

FitChef processes personal data exclusively within the EEA (European Economic Area). In principle, FitChef has chosen to keep data storage within the EEA.

Minors

FitChef's website does not intend to collect data about website visitors who are under 18 years of age, unless they have permission from their parents or guardian. However, FitChef cannot verify whether a visitor is over 18 years of age. FitChef therefore advises parents to be involved in their children's online activities to avoid collecting data about children without parental consent. If the Customer is convinced that FitChef has collected personal data about a minor without consent, please contact us at [email protected] and this information will be deleted as soon as possible.

1.6 Retention of personal data

The starting point for the retention of personal data is that all data will not be kept for longer than necessary. FitChef will therefore not keep personal data longer than strictly necessary to realise the purposes for which the data are collected. Exceptions to this are the data that FitChef must keep longer because the law requires it, such as in the context of keeping records. The maximum retention period is 7 years.

Personal data will be stored by FitChef for the purposes of the aforementioned processing operations (see 1.2.1. to 1.2.3.) for the period of:

  • in case of an agreement/legal obligation: up to 7 years after termination of the agreement or expiry of the legal obligation;
  • in case of consent/justified interest: until revocation of consent/expiration of interest (newsletters, Customer satisfaction survey)

1.7 Protection and security of personal data

FitChef ensures appropriate organisational, technical and physical security of the personal data of Customers and visitors. FitChef safely stores personal data supplied to computer servers in a controlled, secure environment, protected from unauthorised access, use or disclosure. FitChef has also implemented the following security measures:

  • Adequate back-up procedures for system and data;
  • Provisions for adequate security for systems and data, including at least personal identification (through personal login), assignment and monitoring of user profiles, adequate firewall protection against outside access;
  • Use of up to date virus scanners;
  • Prohibition of use of mobile memory media for privacy-sensitive information;
  • Internal/external fallback options and fallback infrastructure;
  • Service contracts for critical systems;
  • Monitoring improper access from the internet, secure e-mail traffic and storage, website security;
  • Awareness within organisation for information security, risks of phishing etc and courses on privacy;
  • Procedure for recording and evaluating data breaches (security incidents);
  • The operational security of and risks surrounding critical systems are evaluated annually and recorded in writing;
  • Procedures for periodically testing, assessing and evaluating the effectiveness of technical and organisational measures;
  • Clean desk policy;
  • Having confidentiality agreements signed withpartners such as sales partners (account managers).

2. Bases for processing personal data

The GDPR has six bases for processing personal data:

  • Consent of the person concerned.
  • Data processing is necessary for the performance of an agreement.
  • Data processing is necessary for the fulfilment of a legal obligation.
  • Data processing is necessary to protect vital interests.
  • The data processing is necessary for the performance of a task in the public interest or the exercise of public authority.
  • The data processing is necessary for the protection of legitimate interests.

The services offered by FitChef are based on bases 1,2,3 and 6.

3. Customers' rights in relation to personal data.

Customers who are citizens of any of the member states of the European Union and Customers from outside of the European Union while residing in or traveling in the European Union (collectively, “EU Customers”), have a number of rights under this policy as interpreted under the General Data Protection Regulation. The privacy rights of all other Customers (“Non-EU Customers”) are determined by this policy as interpreted under applicable privacy laws that will vary by Non- EU Customer based on citizenship and residency considerations. All Customers have the following rights under this policy: right to access, right to information, right to rectification, right to oblivion (data erasure), right to restriction of processing, right to portability (data portability), right to object and right not to be subjected to automated individual decision-making / profiling. The following describes the right to information and the right to oblivion, as well as the procedure to exercise them.

3.1 Right to information and oblivion

The Customer has the right to request the information that FitChef has of the Customer and, if desired, to change or delete it (or have it deleted). A Customer can do this himself via the personal settings of his own account. If this cannot be done via these settings or if the Customer has other questions/comments on data processing, please send an itemised request to [email protected]  

To ensure that the request for inspection has been made by the Customer, FitChef may - for the prevention of abuse - ask for a copy of the identity document to accompany the request. Please note that this copy should black out the passport photo, MRZ (machine readable zone, the strip of numbers at the bottom of the passport), passport number and Citizen Service Number (CSN). This is to protect the Customer's privacy. FitChef will respond to the request as soon as possible, but in any case within four weeks.

4. Visitors to FitChef's Interface

FitChef is interested in data that provides insight into the use of our website, such as the number of visitors during a specific period, the origin of our visitors based on their country of origin, and the most consulted pages. To collect this information, FitChef records visitors' IP address and domain name. In addition, FitChef keeps track of the type of browser visitors use to access the website, with the aim of tailoring our facilities and features to the visitors' devices used.

The information collected is owned by FitChef and is used to improve our services, marketing initiatives and overall user experience on our website.

For cookie clearance: https://fitchef.com/cookies

You have the right to make a complaint at any time to the Information Commissioner’s Office (the ICO), the UK supervisory authority for data protection issues (https://ico.org.uk/concerns).  We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.

Changes to this Privacy Policy

FitChef reserves the right to amend Privacy Policy. Such changes will not be published on the Interfaces. Therefore, regular consultation of this statement is necessary to be aware of relevant changes.

Contact and company details

FitChef B.V.

Cimburgalaan 2 in Breda (4819 BC) - only statutory address and no visiting address

E-mail: [email protected]

Chamber of Commerce number: 76435008

Cookie statement

FitChef uses cookies when offering electronic services. A cookie is a simple small file sent with pages of this website and stored by the browser on the computer's hard drive. Cookies are used to record settings and preferences. Customers can disable these cookies via their browser. The specific procedure varies from one browser to another and can be consulted in the browser's help function. However, completely refusing cookies may limit the user experience of the website.

Cookie overview

FitChef does not have full control over what the above parties themselves do with the personal data they obtain through the cookies placed. More information on how these parties store and use the personal data collected can be found in the privacy statement of the relevant party. Please note that these statements may change regularly.

Enabling and disabling cookies

It is possible to disable the placing of cookies by adjusting the browser settings. Detailed instructions can be found in the manual of the browser used by the Customer. Certain functionalities on the website may not or only partially function if cookies are switched off.

Deleting cookies

Most cookies have a limited lifespan, meaning they expire automatically after a certain period of time and no longer record data from the site visit. Visitors can also choose to delete cookies manually before their lifetime has expired. Consult the browser's manual for detailed instructions.

This text and page was last modified on: 14-11-2024

Fit worden was nog nooit zo makkelijk

Start direct met je eerste persoonlijke weekmenu!

Als premium member heb je toegang tot alle features en ontvang je wekelijks een nieuw menu op maat.

Start vandaag