Last updated: 29 April 2026
This Privacy Policy explains how Visualise Design Ltd, trading as The Pilates Studio Midleton (“we”, “us”, “our”) collects, uses, stores and protects your personal data when you interact with us, book classes, or visit our website.
We are committed to protecting your privacy and complying with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the Data Protection Act 2018 (Ireland).
1. Data Controller
Legal name: Visualise Design Ltd
Trading name: The Pilates Studio Midleton
Business location: Ireland
Email: lindsay@thepilatesstudiomidleton.com
Visualise Design Ltd is the data controller for the purposes of GDPR.
2. Personal Data We Collect
We collect only the personal data necessary to run our studio and website.
a) Information you provide
When booking classes or contacting us, you may provide:
- Name
- Email address
- Phone number
- Billing details
- Booking and attendance records
- Messages sent via contact forms or email
b) Health and safety information (special category data)
You may choose to provide information about injuries, medical conditions, pregnancy, or physical limitations to help us provide classes safely.
This information is:
- Provided voluntarily
- Used solely for participant safety
- Handled confidentially and only by the studio owner/instructor
c) Website and technical data
When you visit our website, we may collect:
- IP address
- Browser and device information
- Pages visited and interaction statistics
- Cookies (see Section 7)
3. How We Use Your Personal Data
We use your personal data to:
- Process and manage class bookings and courses
- Take payments and manage accounts
- Communicate about class schedules, changes, or cancellations
- Ensure client safety during Pilates sessions
- Meet accounting, tax, and legal obligations
- Maintain basic business records
- Improve our website and services
4. Legal Bases for Processing
Under GDPR, we rely on the following legal grounds:
- Contract – to provide booked classes and services
- Legal obligation – for tax and accounting records
- Legitimate interests – to operate and manage the studio
- Consent – where you voluntarily provide health information or agree to receive marketing emails
You may withdraw consent at any time.
5. Payments
Payments made through our website are processed securely via WooCommerce, using the following providers:
- Stripe
- PayPal
We do not store full credit or debit card details on our servers.
Payment providers process payment data under their own GDPR‑compliant privacy policies.
6. Marketing Communications
We do not use automated email marketing platforms.
Occasionally, we may send infrequent marketing or studio update emails directly from the studio owner’s email account to existing or past clients.
- These emails are limited in nature
- You can opt out at any time by replying to the email or contacting us
- We do not send marketing emails to people who have not had prior contact with the studio
7. Cookies
Our website uses cookies to:
- Ensure core website functionality
- Support bookings and payments
- Analyse website usage
Where required, we use a cookie consent banner allowing visitors to manage their cookie preferences.
You can also control cookies through your browser settings.
8. Data Sharing
We only share personal data with trusted service providers where necessary, including:
- EU‑based website hosting provider (France)
- Payment processors (Stripe and PayPal)
- Website and IT support services
All third‑party processors operate under GDPR‑compliant data processing agreements.
We do not sell or rent personal data to third parties.
9. Data Retention
We retain personal data only for as long as necessary:
- Booking and financial records: up to 7 years (legal requirement)
- Client contact details: while you remain an active or recent client
- Health information: only while relevant to participation in classes
Data is securely deleted or anonymised when no longer required.
10. Your Rights Under GDPR
You have the right to:
- Access your personal data
- Correct inaccurate or incomplete data
- Request deletion of your data
- Restrict or object to processing
- Data portability
- Withdraw consent at any time
To exercise your rights, please contact us at lindsay@thepilatesstudiomidleton.com
11. Complaints
If you have any concerns about how your data is handled, please contact us first so we can address the issue.
You also have the right to lodge a complaint with:
Data Protection Commission (Ireland)
Website: https://www.dataprotection.ie
12. Data Security
We take appropriate technical and organisational measures to protect your personal data, including:
- Secure EU‑based hosting
- SSL encryption
- Restricted access to personal data
- Regular software and security updates