Privacy Policy
Last Updated: January 28, 2026
Effective Date: January 28, 2026
Version: 2.0
At FITSUPP, we recognize that your privacy is important. This Privacy Policy outlines:
- What personal information we collect
- How we use and protect your data
- Your rights and choices
- Our compliance with privacy laws (GDPR, CCPA, COPPA)
By using fitsupp.com, you agree to the terms outlined in this Privacy Policy.
If you do NOT agree, please discontinue use of our website immediately.
Table of Contents
- Information We Collect
- Information We DO NOT Collect
- How We Use Your Information
- Cookies & Tracking Technologies
- Affiliate Links & Third-Party Tracking
- Data Sharing & Third Parties
- Data Retention
- Data Security
- Your Privacy Rights (GDPR & CCPA)
- Children’s Privacy (COPPA)
- International Data Transfers
- California Privacy Rights (CCPA/CPRA)
- EU/UK Privacy Rights (GDPR)
- Do Not Track Signals
- Changes to This Policy
- Contact Us
1. Information We Collect
We collect very limited information to improve your experience and operate our website.
A. Information You Voluntarily Provide:
When You Contact Us:
Name (first name, last name)- Email Address
- Message Content (inquiries, feedback, corrections)
When You Subscribe to Newsletter: (If applicable)
- Email Address
- Subscription Preferences (topics of interest)
When You Leave Comments: (If enabled)
- Name (or username)
- Email Address (not publicly displayed)
- Comment Content
- IP Address (for spam prevention)
Optional Information:
- Survey responses (if you participate)
- Feedback forms
- User preferences
B. Information Automatically Collected:
When you visit fitsupp.com, we automatically collect:
Log Data:
- IP Address (anonymized when possible)
- Browser Type (Chrome, Safari, Firefox, etc.)
- Operating System (Windows, Mac, iOS, Android)
- Referring Pages (which site sent you to us)
- Pages Viewed (which articles you read)
- Time Spent (session duration)
- Date & Time Stamps
- Approximate Location (city/country level, NOT exact GPS)
Device Data:
- Device Type (mobile, tablet, desktop)
- Screen Resolution
- Language Settings
Cookies & Similar Technologies:
- Small data files stored on your browser
- See Section 4 for detailed cookie information
C. Third-Party Data:
We may receive data from:
- Analytics Providers (Google Analytics, etc.)
- Affiliate Networks (Amazon, ClickBank, etc.)
- Email Service Providers (Mailchimp, ConvertKit, etc.)
This data helps us understand user behavior and improve content.
2. Information We DO NOT Collect
To protect ourselves and our users, we strictly limit what we collect:
Financial Information:
- NO Credit Card Numbers
- NO Bank Account Details
- NO Billing Addresses
- NO Payment Processing Data
Why? All transactions happen on third-party sites (Amazon, ClickBank, manufacturer websites). We NEVER see or store your payment information.
Sensitive Health Data:
We do NOT collect or store:
- Protected Health Information (PHI) under HIPAA
- Medical diagnoses or conditions
- Prescription medication lists
- Lab test results
- Genetic information
- Biometric data
IMPORTANT: Please do NOT send us:
- Personal medical records via email
- Specific health condition details
- Private health information
If you need medical advice, consult a licensed healthcare provider—not us.
Other Sensitive Data:
We do NOT intentionally collect:
- Social Security Numbers
- Government ID numbers
- Precise geolocation (GPS coordinates)
- Racial or ethnic origin
- Political opinions
- Religious beliefs
- Sexual orientation
3. How We Use Your Information
We use the limited data we collect solely for these purposes:
Legitimate Business Purposes:
A. Website Operations:
- Provide and maintain our website
- Improve site functionality and user experience
- Troubleshoot technical issues
- Prevent fraud and spam
B. Communications:
- Respond to your inquiries and feedback
- Send newsletters (if you subscribed)
- Notify you of important updates or policy changes
- Send administrative emails (if necessary)
C. Analytics & Improvement:
- Understand how visitors use our site
- Identify popular content
- Improve article quality based on user behavior
- A/B test website features
D. Legal Compliance:
- Comply with applicable laws and regulations
- Respond to legal requests (subpoenas, court orders)
- Protect our rights and property
- Enforce our Terms of Service
What We DO NOT Do:
We NEVER:
- Sell your personal information to third parties
- Rent or trade your data
- Share your email for marketing purposes (without consent)
- Use your data for discriminatory purposes
- Track you across unrelated websites (beyond affiliate cookies)
4. Cookies & Tracking Technologies
What Are Cookies?
Cookies are small text files stored on your browser that help websites remember your preferences and track usage.
Types of Cookies We Use:
A. Essential Cookies (Required):
- Purpose: Basic site functionality
- Examples: Session management, security
- Can You Block Them? No—site won’t work properly without them
B. Analytics Cookies (Optional):
- Purpose: Understand visitor behavior
- Examples: Google Analytics
- Data Collected: Page views, bounce rate, traffic sources
- Can You Block Them? Yes (see below)
C. Affiliate Tracking Cookies (Optional):
- Purpose: Track referrals for commission
- Examples: Amazon Associates, ClickBank
- Duration: Typically 24 hours to 90 days
- Can You Block Them? Yes, but we won’t earn commission from your purchase
D. Preference Cookies (Optional):
- Purpose: Remember your settings
- Examples: Dark mode preference, font size
- Can You Block Them? Yes
Third-Party Cookies:
We use these third-party services that may set cookies:
Google Analytics:
- Tracks website usage statistics
- Privacy Policy: https://policies.google.com/privacy
- Opt-Out: https://tools.google.com/dlpage/gaoptout
Amazon Associates:
- Tracks affiliate referrals
- Privacy Policy: https://www.amazon.com/gp/help/customer/display.html?nodeId=468496
- Cookie Duration: 24 hours
Email Service (if applicable):
- Mailchimp, ConvertKit, etc.
- Tracks email opens and clicks
- Privacy policies vary by provider
How to Control Cookies:
Browser Settings: You can control cookies through your browser:
- Chrome: Settings → Privacy → Cookies
- Firefox: Preferences → Privacy → Cookies
- Safari: Preferences → Privacy → Cookies
- Edge: Settings → Privacy → Cookies
Opt-Out Tools:
- Google Analytics Opt-Out: https://tools.google.com/dlpage/gaoptout
- Network Advertising Initiative: http://www.networkadvertising.org/choices/
- Digital Advertising Alliance: http://www.aboutads.info/choices/
Note: Blocking all cookies may limit site functionality.
5. Affiliate Links & Third-Party Tracking
CRITICAL SECTION FOR AFFILIATE SITES
How Affiliate Marketing Works:
FITSUPP participates in affiliate marketing programs, including:
- Amazon Associates
- ClickBank
- ShareASale
- CJ Affiliate
- Direct manufacturer programs
What Happens When You Click Our Links:
Step 1: You click a product link on FITSUPP
Step 2: A tracking cookie is placed on your browser
Step 3: You’re redirected to the retailer’s website (Amazon, etc.)
Step 4: If you purchase within the cookie duration (usually 24 hours), we earn a commission
Tracking Cookie Details:
Information Tracked:
- That you clicked from FITSUPP (referral source)
- Product(s) you viewed or purchased
- Purchase amount (sometimes)
- Date/time of click
NOT Tracked:
- Your name or email (unless you voluntarily provide it to the retailer)
- Payment details (handled by retailer)
- Shipping address (handled by retailer)
Third-Party Privacy Policies Apply:
IMPORTANT: Once you click an affiliate link and leave FITSUPP:
This Privacy Policy NO LONGER APPLIES You are subject to the destination site’s privacy policy (Amazon, ClickBank, etc.) We have NO CONTROL over their data practices We are NOT RESPONSIBLE for their privacy violations
Always review the privacy policy of the site you’re purchasing from.
Affiliate Network Privacy Policies:
- Amazon: https://www.amazon.com/gp/help/customer/display.html?nodeId=468496
- ClickBank: https://www.clickbank.com/privacy/
- ShareASale: https://www.shareasale.com/PrivacyPolicy.pdf
- CJ Affiliate: https://www.cj.com/legal/privacy-policy-services
- BuyGoods: https://buygoods.com/privacy
- Digistore24: https://www.digistore24.com/extern/cms/download/reseller/privacy/2/en
- maxweb: https://maxweb.com/privacy
6. Data Sharing & Third Parties
Who We Share Data With:
We may share your information with:
A. Service Providers (Data Processors):
- Web Hosting (to store website data)
- Email Services (to send newsletters)
- Analytics Providers (Google Analytics)
- Security Services (spam/fraud prevention)
These parties:
- Only access data necessary for their service
- Are contractually obligated to protect your data
- Cannot use your data for their own purposes
B. Affiliate Partners:
- When you click our links, we share that you came from FITSUPP (via cookie)
- We do NOT share your personal information directly with them
C. Legal Authorities (When Required):
We may disclose your information if legally required:
- To comply with subpoenas or court orders
- To protect our legal rights
- To prevent fraud or illegal activity
- To respond to government requests
We DO NOT Share Data With:
- Advertisers (for targeted ads beyond affiliate cookies)
- Data brokers
- Marketing companies
- Unrelated third parties
7. Data Retention
How Long We Keep Your Data:
Email Addresses (Newsletter):
- Kept until you unsubscribe
- Deleted within 30 days of unsubscribe request
Contact Form Submissions:
- Kept for 2 years (for reference/legal purposes)
- Can be deleted upon request
Analytics Data:
- Kept in anonymized form indefinitely
- Individual IP addresses anonymized after 14 months (Google Analytics default)
Comments (if enabled):
- Kept indefinitely unless you request deletion
- Can be anonymized or removed upon request
Automated Deletion:
We periodically purge old data to minimize risk.
8. Data Security
How We Protect Your Data:
Technical Measures:
- SSL/TLS Encryption (HTTPS) for data transmission
- Secure Hosting with reputable providers
- Regular Backups (encrypted)
- Firewall Protection
- Limited Access (only authorized personnel)
Administrative Measures:
- Staff trained on data privacy
- Regular security audits
- Incident response plan
No Guarantee of Absolute Security:
IMPORTANT: While we implement industry-standard security measures, no method of transmission over the internet is 100% secure.
We cannot guarantee:
- Absolute prevention of hacking
- Complete protection from data breaches
- Perfect security at all times
You transmit data at your own risk.
Data Breach Notification:
If a breach occurs affecting your personal information:
- We will notify you within 72 hours (GDPR requirement)
- We will notify relevant authorities
- We will take steps to mitigate harm
9. Your Privacy Rights (GDPR & CCPA)
Depending on your location, you have specific rights:
Universal Rights (All Users):
Right to Access:
You can ask: “What data do you have about me?”
How to Request: Email support@fitsupp.com with subject “Data Access Request”
We will provide:
- Copy of your data (usually just email address)
- How we use it
- Who we share it with
Response Time: Within 30 days
Right to Deletion:
You can ask us to delete your data.
How to Request: Email support@fitsupp.com with subject “Data Deletion Request”
What We Delete:
- Email address (newsletter)
- Contact form submissions
- Comments (anonymized or removed)
Exceptions:
- Data required for legal compliance
- Data needed to resolve disputes
- Anonymized analytics data
Response Time: Within 30 days
Right to Correction:
You can ask us to correct inaccurate data.
How to Request: Email support@fitsupp.com with corrected information
Right to Opt-Out:
You can unsubscribe from emails at any time.
How to Opt-Out:
- Click “Unsubscribe” link in any email
- Email support@fitsupp.com
Right to Data Portability:
You can receive your data in a machine-readable format.
How to Request: Email support@fitsupp.com with subject “Data Portability Request”
Format: CSV or JSON file
10. Children’s Privacy (COPPA Compliance)
Age Restriction:
FITSUPP is intended for adults aged 18 and older.
We do NOT knowingly collect personal information from children under 13 years of age (or 16 in the EU).
Parental Notice:
If you are a parent or guardian and believe your child has provided us with personal information:
Contact us immediately: support@fitsupp.com
Subject: “Child Privacy Concern”
We will:
- Verify the claim
- Delete the child’s data within 48 hours
- Block future data collection
What If a Child Uses Our Site:
If we discover a child under 13 (or 16 in EU) has submitted data:
- We delete it immediately
- We do not use it for any purpose
- We do not share it with third parties
11. International Data Transfers
Where Your Data Is Stored:
Our servers are located in: [United States]
If you access FITSUPP from outside this region, your data may be transferred internationally.
EU/UK to USA Transfers:
If we transfer data from EU/UK to USA, we rely on:
- Standard Contractual Clauses (SCCs)
- Adequacy Decisions (when applicable)
- Your Explicit Consent
Data Protection Standards:
We ensure that international transfers maintain equivalent protection to GDPR standards.
12. California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).
Your California Rights:
Right to Know:
You can request:
- Categories of personal information collected
- Purposes for collection
- Categories of third parties we share with
- Specific pieces of data we have about you
Right to Delete:
You can request deletion of your personal information (with exceptions).
Right to Opt-Out of Sale:
IMPORTANT: We do NOT sell your personal information.
Right to Non-Discrimination:
We will not discriminate against you for exercising your rights.
Right to Limit Use of Sensitive Data:
We do not collect “sensitive personal information” as defined by CPRA.
How to Exercise California Rights:
Email: support@fitsupp.com
Subject: “California Privacy Request”
Include:
- Your full name
- Email address
- California residency confirmation
- Specific request (access, deletion, etc.)
Verification: We may ask for verification to confirm your identity.
Response Time: Within 45 days (may extend to 90 days if complex).
“Shine the Light” Law:
California Civil Code Section 1798.83 allows you to request information about personal information disclosed to third parties for marketing.
Our Answer: We do NOT disclose personal information to third parties for their direct marketing purposes.
13. EU/UK Privacy Rights (GDPR)
If you are in the European Union or United Kingdom, you have rights under the General Data Protection Regulation (GDPR).
Legal Basis for Processing:
We process your data based on:
Consent: When you subscribe or contact us Legitimate Interests: Analytics, fraud prevention Legal Obligation: Compliance with laws Contract Performance: If applicable
Your GDPR Rights:
Right to Access (Article 15):
Request a copy of your data.
Right to Rectification (Article 16):
Correct inaccurate data.
Right to Erasure (Article 17 – “Right to be Forgotten”):
Request deletion of your data.
Right to Restriction (Article 18):
Limit how we process your data.
Right to Data Portability (Article 20):
Receive your data in machine-readable format.
Right to Object (Article 21):
Object to certain types of processing (e.g., direct marketing).
Right to Withdraw Consent:
Withdraw consent at any time.
Right to Lodge a Complaint:
File a complaint with your local data protection authority.
How to Exercise GDPR Rights:
Email: support@fitsupp.com
Subject: “GDPR Request”
Include:
- Your full name
- Email address
- EU/UK residency confirmation
- Specific request
Response Time: Within 30 days (GDPR requirement).
EU Data Protection Authorities:
If you’re unsatisfied with our response, contact your local authority:
14. Do Not Track Signals
What is Do Not Track (DNT)?
DNT is a browser setting that requests websites not track you.
Our Response to DNT:
Currently: We do NOT respond to DNT signals because there is no industry standard for how to interpret them.
Our Tracking:
- We use analytics (Google Analytics) for all visitors
- You can block this with browser extensions (see Section 4)
15. Changes to This Policy
Updates:
We may update this Privacy Policy periodically to reflect:
- Changes in laws or regulations
- Changes to our practices
- New features or services
Notification of Changes:
When updated:
- “Last Updated” date at the top will change
- Material changes will be highlighted
- We may email you (if we have your email)
Your Responsibility:
Check this page regularly for updates.
Continued use after updates means you accept the new terms.
16. Contact Us
Privacy Questions or Requests:
General Privacy: support@fitsupp.com GDPR/CCPA Requests: Specify in subject line
Response Time: 48-72 business hours (requests within 30 days)
Mailing Address:
FITSUPP Privacy Team
[NYC, United States]
Data Protection Officer (DPO): (Required for EU if applicable)
If you are in the EU and have concerns: DPO Email: support@fitsupp.com (if you have one)
Summary
What you need to know:
- We collect minimal data (email, basic analytics)
- We do NOT collect payment info or sensitive health data
- We use cookies for analytics and affiliate tracking
- We do NOT sell your data to third parties
- You can access, correct, or delete your data anytime
- We comply with GDPR, CCPA, and COPPA
- Third-party sites have their own privacy policies
- You use our site at your own risk
Stay informed. Protect your privacy.