1. Introduction

Welcome to Καλονόμος Κων. Γεώργιος (“Company,” “we,” “us,” or “our”), operating under the name “Optimize.” We are committed to protecting your privacy and handling your personal data in a transparent, secure, and lawful manner. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website, use our coaching services, purchase digital templates or merchandise, or subscribe to our newsletters and related offerings (collectively, the “Services”).
By using our Services, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy. If you do not agree, please discontinue using our Services.

2. Scope of this Policy

This Privacy Policy applies to personal data collected through our online platforms and Services. It does not apply to the data practices of third parties that we do not own or control.
We are headquartered in Greece and adhere to the EU General Data Protection Regulation (“GDPR”) for all users. While we welcome users from around the world, nothing in this Policy limits any non-waivable rights you may have under applicable local laws.

3. Personal Data We Collect

We collect various types of personal data, including:

• • Identifiers: Name, email address, and other contact details.
  • Account Credentials: Username and password, if we provide these for app access.
  • Health and Fitness Data: Limited fitness or nutritional information you share for personalized coaching.
  • Minors’ Data: If you are under 18, we require verified parental or guardian consent before collecting or processing your personal data. We may request a signed parental consent form or a similarly verifiable method to ensure authenticity. Parents or guardians may request access, correction, or deletion of the minor’s data at any time by contacting us.
  • Payment Information: Processed securely by third-party payment processors (e.g., Stripe, PayPal). We do not store full payment card details.
  • Device and Usage Information: IP address, browser type, referring URLs, pages viewed, and time spent on pages (collected via Google Analytics).

We do not knowingly collect special categories of sensitive data (e.g., race, religion, biometric data) beyond the limited fitness-related information you voluntarily provide. When legally required, we obtain explicit consent before processing sensitive data.

4. How We Collect Your Data

• Direct Interactions: When you sign up for services, request measurements, fill out forms, subscribe to newsletters, or contact us.
• Automated Technologies: Google Analytics and similar tools automatically collect usage data as you browse our website.
• Third-Party Services: Payment processors (Stripe, PayPal) handle financial transactions; MailerLite manages newsletters.
• We do not use marketing or advertising cookies. We currently use only essential and analytical tools. If we introduce a cookie consent banner or preference center in the future, we will update this Policy accordingly. You can also manage cookies in your browser settings.

5. How We Use Your Data

We process personal data for the following purposes:

• • Service Delivery: To provide coaching, assessments, templates, merchandise, and newsletters related to nutrition, training, physiotherapy, and psychology.
  • Personalization: To tailor our recommendations, communications, and user experience to your preferences.
  • Compliance and Legal Obligations: To comply with laws, regulations, and lawful requests.
  • Analytics and Improvements: To analyze site traffic, user behavior, and engagement to improve our Services.
  • Communication: To respond to your inquiries, send service updates, and deliver requested content.
  • Our legal bases for processing include your consent, contractual necessity, legal obligations, and our legitimate interests.

6. Sharing Your Data

We may share personal data under the following circumstances:

• • With External Licensed Professionals: If you request additional services (e.g., psychologists, physiotherapists), we share only necessary information with your explicit consent.
  • Within Our Organization: Your assigned coach has access to your data.
  • With your written consent, we may share data with other coaches at Optimize.
  • Service Providers: Trusted third parties handle tasks like payment processing, email marketing (MailerLite), and analytics (Google Analytics), always under strict confidentiality and compliance obligations.
  • Legal Requirements: We may disclose personal data to comply with legal or regulatory obligations, protect rights, or respond to lawful requests by public authorities.
  • We do not sell your personal data.

7. International Data Transfers

If we transfer personal data from the European Economic Area (EEA) to recipients outside the EEA, we implement appropriate safeguards to protect your data, such as Standard Contractual Clauses (SCCs) or equivalent legal mechanisms.

8. Your Rights

Subject to applicable law, you have the right to:

• • Access: Obtain a copy of the personal data we hold about you.
  • Rectification: Correct inaccuracies or incomplete data.
  • Erasure: Request deletion of your personal data when it’s no longer necessary or if processing is unlawful.
  • Restriction: Request that we limit processing in certain circumstances.
  • Objection: Object to processing for reasons related to your particular situation.
  • Portability: Receive a portable copy of your data in a commonly used format.
  • Withdraw Consent: Withdraw consent at any time without affecting the lawfulness of prior processing.

To exercise these rights, contact [email protected]. We will respond within the timeframe required by law.

9. Data Security and Retention

We implement technical and organizational measures to safeguard personal data, including encryption, two-factor authentication, and restricted staff access (primarily limited to your assigned coach and authorized personnel with your consent). Data is stored securely (e.g., on Google Drive with 2FA).
We retain personal data only as long as necessary for the purposes collected or as required by law. When data is no longer needed, we securely delete or anonymize it.

10. Data Breach Notification

In the event of a data breach that risks your rights or freedoms, we will notify the relevant supervisory authority and affected individuals as required by applicable law. We will also take appropriate steps to mitigate any potential harm.

11. Children’s Privacy

Users under 18 require parental or guardian consent to use our Services. We may request a signed parental consent form or other verification methods to confirm authenticity. Parents or guardians can request access, correction, or deletion of their child’s data at any time by contacting [email protected].

12. Updates to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, legal requirements, or service offerings. In the event of significant changes, we will notify you by email or post a notice on our website. Continued use of our Services after updates indicates your acceptance of the revised terms.

13. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

• • Email: [email protected]

We will address your inquiry promptly and professionally.