Privacy Policy
Last updated 10 July 2026
This policy explains how Temple Software Ltd (company no. 15867522) handles the personal data we control — mainly the account data of gym owners, staff, and individual users.
For the member data a gym stores in Temple (bookings, training history, and health data such as PAR-Q answers and injuries), the gym is the controller and Temple is its processor. If you are a gym member, contact your gym about its use of your data.
What we collect and why
To run your account we process your name, email, hashed password, and gym role (to authenticate you and provide the service), usage and log data (for security and improvement), billing data for your Temple subscription, and any support correspondence.
As a controller we do not use members’ health data for our own purposes — we only process it on a gym’s behalf under our Data Processing Agreement.
Service providers
We rely on Supabase (database, auth, storage), Stripe (payments), Resend (email), and Vercel (hosting). Optional features may use Anthropic (AI assistance, privacy-safe summaries only) and Pexels (stock photos). Each processes data only as needed to provide its part of the service.
Retention
We keep account data while your account is active and for a reasonable period afterwards. Member health data handled for a gym follows the gym’s settings and our built-in rules, including erasure when a member leaves and an automatic sweep of health data more than three months after a membership ends.
Your rights
Subject to law you may access, correct, delete, restrict, or port your data and object to certain processing. For data we control, contact privacy@jointemple.io; for data a gym controls, contact the gym. You may also complain to the UK Information Commissioner’s Office.
Security
We isolate every gym’s data with row-level security, log health-data access, encrypt data in transit, and route sensitive writes through authorised server-side routines.
Cookies
The app stores only what is needed to keep you signed in and remember preferences like light/dark theme — this needs no consent. Any analytics or other non-essential storage runs only if you accept it in the banner shown on your first visit; you can accept or reject with equal ease, and rejecting keeps only the essential storage. (Marketing emails a gym sends via Temple may track opens and clicks under the gym’s own privacy notice, and always carry a one-click unsubscribe.)
Children
Solo accounts are for people aged 18 or over, and solo sign-up refuses an under-18 date of birth. A gym may opt in to enrolling members under 18; where it does, we check age from date of birth and capture a parent or guardian’s consent in-app before the member proceeds, and the gym remains responsible for the lawful basis.
Privacy questions: privacy@jointemple.io