Privacy Policy

Effective Date: November 22, 2025

Kor Fit SF ("Kor Fit SF," “Kor Fit”, "we," "us," or "our") values your privacy and is dedicated to safeguarding it in accordance with this Privacy Policy (the "Policy").

This Policy outlines the information we collect from you or that you provide when accessing our online platforms, including our websites: korfitsf.com and https://korfitsf.com (referred to collectively as the "Website"), utilizing our online services for attending live or recorded classes, making purchases from our online store, or engaging with us (collectively, the "Online Services"), and participating in our in-person services for attending studio classes (the "Services"), as well as our procedures for collecting, using, maintaining, protecting, and disclosing that information.

This Policy applies to information gathered:
On our Website.
Through email and other electronic communications between you and us.
When using our Online Services, such as creating an online account or making purchases from our online store.
Upon registration for our in-studio services.

It does not apply to information collected:
Offline or through any other means, including on any other website operated by us or any third party (including our affiliates and subsidiaries).
By any third party, including through any application or content (including advertising) that may link to or be accessible from our Website.

Please read this Policy carefully to comprehend our policies and practices regarding your information and how we manage it. If you disagree with our policies and practices, kindly refrain from using our Website, Online Services, and/or Services. By accessing or using our Website, Online Services, and/or Services, you consent to this Policy.

Periodically, we reserve the right to modify or amend the terms of our Policy. You will be informed of such changes via notifications on our Website, email notifications, or any other reasonable means as required by applicable law. Please review this Policy regularly for updates. Your continued use of our Website, Online Services, and/or Services after changes to this Policy are posted signifies your acceptance of those changes.

BY ACCESSING OUR WEBSITE AND/OR USING OUR ONLINE SERVICES AND/OR SERVICES, YOU AGREE TO AND ACCEPT THE PRACTICES DESCRIBED IN THIS PRIVACY POLICY. IF YOU DO NOT AGREE WITH THE TERMS OF THIS PRIVACY POLICY, PLEASE DO NOT ACCESS OUR WEBSITE, OUR ONLINE SERVICES, AND/OR SERVICES.

Territorial Scope
Our Website, Online Services, and/or Services are intended for use only within the United States of America (the "U.S.").

Minors and Children Under the Age of 13
Our Website, Online Services, and Services are not directed toward minors or children under the age of 18. Additionally, we do not knowingly collect personal information from children under age 13. If we discover we have collected or received personal information from a child under 13 without parental consent verification, we will promptly delete that information. If you believe we may have information from or about a child under 13, please contact us at info@korfitsf.com.

If we become aware that a minor under 18 has attempted to create an account or otherwise submit personal information through the Services without lawful parental or guardian consent, we will take commercially reasonable steps to remove such Information from our systems to the extent required by law.

Parents or legal guardians may contact us to request access to, deletion of, or correction of personal information collected from their minor children, where permitted by law.

Information We Collect About You
We collect Personal Information and information that is not Personal Information ("Non-Personal Information," together with Personal Information, collectively referred to as "Information") concerning users of the Services or related to the Services, either directly or through third-party suppliers, service providers, and/or franchisees. For the purpose of this Policy, "Personal Information" refers to information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, to an individual. We may combine Non-Personal Information with Personal Information, treating the combined information as Personal Information. Types of Personal Information and Non-Personal Information we collect from and about users of our Website and/or Services include:

First and last name
Email address
Phone number (if subscribed to SMS messaging)
Persistent online identifier (e.g., persistent cookie, IP address)
Browser type
Operating system information
Geolocation (which may include specific longitude and latitude)
Internet/network information, such as device name, device ID, browsing history, browser type, interaction with website or online advertisement
Inquiry information, such as your questions/feedback to us or survey responses

Additional categories of Information we may collect include, but are not limited to:
Device identifiers such as mobile advertising identifiers (e.g., IDFA, GAID), device-specific tokens, and app-specific identifiers.
Information regarding your interactions with our emails, such as whether an email was opened or links were clicked.
Information collected through mobile application permissions, such as camera access, photos access, push notification preferences, or approximate device location.
Inferences drawn from your activity such as potential interests, preferences, or attendance behavior.
Information obtained when you authenticate via Google, Apple, or other identity providers, including profile name and email.

Please note that individually owned studios may request additional Personal Information and/or Non-Personal Information. For more details about how Information is collected, stored, or processed by a franchisee-operated physical location, please contact that specific location. We do not receive any other Information from our franchisees other than the list provided herein.

No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All other categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties. Message and data rates may apply, and you may reply STOP to opt-out of messaging; reply HELP for additional messaging assistance. Message frequency may vary based on usage.

How We Collect Your Information
We collect your Information from various sources, which may include, for example:

You Directly: Information you provide directly when using or otherwise interacting with our Website, Online Services, and/or Services; establishing an online account; completing a survey; contacting us; providing feedback and/or submissions; or submitting information through our Website, Online Services, and/or Services in connection with our services.

Your Browser or Device: Information collected automatically as a result of your interaction with us, our franchisees, and/or the use of the Online Services or Services (including geolocation, device details, and Google Analytics data as described).

Third-Party Analytics and Targeted Marketing Analytics: We collaborate with third-party suppliers to engage in analytics, tracking, advertising measurement, targeted advertising, and more, including through Facebook, Google Analytics, Google Analytics Advertising Features, and others.

Cookies: We may also use cookies to collect the above information.

Third-Party Service Providers: Information we collect about you from our third-party service providers, such as payment processing partners including Stripe and Mindbody.

Social Media Networks: Information provided to us if you connect your account with social media.

Otherwise in accordance with our agreements with you.

Additional ways we may collect Information include:
Mobile App Usage: Information related to permissions you grant (camera, location, notifications), app diagnostics, device analytics, and crash logs.
Marketing and Advertising Partners: Information provided by advertising networks, audience measurement tools, and attribution partners.
Publicly Available Sources: Information from directories, public profiles, or publicly shared social media content.

Data Subject Rights
As a data subject, you have certain rights regarding your personal data. These rights include but are not limited to:

The right to access your personal data.
The right to rectification of inaccurate or incomplete personal data.
The right to erasure of personal data ("right to be forgotten").
The right to restrict processing of personal data.
The right to data portability.
The right to object to processing of personal data.
The right to withdraw consent for processing where consent is relied upon.

Depending on your state of residence within the U.S., including California, Colorado, Connecticut, Utah, or Virginia, you may have additional rights, including:

The right to opt-out of the “sale” or “sharing” of personal information for targeted advertising.
The right to request human review of automated decision-making where applicable.
The right to limit use of “sensitive personal information.”

We will not discriminate against you for exercising these rights.

To exercise your data subject rights or for more information, please contact us at info@korfitsf.com.

Data Retention
We retain personal data for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required or permitted by law.

The criteria used to determine the retention period include:
The nature of the personal data.
The purposes for which the personal data is processed.
Legal, contractual, or regulatory requirements regarding the retention of the personal data.

When personal data is no longer required, it will be securely deleted or anonymized.

International Data Transfers
If personal data is transferred outside of the United States, Canada, or Mexico, we ensure appropriate safeguards are in place.

Additional safeguards may include:
Binding Corporate Rules
Certification mechanisms
Risk assessments and supplementary protections

Security Measures
We implement appropriate technical and organizational measures to protect personal data.

Additional measures include:
Encryption of data in transit
Restricted internal access
Ongoing monitoring and vulnerability testing
Vendor due diligence reviews

No security system is infallible, and we cannot guarantee absolute security.

Third-Party Services
We may utilize third-party services to support our business operations.

Third-party platforms may also collect information independently when you interact with embedded content or leave our Website.

Some services may process personal information outside the U.S.

Cookies and Tracking Technologies
We use cookies and other tracking technologies to collect information about your interactions with our Website and Online Services.

Additional tracking tools may include:
Pixel tags
Local storage
Lookalike audience tools
Custom audience matching

You may opt out of certain technologies using DAA and NAI consumer tools.

Children's Privacy
Our Website, Online Services, and Services are not directed toward minors under the age of 18. We do not knowingly collect personal information from children under age 13. If you believe we may have collected information from a child under 13, please contact us at info@korfitsf.com.

California Consumer Privacy Act (CCPA)
We comply with the California Consumer Privacy Act (CCPA) and provide California residents with certain rights regarding their personal information.

We may “share” personal information for cross-context behavioral advertising.

California residents may designate an authorized agent to submit requests.

We retain records of privacy requests as required by law.

Data Breach Notification
In the event of a data breach, we will notify affected individuals and relevant authorities in accordance with applicable data protection laws and regulations.

We will also:
Work promptly to identify the cause of the breach
Implement measures to prevent recurrence
Document all findings and remediation steps
Cooperate with law enforcement and regulators

Contact Information
For inquiries about this Privacy Policy or to exercise your data subject rights, please contact us at:

info@korfitsf.com
Kor Fit SF
3727 Buchanan Street, Ground Floor
San Francisco, CA 94123
Phone: 415-907-2422

Review and Updates
We regularly review and update this Privacy Policy to ensure compliance with applicable laws and regulations and to reflect changes in our business practices. Any updates will be communicated to you through our Website or other reasonable means.

Consent Mechanisms
We provide mechanisms for you to provide and withdraw consent for data processing activities, particularly concerning marketing communications and tracking technologies. You may manage your consent preferences through your account settings or by contacting us directly.

Accessibility
We strive to make our Privacy Policy accessible to individuals with disabilities. If you require assistance accessing or understanding this Policy, please contact us at info@korfitsf.com.

Dispute Resolution
For privacy-related disputes or concerns, please contact us at info@korfitsf.com. You may also have the right to lodge a complaint with a data protection authority.

Some disputes may qualify for arbitration or civil remedies under applicable state or federal privacy laws.

Plain Language
We endeavor to use clear and concise language in our Privacy Policy to enhance understanding and accessibility for all users.

Thank you for reviewing our Privacy Policy. If you have any questions or concerns, please don't hesitate to contact us at info@korfitsf.com.