Privacy Policy

Effective Date: 12/26/2025
Last Updated: 12/26/2025

Introduction

Jo Strong LLC ("we," "us," or "our") operates www.jostrong.com and provides personal training and registered dietitian services. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our services or interact with our website.

We are committed to protecting your privacy and handling your personal information responsibly. This policy applies to all clients and website visitors, regardless of location.

Information We Collect

We collect several types of information to provide and improve our services:

Information You Provide Directly

Contact Information: Name, email address, phone number, mailing address, and emergency contact details.

Health and Fitness Information: Medical history, current health conditions, injuries, fitness goals, exercise history, dietary restrictions, allergies, nutritional assessments, and any other health-related information you share with us during consultations or assessments.

Progress Tracking Data: Workout performance metrics, body measurements, progress photos, dietary intake logs, and feedback on exercises and programs.

Payment Information: Billing address and payment method details (processed securely through our payment processor, Square).

Insurance Information: For registered dietitian services billed to insurance (New Jersey residents only), we collect insurance provider information, policy numbers, and other information required for insurance billing and claims processing.

Communications: Information contained in your messages to us, including emails, text messages, and form submissions through our website.

Information Collected Automatically

Website Usage Data: When you visit our website, we automatically collect certain information through cookies and similar technologies, including your IP address, browser type, device information, pages visited, time spent on pages, and referring website.

Video Interaction Data: If you watch our instructional videos on YouTube, YouTube may collect viewing data according to their privacy policy.

How We Use Your Information

We use your personal information for the following purposes:

Service Delivery: To create personalized workout programs, provide nutritional counseling, track your progress, communicate with you about your training and nutrition plans, and deliver the services you've requested.

Appointment Management: To schedule and manage your training sessions and consultations through Acuity Scheduling.

Payment Processing: To process payments for our services through Square, our payment processor.

Insurance Billing: For registered dietitian services provided to New Jersey residents, we submit claims to your insurance provider and handle related billing matters.

Communication: To send you appointment reminders, program updates, instructional materials, and respond to your inquiries via Google Workspace email services.

Marketing: To send you newsletters, workout tips, and promotional materials through Squarespace Email Campaigns. You can unsubscribe from marketing emails at any time by clicking the unsubscribe link at the bottom of any marketing email.

Service Improvement: To analyze how our services are used, identify areas for improvement, and develop new offerings.

Legal Compliance: To comply with applicable laws, regulations, and legal processes, including HIPAA requirements for protected health information related to dietitian services.

How We Share Your Information

We share your information only in the following circumstances:

Service Providers: We share information with trusted third-party service providers who assist us in operating our business:

  • Acuity Scheduling stores your appointment and contact information for scheduling purposes. View their privacy policy at https://www.squareup.com/us/en/legal/general/privacy

  • Square processes your payment information securely. View their privacy policy at https://www.squareup.com/us/en/legal/general/privacy

  • Google Workspace handles our business email communications. View their privacy policy at https://policies.google.com/privacy

  • Squarespace hosts our website and Email Campaigns platform. View their privacy policy at https://www.squarespace.com/privacy

  • YouTube hosts our instructional exercise videos. View their privacy policy at https://policies.google.com/privacy

Insurance Companies: For New Jersey residents receiving registered dietitian services billed to insurance, we share necessary health and treatment information with your insurance provider to process claims.

Healthcare Providers: With your explicit consent, we may share relevant health information with your other healthcare providers to coordinate your care.

Legal Obligations: We may disclose your information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfers: If Jo Strong LLC is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. You will be notified of any such change.

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

Data Security

We implement appropriate technical and organizational security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include:

  • Secure storage of client files and data

  • Encryption of data transmitted between you and our website

  • Limited access to personal information on a need-to-know basis

  • Regular security assessments of our systems and practices

  • Secure payment processing through PCI-compliant providers

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

HIPAA Compliance

For registered dietitian services that involve insurance billing or the creation, use, or disclosure of protected health information (PHI), Jo Strong LLC complies with the Health Insurance Portability and Accountability Act (HIPAA).

New Jersey residents receiving nutrition services billed to insurance are provided with a separate Notice of Privacy Practices that details how we use and disclose PHI in accordance with HIPAA regulations. If you have questions about HIPAA or your rights regarding PHI, please contact us at joelle@jostrong.com.

Data Retention

We retain your personal information for as long as necessary to provide our services and comply with legal obligations:

Active Clients: We retain your information for the duration of our professional relationship and for a reasonable period afterward to address any follow-up questions or concerns.

Inactive Clients: After you stop using our services, we retain certain records for legal, tax, and professional liability purposes. For registered dietitian services, we retain health records in accordance with state and federal requirements, typically for a minimum of seven years.

Marketing Data: If you unsubscribe from marketing emails, we retain your email address on our suppression list to ensure we don't contact you again.

You may request deletion of your personal information at any time, subject to our legal retention obligations.

Your Rights and Choices

Depending on your location and applicable laws, you may have certain rights regarding your personal information:

Access: You may request access to the personal information we hold about you.

Correction: You may request correction of inaccurate or incomplete information.

Deletion: You may request deletion of your personal information, subject to legal retention requirements.

Opt-Out of Marketing: You may unsubscribe from marketing emails by clicking the unsubscribe link in any marketing email or by contacting us directly.

Data Portability: You may request a copy of your personal information in a structured, commonly used format.

Objection: You may object to certain processing of your personal information.

To exercise any of these rights, please contact us at joelle@jostrong.com. We will respond to your request within a reasonable timeframe and in accordance with applicable law.

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and analyze website usage. Cookies are small data files stored on your device.

You can control cookies through your browser settings. However, disabling cookies may limit your ability to use certain features of our website.

For information about how YouTube uses cookies when you watch our videos, please review YouTube's privacy policy.

International Data Transfers

Jo Strong LLC is based in the United States and primarily serves clients worldwide. If you are located outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country.

By using our services, you consent to the transfer of your information to the United States and its processing in accordance with this Privacy Policy.

Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from minors without parental consent. If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us, and we will delete such information.

Third-Party Links

Our website and communications may contain links to third-party websites or services (such as YouTube for exercise videos). We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. When we make changes, we will update the "Last Updated" date at the top of this policy.

If we make material changes that affect how we use your personal information, we will notify you by email or through a prominent notice on our website prior to the changes taking effect. We encourage you to review this Privacy Policy periodically.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Jo Strong LLC
Email: joelle@jostrong.com
Website: www.jostrong.com

For HIPAA-related inquiries or to request your Notice of Privacy Practices, please email joelle@jostrong.com.

State-Specific Disclosures

California Residents

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • The right to know what personal information we collect, use, disclose, and sell

  • The right to request deletion of your personal information

  • The right to opt-out of the sale of your personal information (we do not sell personal information)

  • The right to non-discrimination for exercising your CCPA rights

To exercise these rights, contact us at joelle@jostrong.com.

New Jersey Residents

New Jersey residents receiving registered dietitian services billed to insurance receive additional protections under HIPAA and state health privacy laws. You will receive a separate Notice of Privacy Practices that details your rights regarding protected health information.

European Economic Area (EEA) and United Kingdom Residents

If you are located in the EEA or UK, you have rights under the General Data Protection Regulation (GDPR), including:

  • The right to access your personal data

  • The right to rectification of inaccurate data

  • The right to erasure ("right to be forgotten")

  • The right to restrict processing

  • The right to data portability

  • The right to object to processing

  • The right to withdraw consent

The legal basis for processing your personal information includes:

  • Contract Performance: Processing necessary to provide our services to you

  • Consent: Where you have given explicit consent for specific processing activities

  • Legitimate Interests: For business operations, fraud prevention, and service improvement

  • Legal Obligation: To comply with applicable laws and regulations

To exercise your GDPR rights, contact us at joelle@jostrong.com.

Acknowledgment

By using our services or website, you acknowledge that you have read, understood, and agree to this Privacy Policy.