Spitko, who is the head of faculty business administration and economics at German University for Prevention & Healthcare Management, advised attendees about how to comply with the new regulation and the risks for failing to do so.
Here are five takeaways from his session.
1. GDPR Applies to Everyone Doing Business in the EU
The new regulations are relevant for every fitness club, and therefore for every club operator, who is doing business within the European Union.
2. Noncompliance Comes with a Price
Noncompliance will cost you up to 4% of your annual turnover or €20-million—whichever is greater.
3. Consider Appointing a Data Protection Officer
You may need to appoint a Data Protection Officer (DPO). There are many business models in the fitness industry that process biometric data or data concerning health. If processing this kind of data is qualified as core activity, then it could be mandatory for these clubs to appoint a DPO.