Last updated: November 19, 2025
Last changed: 2025-11-19 | Version: 1.2
Last updated: 17.04.2026
This Privacy Notice is to inform you, as a user of the YG Flow app (further the “App” and the “Website” respectively, together “we/us”, the “Product”), on the processing of your personal data in connection with the use of the Product.
When we say “personal data” or “personal information”, we are referring to information related to you. Such information is not limited to what directly identifies you, such as your name. In fact, you own and have legal rights to anything that speaks of you: the data you enter about your food intake, fitness experience, your aim for using the Product, even the way you use the Product itself. To avoid legalese, we can also use “your data” or “your information” in the same meaning.
This notice is meant to provide you with all relevant information to make an informed choice to use the Product. It also serves to inform you of your rights and how you can exercise them. Contact us if you have any questions or concerns.
Please note that the Product is intended for users who have reached the minimum legal age. Therefore, we expect you will not use the Product unless you are at least 16 or older.
This Notice was written in English. to the extent a translated version of the Notice conflicts with the English version, the English version prevails.
The controller responsible for processing with regard to the Product is Welltech Apps Limited, with its registered address at Karaiskaki 13, 3032, Limassol, Cyprus.
Should you have any general questions about this Privacy Notice, the use of your data by us, or if you want to assert your data protection rights, please use the following interchangeable contact options:
You are entitled to data-related rights as described below. You may assert them directly via the App (to the extent possible) or via the contact options.
Please note that these rights are based on European laws, namely the General Data Protection Regulation (the “
GDPR”). Depending on your country of residence, those rights may have different interpretations. Should you wish to assert your country-specific rights, kindly let us know, and we will review your case individually.
You may ask to confirm whether we process your data and if so, to provide you with the scope of such processing and a copy of the data concerning you stored by us.
You have the right to request correction of inaccurate or outdated personal data concerning you and the completion of incomplete data. We try to allow you to correct/add data through the Product’s settings to the extent possible, e.g. you can log in to your user profile and correct, amend, or delete information about yourself. We will also inform third parties to whom we transferred your data in the event of rectification of your data.
You may request the erasure of your personal data stored by us. Please note, however, that the right to erasure is not absolute and shall be fulfilled by us only provided specific legal requirements are met. You may request data erasure only if:
If we have transferred personal data to third parties, we will either initiate the deletion of your data from such third parties or inform them about the erasure, insofar as required by applicable law.
In order to avoid any unnecessary legalese and keeping in mind the general use of such words, we will interpret all user requests asking us to “delete my data” as requests for erasure of data under Article 17 GDPR.
You have the right to request, under certain conditions, restriction of processing (i.e. the marking of stored personal data to restrict its future use). The requirements for restriction of processing are as follows:
You have the right to object to the processing of your personal data in whole or in part at any time, and in any form, in the event that our processing is based on a legitimate interest (balancing of interests). In order to process your objection, we kindly request you to refer to your particular situation as to why you believe that your rights and freedoms are at a particular risk (see Article 21 of GDPR for more details).
Please note that the right to objection is not absolute, and we will stop the processing of your data only provided we cannot demonstrate compelling legitimate grounds for processing.
Where the processing you object against concerns direct marketing purposes, we will stop any processing once we receive an objection from you. A common example of how you can exercise an objection to marketing communications is pressing the “unsubscribe” button in emails.
You have the right to receive the data you provided to us in a commonly used and machine-readable format to transfer that data to another controller without our interference, in accordance with the applicable laws and regulations.
To the extent possible, we will allow you to export data for further use directly via the App. You may also ask us to assist you with moving your data where it is technically feasible. Please note that this option relates only to data processed based on the performance of our contract with you or based on your consent. For more information about the contract and consent, please refer to Section 5 below.
If you provide consent to the processing of your personal data, you can withdraw it at any time. Consent withdrawal does not have a retroactive effect, meaning that any processing which occurred before the withdrawal shall not be affected.
You can lodge a complaint with the data protection authority at any time if you believe that your data has been processed unlawfully. Here is the contact information for the Cypriot supervisory data protection authority:
*Office address: kypranoros 15, Nicosia 1061 , Cyprus; Postal address P.O.Box 23378, 1682 Nicosia, Cyprus; Email: *commissioner@dataprotection.gov.cy
In this Section, you can find a description of your privacy rights as a California resident, which are established under California laws, such as the California Consumer Privacy Act (the “
CCPA”).
Please note that in this Section 3.1, we describe California-specific rights that substantially differ from those established under the GDPR. These rights are in addition to those established under the GDPR described above in Section 3 for California residents.
You may assert these rights directly via the Product (to the extent possible) or via the contact options.
Generally, your right to request data access and data portability are described above in Section 3 under the titles “Right to access” and “Right to rectification”, respectively. The scopes of these rights differ slightly under the CCPA.
You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months only. Once we receive and confirm your verifiable consumer request, we will disclose to you:
Please note that you may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:
Generally, your right to request erasure is described above in Section 3 under the name “Right to erasure (Right to be forgotten)”.
Despite the fact that the right to request deletion of data under the CCPA and the right to erasure under the GDPR are essentially the same, please note that under the CCPA we are under no obligation to comply with your request if we need to maintain your information for certain reasons. For your convenience, you may find below an abridged version of such exceptions. To learn more*, *please refer to the full text of the CCPA or the additional clarifications from the California Attorney General.
Under the CCPA, we may retain your personal information if we need it to, among other things:
California consumers have the right to non-discrimination in relation to the exercise of their rights under the CCPA. In particular, we cannot deny you the Product, charge you different prices for the Product, either by denying benefits or imposing penalties, provide you with a different level or quality of the Product in comparison to how we proceed with other California users, or threaten you with any of the above.
Under California’s “Shine the Light” law (Civil Code Section § 1798.83) users can request information regarding the disclosure of personal information to third parties for their direct marketing purposes.
We do not sell the personal data we collect (as defined in the CCPA) and will not sell it without providing you with the right to opt out. Please note that we share users’ personal information for our business purposes as described in Section 7 “Personal Data Transfers”.
In this Section, you can find a description of your privacy rights as a data subject located in Brazil, which are established under the Brazilian General Data Protection Law (the “
LGPD”).
Please note that in this Section 3.2, we describe Brazil-specific rights that substantially differ from those established under the GDPR. These rights are in addition to those established under the GDPR described above in Section 3 for data subjects located in Brazil.
You may assert these rights directly via the Product (to the extent possible) or via the contact options.
You may request the anonymization/blockage/erasure of your personal data stored by us. Please note, however, that this right is not absolute and shall be fulfilled by us only provided specific legal requirements are met. You may request them only if your personal data is unnecessary, excessive or has been unlawfully processed.
You have the right to obtain information about the entities with which we have shared your personal information.
You can lodge a complaint with the Brazilian National Data Protection Authority (ANPD) at any time if you believe that your data has been processed unlawfully.
If you are located in Mexico, your personal data is processed in accordance with the Ley Federal de Protección de Datos Personales en Posesión de los Particulares (LFPDPPP).
For transactions in Mexico, Outpost Mexico Services, S.A. de C.V. (RFC OMS250526I58), 1ra Cda Técnicos y Manuales 19, Lomas Estrella, Iztapalapa, Ciudad de México, C.P. 09890, acts as the local data controller for billing and tax information.
Mexican users may exercise their ARCO rights (Access, Rectification, Cancellation and Opposition) or revoke consent using the form and specifying the right they wish to exercise.
Users may also contact the Instituto Nacional de Transparencia, Acceso a la Información y Protección de Datos Personales (INAI) via https://www.inai.org.mx if they believe their data protection rights have been infringed.
Your user journey may vary depending on whether it is the App or the Website (or both) you have chosen to use. Similarly, the scope and peculiarities of data processing will vary:
General Information
When you start using the Website, or in the course of Website use, we collect the following personal data:
Name,
Email address,
Birth year or age (inferred based on the birth year),
Country of residence,
Sex.
When you start using the App, or in the course of App use, we collect the following personal data:
Name,
Email address,
Birth year, age (inferred based on the birth year),
Country of residence,
Sex.
If you accessed the App from the Website, we may use the information already collected on the Website for the App.
Fitness & Wellness Onboarding Information
To tailor your Product experience to your needs, we may ask you to answer some questions about your fitness and wellness experience.
Such Fitness & Wellness Onboarding Information may include your height and weight, target weight and body type and target zones, fitness level, sleep information, well-being details, etc.
If you do not provide us with Fitness & Wellness Onboarding Information, we will not be able to create a personalized fitness experience for you.
Payment Data
To make a purchase via the Website, you need to enter your payment information, such as bank card credentials, payment service (e.g. PayPal) credentials, etc.
We may or may not have access to such payment information depending on the service provider processing your payment.
Payment gateways, such as PayPal, Stripe, and Braintree, act independently; we receive limited information from them allowing us to recognize and record your subscription status, such as the date, time, and amount of the transaction, the type of payment method used, the payment transaction identification number, and the last four digits of the bank card.
Our one-stop shop payment provider acts on our behalf; it collects and otherwise processes your payment data, including bank card credentials, IP address, email, and name, on our behalf. In practice, it shares with us only limited details regarding your payment, such as the date, time, and amount of the transaction, so our employees/contractors cannot view your payment credentials.
Customer Support and Other Communications Information
When you contact us for customer support or otherwise communicate with us, you may provide us with information related to your use of the Product, additional contact information, payment information, identification documents, or other information you may find helpful to resolve your query. We also collect information on the feedback you provide on the customer support experience.
Your User Choices
We collect:
information about your Website settings, privacy settings, and
records about when you accepted our Terms of Use, Privacy Notice, Refund Policy, and/or provided consent to marketing communications;
information on whether you have enabled web browser notifications.
We collect:
information about your in-App settings, privacy settings, and
records about when you accepted our Terms of Use, Privacy Notice, Subscriptions Policy, and/or provided consent to the processing of your data or to marketing communications;
information about whether you have enabled push notifications.
Feedback Information
We will collect and process your feedback should you communicate it to us.
Our App contains a feature via which you can provide us with feedback, rate our application, and/or engage in deeper discussions. We will collect and analyze the data you submit to make our Product better.
We will also collect and process feedback should you communicate it to us in any other way.
Usage Information
We collect information about your activity on our Website, like frequency of use, areas and features that you access, visit, or use, and engagement with particular features.
We collect information about your activity on our App, such as:
Product interaction, e.g. frequency of use, areas and features that you access, visit, or use, and engagement with particular features.
In-App fitness activities, like performed/active workouts, workout choices, etc.
Access to external groups/communities created by the App for additional communications, feedback collection.
Device-Related Information
When you install, access, or use the Website, we collect device-related information. This includes IP address, user agent, hardware model, operating system information, browser information, language and time zone, etc.
Device-related information also includes approximate location information.
When you install, access, or use the App, we collect device-related information. This includes IP address, user agent, hardware model, operating system information, App version, browser information, mobile network, language and time zone, device identifiers, including Android Advertising Identifier (GAID)/Apple ID for Advertisers (IDFA), etc.
Device-related information also includes approximate location information.
Subscription Status
By exchanging information with your application store, we understand and record your subscription status.
Log and Troubleshooting Information
We collect some troubleshooting, bug, and crash reporting information from you to help determine problems with the Product. We also collect and write logs to be able to access historical data for internal and external investigations.
Advertising Network Information
Advertising networks provide us with insights on which channels (e.g. social networks) and which particular ad campaigns helped you reach the Product.
On the Website, we also use cookies and other tracking technologies for various purposes. Please refer to Section 6 for more information on cookies and similar technologies.
There may be other features for which data is stored and processed locally on your device, and we do not have any access to that information. This may be true for the Omo food recognition feature [subject to availability].
All processing of your data must be lawful, i.e. reliant upon one of the lawful bases referenced under applicable law, namely:
As mentioned earlier, your user journey may vary depending on whether it is the App or the Website (or both) you have chosen to use. However, the purposes and legal bases for data processing in relation to the Website and the App coincide.
Why and how we process your information Data Used
To ensure the intended operation of the Product, namely, to maintain your profile in the Product, ensure you have easy access to it, and provide you with the functionality of the Product provided for in the Product descriptions as well as included materials. For example, we use your data to create fitness plans best suited for you.
Fitness and Wellness Onboarding Information
For billing purposes, account management, and feature accessibility.
Payment Data/Subscription Status
Please note that provision of the information above is necessary for us to provide our Product to you (perform our contract with you). We will not be able to provide the Product without the information listed above. We will also not be able to continue providing the Product if you request data erasure or otherwise restrict our access to such data.
Why and how we process your information Substantiation of Legitimate Interest Data used
To analyze the performance of our Product, improve it, and further deliver a better user experience based on analysis of your interaction with the Product.
For example:
We count users and events for reporting to identify how many users the Product has. This includes metrics like how many unique users the Product has.
We analyze bugs and fix issues with the Product.
Our interest is to measure the use of our Product and count the people who interact with it. Such actions are aimed at improving Product development and enabling the provision of accurate and reliable internal reporting.
Log and Troubleshooting Information
Payment Data (the fact of purchase)/Subscription Status
To assess the effectiveness of our advertising campaigns by understanding which advertisements led you to the Product and whether you finally used the Product or purchased it/some of its features.
It is our interest to understand who may be interested in our Product and to offer our Product to new potentially interested audiences as well as remind old users about it.
General Information (in a limited scope)
Payment Data (the fact of purchase)/Subscription Status
Advertising Networks Information
To communicate with you in various ways, e.g.:
to send you technical notices, updates, and security alerts;
to send reminders to your smartphone or web browser via in-App messages and in-App and web push notifications;
to send promotional communications, such as product updates, offers, discounts, and to provide news and information that we think will be of interest to you.
You can opt out of any of our promotional communications anytime as described in your privacy rights section.
We believe the provision of presumably relevant information will be a plus in addition to the provision of the Product functionality.
To provide customer support/ request processing to the customer support team. This includes, for example:
responding when you request our help such as assisting with your account login or verification process;
addressing your comments and questions.
It is in our interest to assist our users with any inquiries or requests.
Customer Support and Other Communications Information
Payment Data/Subscription Status
To defend ourselves from prospective legal claims, litigation, or other disputes, including in relation to violations of the Terms of Use, Privacy Notice, Subscription Policy, and/or Refund Policy.
To ensure the safety, security, and integrity of the Product.
To provide information to the authorities upon request.
It is in our interest to respond to complaints and prevent and address fraud, unauthorized use of the Product, violations of our Terms of Use and/or other policies, or other harmful or illegal activity.
It is in our interest to seek legal advice and protect ourselves (including our rights, personnel, property, or products), and our users or others, including as part of investigations or regulatory inquiries and litigation or other disputes.
Log and Troubleshooting Information
To identify disruptions and maintain Product security, including the detection and tracking of inadmissible access attempts and access to our servers.
It is in our interest to eliminate disruptions, maintain system security, and detect and track inadmissible access and access attempts.
Log and Troubleshooting Information
Payment Data/Subscription Status
Why and how we process your information Data used
According to applicable tax and accounting laws, we may need to report your payments to conduct any necessary statutory reports/withdrawals.
Further, sometimes in order to comply with applicable laws, we need to authenticate you, i.e. collect your identification information.
Finally, according to applicable law, we need to understand whether you allow the processing of your data, push notifications, marketing communications, and similar activities.
To provide information to authorities upon request.
We do not use your data to make decisions based solely on automated processing that would create legal or comparably significant effects.
Cookies (“
Cookies” or “Cookie”) are small text files that are placed on your device while you browse our Website. They help us remember/recognize some of your actions or choices during Website use for various purposes. Sometimes, they help us track you through websites and devices to understand the effectiveness of our ads.
We use similar technologies (“
Similar Technologies”) which are technically different but serve the same purpose of remembering/recognizing your actions during App or Website use. Similar Technologies include:
There are two main types of Cookies and Similar Technologies that we can set:
We use Cookies and Similar Technologies for a number of reasons, such as:
These Cookies and Similar Technologies are necessary for the Website to function and cannot be switched off in our systems.
They are set out in response to actions you make, mainly in order to remember your choices, including cookie preferences, onboarding completion status and values, and login data.
If you block strictly necessary Cookies, some parts of the Website will not work.
[Missing: vWGNNZ2ebjtHQIRmrzE6a]
These Cookies allow us to count visits and traffic sources so we can measure and improve the performance of our Website. They help us know which pages are the most and least popular and see how the user moves across the Website.
[Missing: 1hUTX7qxXquI4TWciQlvBX]
Preference Cookies are used to remember your preferences and to recognize you when you return to our Product.
If you do not allow these Cookies then some or all of the below services may not function properly.
[Missing: 1GvsXov7zcRm7sytUfCMjV]
We and our service providers (advertising networks) use Cookies and Similar Technologies to direct our ads to you through targeted advertisements for our Product on other sites you visit and to measure your engagement with those ads.
These Cookies and Similar Technologies may be used by those advertising networks to build a profile of your interests and show you relevant ads on other sites.
[Missing: 2EOZfQLKiGR46QaWLN9YDk]
Most browsers allow you to manage how Cookies are set and used as you’re browsing, and to clear Cookies and browsing data. Typically, such information can be found under the browser’s ‘Help’, ‘Preferences’, or ‘Options’ menus. Also, your browser may have settings allowing you to manage Cookies on a site-by-site basis as well as provide for incognito mode.
Most mobile devices and applications allow you to manage how other technologies, such as unique identifiers used to identify a browser, app, or device, are set and used. For example, the Advertising ID on Android devices or Apple’s Advertising Identifier can be managed in your device’s settings, while app-specific identifiers may typically be managed in the app’s settings.
You can visit the below sites to opt out of personalized advertising in general, including regarding our Website:
Digital Advertising Alliance (DAA);
Network Advertising Initiative (NAI) You can also opt out of advertising provided by particular networks both in the App and on the Website:
Outbrain opt out on desktop and mobile web (Section 3 -> Outbrain User Types, including Opt Out Options)
Taboola Access to Data and Opt-Out Tool. Please note that if you opt out of personalized advertising, you will still see advertisements – they will just not be tailored to your interests. Also note that deleting browser Cookies may remove the Cookie preferences you already made, so you may need to opt out again in the future.
Finally, you can exercise your preferences and opt out of personalized advertisements with regard to your mobile devices (smartphones, tablets) by:
"Do Not Track" is a preference you can set in your web browser to let the websites you visit know that you do not want them collecting information about you. The Website does not currently respond to a "Do Not Track" or similar signal.
As we mentioned earlier, this Privacy Notice is aimed at describing data use in relation to the Product. Below, we explain with whom we share your personal data from the Product, i.e. both the Website and the App.
A number of Product functions rely upon services from third parties, so-called ‘processors’. Processors act based on and in accordance with our requests and shall not use your data for their own purposes.
The main service providers the Product shares your data with are as follows:
Amazon Web Services (Amazon Web Services EMEA SARL, 352 2789 0057, 38 Avenue John F. Kennedy, L-1855, Luxembourg) We use Amazon Web Services, which is a hosting and backend service provided by Amazon, for personal data hosting and enabling our Product to operate and be distributed to its users.
AppsFlyer (AppsFlyer Ltd., 14 Maskit Str., Floor 6 POB 12371, Herzliya 46733149, Israel) Appsflyer helps us understand, in particular, how users find our Product (for example, which advertiser delivered an ad that led you to our Product). Appsflyer also provides us with different analytics tools that enable us to research, analyze, and make your use of the Product better.
Amplitude (Amplitude Inc., 201 3rd Street, Suite 200, San Francisco, CA 94103) We use Amplitude for analytics and customer support purposes, specifically to understand how customers use our App. As for analytics purposes, Amplitude provides us with different tools that enable us to research and analyze Your use of the Service, which helps us to decide what features we should focus on more. For customer support purposes, Amplitude helps us to respond to Your requests for technical support. For example, it allows us to track Your interaction with our App and in order to detect particular technical issues with the App.
Google Analytics / Google Analytics for Firebase (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) Google Analytics / Google Analytics for Firebase are product analytics tools provided by Google, which help us to analyze the Service data and understand our users to optimize the Service performance.
SendPulse (SendPulse Inc., 220 E 23rd St #401, New York, NY 10010) We may transfer, among other information, your email address, phone number, device information, payment status, and subscription date to SendPulse in order to deliver customized emails, and web push notifications.
Reteno (Retention Yes Sp. Z.O.O., 02-972, Poland, voivodeship Mazovetsky, Warsaw city, Adama Branickiego Street, No. 21) We may transfer, among other information, your email address, phone number, device information, payment status, and subscription date to Reteno in order to deliver customized emails, web push notifications and other communications.
Front (FrontApp, Inc., 1455 Market Street, 19th Floor, San Francisco, CA 94103) In order to provide you with swift and smooth customer support, we use Front - software that allows us to optimize conversations between users and customer support agents. In this regard, Front receives and stores copies of all data related to your customer support requests, such as emails, purchase details, feedback, etc.
People and companies providing us with professional app development and maintenance services
We use the services of third-party advertising platforms, for example, Instagram, Facebook, and Snapchat, which allows us to show targeted campaigns and messages to users within their platforms based on the user’s behaviour. To put it plainly, we provide information about you that will allow advertising platforms to locate you in their database and information that you performed a desirable action, such as making a purchase.
This allows an advertising network to understand which people are interested in our Product as well as to display advertisements of the Product to users who will most likely want it.
Please note that most advertising networks act as separate controllers or co-controllers of your data in full or in part, which means that such controllers decide whether to use the transferred data for their own purposes, e.g. providing you with advertisements of other providers similar to our Product. You can learn more about the data processing practices of such companies in their respective privacy policies:
Should you wish to opt out of personalized advertising, please explore the options described in Section 6 above.
We share your information with our affiliates, i.e. companies which are related to Welltech Apps Limited and/or Actitech Limited, by having the same owner, for example. Where such sharing takes place, related companies will honor this Privacy Notice.
We may use and disclose personal data to enforce our Terms of Use to protect our rights, privacy, safety, or property, and/or that of our affiliates, you, or others, and to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, or in other cases provided for by applicable law.
Please note that in the course of doing business, we transfer your personal data outside of EU/EEA countries (if you are located outside of EU/EEA countries, we may transfer your personal data to other jurisdictions). For example, some of our service providers are located in the United States of America.
We shall implement measures as established under applicable law to ensure data transfers are protected as required. When a recipient is located in one of the jurisdictions listed on the official website of the European Commission here, the appropriate safeguard is the corresponding adequacy decision of the Commission. Where no such adequacy decision is present, we rely on the so-called Standard Contractual Clauses (see more about them here), along with a thorough analysis of the law of the destination country to safeguard your data and your rights.
In addition to the above, the Website may share your data as described below.
While Welltech Apps Limited is the data controller responsible for your data during your use of the Product, it's important to note that in some locations we engage our authorized third-party merchants of record or agents to distribute a Product via a Website. This is done to make the Product available to customers worldwide smoothly and seamlessly.
Below is a list of our authorized merchants of record and agents and their roles with regard to your data:
Tech SG LLC (3753 Howard Hughes Parkway, Suite 200-778, Las Vegas, NV, 89169-0300). Tech SG resells the Website, meaning it enters into a contract and accepts payments, for a part of our US users. Tech SG is a separate entity bearing individual responsibility for handling your data and acting as a controller within the meaning of data protection law. For more information on how Tech SG handles your data, please refer to their privacy policy at https://solidgate.com/privacy-policy/.
Outpost Technologies Ltd (4th Floor Office, 205 Regent Street, London, England, W1B 4HB), Outpost Mexico Services S.A. de C.V. (1ra Cda Tecnicos Y Manuales 19, Lomas Estrella, Iztapalapa, Ciudad De Mexico, Mexico, C.P. 09890) Outpost Technologies Ltd, as well as its affiliates, such as Outpost Mexico Services S.A. de C.V. resell the Website for us in particular countries, meaning they enter into a contract and accept payments, for a part of our users. Where Outpost is a party to the contract, for payment data, Outpost will bear sole responsibility for handling your data and will be acting as a controller within the meaning of data protection law. For more information on how Outpost handles your data, please refer to their privacy policy at https://www.outpostnow.com/privacy-policy/.
Welltika Content Provider FZCO (Detached Retail I5, Jumeirah Lakes Towers, Dubai, United Arab Emirates) Welltika resells the Product via a Website for us in particular countries, meaning they enter into a contract and accept payments, for a part of our users. Welltika is a separate entity bearing individual responsibility for handling your data and acting as a controller within the meaning of data protection law.
Actitech Limited (Karaiskaki 13, 3032, Limassol, Cyprus) Actitech Limited is one of our agents acting exclusively on our behalf to present the Website to you and accept payments. Actitech Limited is a data processor acting upon our instructions.
Fitinc Incorporated (103 Foulk Road, Suite 202, Wilmington, Delaware, 19803) Fitinc Incorporated resells the Product via a Website for us in particular countries, meaning they enter into a contract and accept payments, for a part of our users. Fitinc Incorporated is a separate entity bearing individual responsibility for handling your data and acting as a controller within the meaning of data protection law.
We cooperate with a number of payment service providers to help us to receive payments via our Website. In particular, we cooperate with:
Hotjar (Hotjar Ltd, Dragonara Business Centre, 5th Floor, Dragonara Road, Paceville St Julian's STJ 3141, Malta) Hotjar makes it easier to find points for improvement on our Website, understand our users' needs and to optimize their experience. We can analyse how much time you spend on which pages, which links you’ve chosen to click, what features you liked the most, etc.
OneTrust (OneTrust, 1200 Abernathy Road, Atlanta, Georgia 30328, United States) We engage OneTrust to ask for and manage your Cookie consent as required by different local regulations. OneTrust collects your country-level location to show you an appropriate cookie consent banner and places some Cookies to save and remember your choice and to aggregate some statistics on users' Cookie-related choices.
Zendesk (Zendesk, 989 Market st, San Francisco, CA 94103) We engage Zendesk to make our FAQ self-service available to you in App and on Website.
Sentry (Functional Software, Inc. 45 Fremont Street, 8th Floor, San Francisco, CA 94105) Sentry is a code analysis tool, which allows us to log software mistakes, monitor the software performance of a code, and analyse code vulnerabilities. While performing its functions, Sentry may access a limited number of your data, such as IP address, browser information, OS version, and device type.
Finally, on top of what has been described for both the Website and the App, the App itself shares data as follows.
Firebase Crashlytics (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) Firebase Crashlytics is a Google Firebase service that allows us to track application performance, i.e. we can discover the causes and severity of crashes in the Product.
Firebase Remote Config (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) Firebase Remote Config allows us to introduce changes to the App’s behaviour and appearance on the fly.
We keep your personal data for as long as necessary to fulfil the purposes outlined in this Privacy Notice unless further retention is required under applicable law.
You can request to terminate your account and delete your data at any time. We treat such requests as a termination of your contract with us and as a revocation of your consent(s). We will accommodate such requests and terminate any data processing under respective legal bases.
Please note that certain data can be retained even after your deletion request. That may be the case where processing is based upon our legitimate interest. For example, we may keep information on purchases in order to protect our rights in a legal action. Such storage is not indefinite and is limited to such data's usefulness and achieving our legitimate goals. As described in the Your Privacy Rights and How to Exercise Them section, you may object to our legitimate interests. If you wish to do so, please indicate this specifically in your message to us.
We may also keep data if deletion is not technically possible (for example, because your personal information has been stored in backup archives). We will securely store your personal information and isolate it from any further processing until deletion is possible.
The same applies to cases where we are obliged to retain your data under applicable law (e.g. accounting and tax laws). In the event of such retention, we will ensure via technical and organizational means that such data is not used for conflicting purposes, for example, advertising to you.
We may change this Privacy Notice from time to time by posting those changes directly on this webpage. Please make sure to review this Privacy Notice regularly. Should the change be major, we will try our best to draw your attention to it, e.g. via a pop-up or email. By continuing to use our Product, you acknowledge you have read and understood the most up-to-date Privacy Notice.