Legal

WellfitSA Privacy Policy

Effective date: 30 April 2026 · Applies to: WellfitSA mobile application (iOS and Android) · Operator: WellfitSA

01. Introduction

WellfitSA ("we", "us", "our") respects your privacy. This Privacy Policy explains what personal data we collect, how we use it, how long we keep it, how we share it, and how you can request deletion.

By using the WellfitSA app, you agree to this Privacy Policy.

02. Data We Collect

Depending on the features you use, we may collect:

Account and profile information

  • Name
  • Phone number
  • Email address
  • Gender
  • Date of birth / age
  • Fitness level and goals
  • Profile photo (if uploaded)

Booking and subscription data

  • Session bookings and schedule
  • Subscription plans and package selections
  • Session preferences and details

Address information

  • Saved addresses (label, address details, map coordinates)
  • Building/apartment details
  • Optional address photos
  • Optional national address field

Device and technical information

  • Device identifier
  • Device type and name
  • App version
  • Language preference
  • Crash and diagnostics data

Location data

  • Approximate or precise location only when you grant permission and use location-based features (for selecting addresses/maps).

Payment-related data

  • Payment status and transaction references
  • We do not store full card numbers or CVV in the app; payments are processed by authorized payment providers.

Support and communication data

  • Messages sent to support
  • Feedback, ratings, and reviews

03. How We Use Your Data

We use personal data to:

  • Create and manage your account
  • Provide session booking, subscription, and checkout functionality
  • Save and manage your addresses and profile settings
  • Process and verify transactions through payment partners
  • Send service notifications (for example: booking updates, reminders)
  • Improve app quality, performance, and security
  • Prevent fraud, abuse, and unauthorized activity
  • Comply with legal and regulatory obligations

04. Legal Basis / Consent

When required by applicable law, we process your data based on one or more of the following:

  • Your consent (for example: location permission, notifications permission)
  • Performance of a contract (providing booked services)
  • Legitimate interests (service security, improvement, support)
  • Compliance with legal obligations

You can withdraw certain permissions at any time from your device settings.

05. Data Sharing

We may share data only when needed with:

  • Trainers or service providers related to your booked sessions
  • Payment processors and payment gateways
  • Cloud/hosting and technical infrastructure providers
  • Analytics, diagnostics, and customer-support tools
  • Authorities, when required by law

We do not sell your personal data.

06. Data Retention (How Long We Keep Data)

We retain personal data only as long as needed for service operation, legal compliance, and dispute handling:

  • Account/profile and booking data: kept while your account is active.
  • After account deletion request: account data is deleted or anonymized within 30 days, except where retention is legally required.
  • Transaction and invoice records: retained up to 7 years (or as required by local tax/financial law).
  • Support and operational logs: typically retained for up to 12 months unless required longer for security/investigation.
  • Crash/diagnostic data: retained according to provider defaults, generally up to 12 months.

When retention is no longer required, data is securely deleted or anonymized.

07. How Data Is Deleted

You may request deletion of your account and personal data in one of the following ways:

  • Use the in-app account deletion option (if available), or
  • Contact us using the details in the "Contact Us" section below.

After verification of your request:

  • We delete or anonymize your account data within 30 days.
  • We remove associated profile data, saved addresses, and app-facing personal records where legally allowed.
  • Data that must be kept for legal, accounting, anti-fraud, or security obligations may be retained for the required period.

08. Your Rights

Subject to applicable law, you may have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict certain processing
  • Withdraw consent for permission-based processing
  • Receive a copy of your data (data portability, where applicable)

To exercise rights, contact us via the details below.

09. Security

We implement reasonable administrative, technical, and organizational safeguards to protect your data from unauthorized access, misuse, loss, or alteration.

No method of transmission or storage is 100% secure; however, we continuously work to protect your information.

10. Children's Privacy

WellfitSA is not intended for children under the minimum age allowed by local law without parental/guardian involvement where required.

If we learn that data has been collected in violation of this requirement, we will take steps to remove it.

11. International Transfers

Your information may be processed on servers located in countries other than your own.

Where required, we use appropriate safeguards for cross-border data transfers.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

When updated, we will revise the effective date and, when required, provide notice in-app or by other appropriate means.

13. Contact Us

For privacy questions, data access, or deletion requests: