Privacy Policy

Last updated: 29 April 2026

This privacy policy explains how EduSys, Lda (Portuguese tax identification number PT518212173), trading as WellHive(“we”, “us”, “our”), collects, uses, stores, and protects your personal data when you use the WellHive mobile application and web platform (together, the “Service”).

We are committed to protecting your privacy and complying with the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the Portuguese Lei n.º 58/2019 implementing the GDPR, and the EU Artificial Intelligence Act (Regulation (EU) 2024/1689).

1. Data controller

The data controller responsible for your personal data is:

EduSys, Lda
NIF: PT518212173
Email: privacy@wellhive.app

2. Data we collect

We collect and process the following categories of personal data:

CategoryExamplesLegal basis
Account dataName, email, password (hashed), role, avatarContract (Art. 6(1)(b))
Health and wellbeing dataMood, energy, sleep, body measurements, progress photos, HRV, stressExplicit consent (Art. 9(2)(a))
Apple Health / Health Connect dataWeight, body fat, sleep, step count, resting heart rate, workouts (only the data types you authorise)Explicit consent (Art. 9(2)(a))
Habit and activity dataHabit logs, streaks, workout logs, programme progressContract (Art. 6(1)(b))
Nutrition dataFood logs, meal plans, supplements, macros, water intakeContract (Art. 6(1)(b))
Practitioner notesTeam notes, session notes, check-in narratives, timeline entriesContract (Art. 6(1)(b))
MessagesChat messages between clients and practitionersContract (Art. 6(1)(b))
Booking dataSession dates, times, locations, practitioner assignmentsContract (Art. 6(1)(b))
Billing dataSubscription status, payment identifiers (card details held by Stripe)Contract (Art. 6(1)(b))
Device dataPush notification tokens, device platform (iOS/Android)Legitimate interest (Art. 6(1)(f))
Usage dataApp interactions, error logs (anonymised)Legitimate interest (Art. 6(1)(f))

3. Special category data

Health and wellbeing data (mood, energy, sleep, body measurements, HRV, stress, and practitioner notes about your physical and mental wellbeing) is classified as special category data under Article 9 of the GDPR. We process this data solely on the basis of your explicit consent, which you provide when you create an account and begin using the tracking features.

You may withdraw this consent at any time by contacting us or deleting your account. Withdrawal of consent will mean we can no longer provide the Service, as health tracking is fundamental to how WellHive works.

We have conducted a Data Protection Impact Assessment (DPIA) in accordance with Article 35 of the GDPR, given the nature and scale of health data processing involved. This assessment is available upon request.

4. Apple Health and Health Connect

The WellHive mobile app integrates with Apple HealthKit on iOS and Android Health Connect on Android. We only access these data sources after you have granted explicit permission via the operating-system prompt — you choose which data types to share, and you can change your mind at any time.

4.1 Data we read

With your permission, we read the following data types from Apple Health / Health Connect:

  • Body mass (weight)
  • Body fat percentage
  • Sleep analysis
  • Step count
  • Resting heart rate
  • Workouts (type, duration, energy burned)

4.2 Data we write

With your permission, we write workouts you complete inside WellHive back to Apple Health / Health Connect, so the activity is reflected in your daily activity rings and your wider health history.

4.3 How we use this data

Apple Health and Health Connect data is stored on our servers (see Section 7) and used solely to:

  • Display your weight, sleep, steps, heart rate and workout history in your in-app dashboard
  • Allow practitioners assigned to your care to see your real progress without you typing it in by hand
  • Generate AI-powered summaries (Section 6) only when a practitioner explicitly requests one for you

4.4 Sharing and advertising

We do not use Apple Health or Health Connect data for advertising, marketing, or profiling, and we never share it with data brokers or advertising networks. This data is only ever shared with the practitioners you have explicitly connected to your account, and with the data processors listed in Section 7 (Supabase for storage; Anthropic only when an AI insight is explicitly requested). We do not sell Apple Health or Health Connect data to anyone.

4.5 Revoking access

You can revoke WellHive's access to Apple Health or Health Connect at any time, without deleting your WellHive account:

  • iOS:Settings → Health → Data Access & Devices → WellHive → turn off individual data types, or tap “Turn Off All” to revoke entirely.
  • Android:Settings → Apps → Health Connect → App permissions → WellHive → revoke per-data-type, or remove access entirely.

Revoking access stops new data being read, but does not delete data already saved on our servers. To delete that data, please use the “Delete my account” option in the app, or email privacy@wellhive.app. Retention periods are set out in Section 9.

5. How we use your data

We process your data for the following purposes:

  • Service delivery— to provide the WellHive platform, including dashboards, progress tracking, client-practitioner communication, and booking management
  • AI-powered insights— to generate automated summaries, pattern detection, and recommendations for practitioners (see Section 6 for full AI transparency disclosure)
  • Notifications— to send push notifications for booking reminders, new messages, and streak encouragement
  • Billing— to manage subscriptions, process payments, and enforce plan limits
  • Service improvement— to maintain, debug, and improve the platform using anonymised usage data

We do not sell your personal data to any third party. We do not use your data for advertising or marketing profiling.

6. Artificial intelligence and automated processing

WellHive uses artificial intelligence to assist practitioners in supporting their clients. This section explains how AI is used, in compliance with the EU Artificial Intelligence Act (Regulation (EU) 2024/1689) and GDPR Article 22 (automated decision-making).

6.1 What the AI does

The AI copilot within WellHive provides practitioners with:

  • Summaries of client tracking data (mood trends, habit adherence, nutrition patterns)
  • Pattern detection and red-flag alerts (e.g. declining mood over multiple days)
  • Suggested content for protocols, programmes, and client communications
  • General wellness and coaching recommendations based on client data

6.2 AI risk classification

Under the EU AI Act, the WellHive AI features are classified as limited risk. The AI generates advisory outputs for qualified practitioners — it does not autonomously make decisions about your care, treatment, or access to services. All AI outputs are clearly labelled as AI-generated within the platform.

6.3 Human oversight

All AI-generated content is presented as suggestions to practitioners, who retain full discretion over whether to act on, modify, or disregard the AI output. No automated decision is made that produces legal effects or similarly significant effects on any individual without human review. This satisfies the requirements of GDPR Article 22.

6.4 AI data processing

  • AI processing is powered by Anthropic's Claude API
  • Client data sent to the AI is processed in real time and is not retained by Anthropic for model training
  • AI inputs are limited to the minimum data necessary for the specific request (data minimisation principle, Art. 5(1)(c) GDPR)
  • AI outputs are not stored as authoritative records — they are ephemeral suggestions unless a practitioner explicitly saves them

6.5 Your rights regarding AI processing

You have the right to:

  • Be informed that AI is being used in connection with your data (this section fulfils that obligation)
  • Request meaningful information about the logic involved in any AI processing of your data
  • Object to AI processing of your data by contacting us at privacy@wellhive.app
  • Request human review of any decision that was informed by AI output

7. Who we share your data with

Your data is shared only with the following parties, each of which operates under a data processing agreement:

  • Your practitioners— practitioners assigned to your care can view your tracking data, habits, messages, and progress. This is fundamental to how the Service works.
  • Supabase Inc.— database hosting and authentication. Data is stored in the EU (eu-west-1 region).
  • Anthropic PBC— AI-powered insights and summary generation. Data is processed in real time and is not retained for model training.
  • Expo / 820 Inc.— mobile push notification delivery. Only device tokens and notification content are transmitted.
  • Vercel Inc.— web platform hosting and edge delivery.
  • Stripe Inc.— payment processing and subscription management. We do not store card details.

We do not sell your personal data to any third party.

8. International data transfers

Your data is primarily stored in the EU (AWS eu-west-1 via Supabase). Some sub-processors (Anthropic, Expo, Vercel, Stripe) are based in the United States. These transfers are protected by Standard Contractual Clauses (SCCs) and/or the EU-US Data Privacy Framework, as applicable.

9. Data retention

We retain your personal data for as long as your account is active. Specific retention periods:

  • Account and tracking data— retained while your account exists. Deleted within 30 days of account deletion.
  • Messages— retained while both the sender and recipient accounts exist.
  • Push tokens— deleted immediately upon sign-out or account deletion.
  • Anonymised usage data— may be retained indefinitely for service improvement.
  • Billing records— retained for 7 years to comply with Portuguese tax obligations (Codigo do IVA).

10. Data security

We implement appropriate technical and organisational measures to protect your data, including:

  • All data in transit is encrypted using TLS 1.2 or higher
  • Mobile authentication tokens are stored in encrypted device storage (iOS Keychain / Android Keystore)
  • Database access is controlled by Row Level Security (RLS) policies — users can only access their own data
  • Passwords are hashed; we never store plaintext passwords
  • Administrative access to production systems is restricted and logged

11. Your rights

Under the GDPR, you have the following rights:

  • Access (Art. 15)— request a copy of all personal data we hold about you
  • Rectification (Art. 16)— correct inaccurate or incomplete data
  • Erasure (Art. 17)— request deletion of your data (“right to be forgotten”)
  • Restriction (Art. 18)— ask us to limit how we process your data
  • Portability (Art. 20)— receive your data in a structured, machine-readable format
  • Objection (Art. 21)— object to processing based on legitimate interest
  • Automated decision-making (Art. 22)— not to be subject to solely automated decisions that produce legal or significant effects (see Section 6)
  • Withdraw consent— withdraw your consent for health data or AI processing at any time

To exercise any of these rights, email privacy@wellhive.app. We will respond within 30 days. You can also download your data or delete your account directly from the Settings page.

12. Cookies

The WellHive web platform uses essential cookies only. These are strictly necessary for the platform to function (e.g. authentication session cookies). We do not use analytics, advertising, or third-party tracking cookies.

The WellHive mobile app does not use cookies. Authentication tokens are stored in encrypted device storage (iOS Keychain / Android Keystore).

13. Children

WellHive is not intended for use by anyone under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

14. Right to lodge a complaint

If you are unhappy with how we have handled your data, you have the right to lodge a complaint with the Portuguese Data Protection Authority:

  • Comissao Nacional de Proteccao de Dados (CNPD)
  • Website: cnpd.pt

If you are based in another EU/EEA member state, you may also contact your local supervisory authority.

15. Changes to this policy

We may update this privacy policy from time to time. If we make material changes, we will notify you via the app or by email before the changes take effect. The “last updated” date at the top of this page indicates when the policy was most recently revised.

16. Contact

If you have any questions about this privacy policy or how we handle your data:

EduSys, Lda
NIF: PT518212173
Email: privacy@wellhive.app