Privacy Policy
Last updated 16 June 2026
This Privacy Policy explains how Yogaly (“Yogaly”, “we”, “us”, or “our”) collects, uses, shares, and protects your personal information when you use our mobile app and website (together, the “Service”). By using the Service, you agree to the practices described here.
Note: this is a general template provided for convenience. Have it reviewed by qualified legal counsel and tailored to your jurisdictions before launch.
1. Information we collect
Information you provide
- Account details — name, email address, and password (stored hashed).
- Profile and practice data — your goals, experience level, preferences, any physical limitations you choose to share, and your session history. Some of this may relate to your health, so we treat it as sensitive (see Section 8).
- Communications — messages you send to support, surveys, and feedback.
Information we collect automatically
- Device and technical data — device type, operating system, app version, language, and identifiers.
- Usage data — features used, sessions started and completed, and in-app activity.
- Cookies and similar technologies — see our Cookie Policy.
Information from third parties
- Payment and subscription status from the Apple App Store and Google Play. We do not receive your full card number.
- Analytics and crash reporting from our service providers, in aggregated or pseudonymised form.
2. How we use your information
- Provide, personalise, and maintain the Service, including generating and recommending sessions.
- Use your stated limitations solely to make your practice safer and more suitable.
- Keep your streak, history, and preferences, and sync them across your devices.
- Process subscriptions, provide customer support, and send service-related messages.
- Improve and develop features, analyse usage, and ensure security and prevent abuse.
- Send reminders and, where permitted, optional product updates you can opt out of at any time.
- Comply with legal obligations and enforce our Terms.
3. Legal bases (EEA/UK users)
Where the GDPR or UK GDPR applies, we rely on: performance of a contract (to provide the Service), consent (for sensitive data such as health-related limitations, marketing, and non-essential cookies), legitimate interests (to secure and improve the Service), and legal obligation where required. You may withdraw consent at any time.
4. How we share information
We do not sell your personal information. We share it only with:
- Service providers who host, process payments, analyse usage, and provide support under contract, acting on our instructions.
- App stores that process your subscription.
- Legal and safety recipients where required by law, or to protect rights, safety, and the integrity of the Service.
- Business transfers — if we are involved in a merger, acquisition, or asset sale, subject to this Policy.
5. Data retention
We keep your information for as long as your account is active and as needed to provide the Service. When you delete your account, we delete or anonymise your personal data within a reasonable period, except where we must retain it to meet legal, tax, or security obligations.
6. Security
We use technical and organisational measures - including encryption in transit, access controls, and regular review - to protect your information. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.
7. Your rights and choices
- View and edit your details from Profile → Account.
- Delete your account and associated data from the same screen.
- Manage reminders and notification permissions at any time.
- Depending on where you live, you may have rights to access, correct, delete, port, or restrict processing of your data, and to object or withdraw consent. EEA/UK users may lodge a complaint with their local supervisory authority.
- California residents: you have rights under the CCPA/CPRA, including to know, delete, correct, and limit use of sensitive personal information. We do not sell or “share” your personal information as those terms are defined under California law.
To exercise any right, email privacy@yogaly.com. We will verify and respond within the time required by law.
8. Health-related data
Limitations and wellness preferences you share may reveal information about your health. We collect this only with your consent, use it only to tailor and keep your practice safe, and never use it for advertising. You can remove it at any time from your profile. Yogaly is not a medical service and does not provide medical advice.
9. International transfers
We may process and store information in countries other than your own. Where we transfer data internationally, we use appropriate safeguards such as Standard Contractual Clauses.
10. Children’s privacy
Yogaly is not directed to children under 16, and we do not knowingly collect their personal information. If you believe a child has provided us data, contact us and we will delete it.
11. Changes to this Policy
We may update this Policy from time to time. We will post the new version with a revised “Last updated” date and, for material changes, provide additional notice.
12. Contact
Questions about your data? Email privacy@yogaly.com. See also our Terms and Cookie Policy.