Privacy Policy

1. Introduction

Slimbr Weight and Wellness, operated by Slimbr Health ("we," "our," or "us"), is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services (collectively, the "Service").

By using our Service, you consent to the data practices described in this policy.

2. Information We Collect

Personal Information

We may collect the following personal information:

• Name, email address, and contact information
• Date of birth and gender
• Health information including weight, height, BMI, and medical history
• Prescription and medication information
• Payment and billing information
• Photos and images you choose to share

Usage Information

We automatically collect certain information when you use our Service:

• Device information (type, operating system, unique device identifiers)
• Log information (access times, pages viewed, IP address)
• Location information (with your permission)
• App usage analytics and performance data

3. How We Use Your Information

We use your information to:

• Provide and maintain our health and weight management services
• Process prescriptions and coordinate with healthcare providers
• Send you important updates about your treatment and account
• Provide customer support and respond to your inquiries
• Improve our services and develop new features
• Comply with legal obligations and protect against fraud
• Send marketing communications (with your consent)

4. Information Sharing and Disclosure

We may share your information with:

Healthcare Providers

We share relevant health information with licensed healthcare professionals to provide you with medical care and prescriptions.

Service Providers

We work with third-party service providers who help us operate our business, including:

• Payment processors (Stripe)
• Email and communication services
• Cloud hosting and data storage providers
• Analytics and performance monitoring services

Legal Requirements

We may disclose your information if required by law or to protect our rights, property, or safety, or that of others.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication requirements
• Employee training on data protection

6. Data Retention

We retain your personal information for as long as necessary to provide our services and comply with legal obligations. Specifically:

• Health and medical records: 7 years after last treatment (or as required by law)
• Payment and billing records: 7 years for tax and accounting purposes
• Account information: Until you request deletion or close your account
• Usage and analytics data: Up to 2 years

7. Communications and SMS Messages

We may send you communications via email and SMS (text messages) regarding your treatment, appointments, and important account updates. By providing your phone number and consenting to SMS communications, you agree to receive:

• Appointment reminders and confirmations
• Prescription and medication updates
• Treatment progress notifications
• Important account and billing information
• Emergency health-related communications

SMS Consent and Opt-Out (GDPR Compliant)

Explicit Consent Required: Under EU General Data Protection Regulation (GDPR), we require your explicit, freely given consent before sending SMS messages. This consent must be specific, informed, and unambiguous. You can provide or withdraw this consent at any time through your account settings or by contacting us.

Your Rights: You have the right to:

• Withdraw your consent at any time (withdrawal is as easy as giving consent)
• Update your communication preferences in your account settings
• Contact us at support@slimbr.com to opt out
• Request information about what personal data we process for SMS communications

Data Processing: When you consent to SMS communications, we process your phone number and communication preferences based on your explicit consent (Article 6(1)(a) GDPR). You can withdraw this consent at any time, and we will stop processing your data for SMS purposes.

Message Frequency: Message frequency varies based on your treatment schedule and preferences. Standard message and data rates may apply.

8. Your Rights and Choices

You have the following rights regarding your personal information:

• Access: Request copies of your personal information
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your personal information (subject to legal requirements)
• Portability: Request transfer of your data to another service
• Opt-out: Unsubscribe from marketing communications and SMS messages

To exercise these rights, please contact us at support@slimbr.com or use our data deletion form.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

10. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If you become aware that a child has provided us with personal information, please contact us.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

11. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

12. Regulatory Compliance

We comply with applicable data protection laws, including:

• General Data Protection Regulation (GDPR) for EU residents
• Irish Data Protection Act 2018
• Health Insurance Portability and Accountability Act (HIPAA) for health information
• Other applicable local and national privacy laws