Privacy Policy

Ayo Fitness Ltd  ·  Company No. 16947625  ·  Last updated: May 2026

1. Who We Are

Ayo Fitness Ltd is a coaching and fitness platform operated by Ayo Nuwe. We provide online personal training, membership programmes, and athlete development services.

Company: Ayo Fitness Ltd
Company Number: 16947625
Registered Address: 3rd Floor, 86–90 Paul Street, London, EC2A 4NE
Contact: [email protected]

2. Data We Collect

We collect information you provide directly when you:

• Create an account on the Ayo Fitness app
• Submit an application form on our website
• Purchase a membership or coaching plan
• Send a message or check-in through the app
• Complete a progress check-in or assessment

This information includes:

• Identity data: full name, date of birth, age
• Contact data: email address, phone number
• Health and fitness data: training goals, fitness experience, injuries, medical conditions, body metrics, and progress photos (where provided voluntarily)
• Payment data: billing information processed securely by Stripe — we do not store card details
• Usage data: how you interact with the app, check-in responses, messages exchanged with your coach
• Technical data: device type, operating system, app version

3. How We Use Your Data

We use your personal data to:

• Deliver your coaching programme and membership services
• Personalise your training plans and nutrition guidance
• Process payments and manage your subscription
• Send you programme content, check-in reminders, and coaching communications
• Monitor your progress and adjust your programme accordingly
• Respond to your messages and support requests
• Send you relevant updates about your membership (not marketing without consent)
• Comply with legal obligations

4. Legal Basis for Processing

We process your data on the following legal grounds under UK GDPR:

• Contract: processing is necessary to deliver the services you have purchased or applied for
• Legitimate interests: to improve our services and communicate with active clients
• Consent: for marketing communications — you can withdraw consent at any time
• Legal obligation: where required by law

5. Health Data

Fitness and health information (including injuries, medical conditions, and body metrics) is treated as special category data under UK GDPR. We collect this only where you provide it voluntarily as part of your coaching application or check-in process, and we use it solely to deliver your programme safely and effectively. This data is never shared with third parties for marketing purposes.

6. Third-Party Services

We use trusted third-party services to operate our platform:

• Supabase — secure database and authentication for the Ayo Fitness app (data stored in EU)
• Stripe — payment processing. Stripe is PCI-DSS compliant. We do not store your card details. See Stripe's Privacy Policy
• ActiveCampaign — email communications and CRM. See ActiveCampaign's Privacy Policy
• Cloudflare — website hosting, performance, and security
• Apple / Google — app distribution via App Store and Google Play

These services are contractually bound to protect your data and may not use it for their own purposes.

7. Data Sharing

We do not sell your personal data. We do not share your data with third parties except:

• The service providers listed above, where necessary to operate our platform
• Where required by law or regulatory authority
• With your explicit consent

8. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. If you cancel your membership or request deletion, we will delete your personal data within 30 days, except where we are required to retain it for legal or tax purposes (typically 6 years for financial records).

9. Your Rights

Under UK GDPR, you have the right to:

• Access — request a copy of your personal data
• Rectification — ask us to correct inaccurate data
• Erasure — ask us to delete your data ("right to be forgotten")
• Restriction — ask us to limit how we use your data
• Portability — receive your data in a machine-readable format
• Objection — object to processing based on legitimate interests
• Withdraw consent — for any processing based on consent, at any time

To exercise any of these rights, email [email protected]. We will respond within 30 days.

10. Cookies

Our website uses minimal cookies for theme preferences (light/dark mode) stored locally on your device. We do not use advertising or tracking cookies. The Tawk.to live chat widget may set cookies to maintain your chat session.

11. Children's Privacy

Our app and website are not directed at children under 13. For youth athlete coaching (ages 10+), a parent or guardian must provide consent and remains involved throughout the programme. We do not knowingly collect data from children under 13 without verified parental consent.

12. Data Security

We take the security of your data seriously. Measures include:

• Encrypted data transmission (HTTPS/TLS)
• Secure database access controls via Supabase
• Encrypted environment variables for all API keys and secrets
• Payment data handled exclusively by Stripe's PCI-compliant infrastructure

13. International Transfers

Your data is primarily stored within the UK and EU. Where data is processed outside these regions (for example, by ActiveCampaign in the US), appropriate safeguards such as Standard Contractual Clauses are in place.

14. Changes to This Policy

We may update this policy from time to time. We will notify active users of material changes by email or in-app notification. The latest version will always be available at ayoofitness.com/privacy.html.

15. Contact and Complaints

For any privacy-related questions, contact us at [email protected].

If you are unhappy with how we handle your data, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.