Privacy Policy

Effective Date: 1 November 2025

Slyma (“we,” “our,” “us”) provides online coaching and related services globally. This Privacy Policy explains how we collect, use, store, and protect your information.

1. Identity & Contact

Controller: Slyma
Registered Business Address: UNIT 1403, 3550 MAIN BEACH PARADES, MAIN BEACH, QUEENSLAND, 4217, Australia
Contact Email: [email protected]

2. What We Collect

Identifiers:

- Name, age, email address, phone number, postal address

Payment Information:

- Processed by Stripe

- We do not store full credit card details

Coaching & Health Information (Sensitive):

- Weight, measurements, medical details you choose to provide

- Progress photos

- Training logs, nutrition logs

- App-based fitness and activity metrics

App & Usage Data:

- Device information, IP address

- Pages viewed, activity within the platform

- Cookies and analytics data

Consents:

- Email and SMS preferences

- Time-stamped records of your consent

3. How We Collect Information

- Directly from you via forms, checkout pages, intake questionnaires, and messages

- Automatically through cookies and analytics tools

- From processors such as Stripe (payments) and GoHighLevel (CRM/email/SMS)

4. Why We Use Your Information

- Deliver coaching services, customer support, and account management

- Personalise training and nutrition plans

- Track progress and maintain app functionality

- Process payments, prevent fraud, and ensure security

- Send service updates and marketing communications (with your consent; opt out anytime)

- Conduct analytics and improve site/app performance

- Comply with legal and regulatory requirements

5. Health Data Utilization

Our platform collects and processes health and fitness information only with your explicit consent. This includes workout activity, exercise logs, heart rate (if integrated), and other metrics needed to provide core app features such as:

- Fitness tracking

- Personal progress insights

- Cross-device synchronisation

- Personalised coaching plans

We do not:

- Share health data with any third parties

- Use health data for advertising or marketing

- Sell or monetise health information


Your health information is stored securely with restricted access. If you delete your account, related personal and health data will be permanently deleted or de-identified except where legal retention is required.

Lawful Basis for Processing Health Data

- Explicit consent (can be withdrawn at any time via in-app settings or email)

Security

- Encryption in transit

- Limited access permissions

- Vendor due diligence

- Industry-standard security practices

International Transfers

Where required, data may be processed outside your country with approved safeguards such as Standard Contractual Clauses.

Deletion

Upon account deletion, personal and health data are deleted or de-identified unless retention is legally required.

6. Legal Basis Under Australian Law

Under the Australian Privacy Principles, we collect and handle your personal information on the basis of:

- Your consent

- Providing requested services

- Conducting our legitimate business activities

- Complying with Australian laws, including tax and record-keeping obligations

7. Disclosure to Third Parties

We may disclose personal information to trusted service providers who assist with our business operations, including:
- Stripe (payment processing)

- GoHighLevel (CRM, email, SMS)

- Cloud hosting providers

- Analytics and support tools


All third-party processors are bound by confidentiality and security requirements.


We do not sell personal information.

8. Overseas Disclosure

Some service providers may store or process data outside Australia. Where this occurs, we take reasonable steps to ensure that overseas recipients handle your information in accordance with the APPs.

9. Data Retention

We retain personal information:

- While you maintain an active account

- As required for legal, tax, or dispute resolution purposes

When information is no longer needed, we will delete or de-identify it in accordance with Australian privacy requirements.

10. Your Rights Under the Australian Privacy Principles

You may request:

- Access to personal information we hold about you

- Correction of any inaccurate information

- Information on how we manage your personal data

- Resolution of a privacy concern or complaint

11. Marketing Preferences & Cookies

- You may opt out of marketing emails or SMS at any time

- Cookies can be managed through your browser or device settings

- Disabling cookies may impact certain site features

12. Security Measures

We employ administrative, technical, and physical safeguards, including:

- Encryption in transit

- Role-based access controls

- Secure cloud infrastructure

- Staff training

- Vendor security reviews


No system is completely secure, but we implement industry-standard protections.

13. Minors

Our services are not directed to individuals under 18. We do not knowingly collect information about minors.

14. Account Deletion

To request deletion:

1. Submit a request through in-app settings or via our contact form

2. Use the subject line “Delete My Account”

3. Include your full name and email address


We will delete or de-identify your data unless retention is required by law.


Comments or content you submit within the service may not always be removable.

15. Complaints

If you have concerns about our handling of your personal information, contact us at:

[email protected]


You may also lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

https://www.oaic.gov.au

16. Updates to This Policy

We may update this policy from time to time. The revised version will be posted on our website with the updated effective date.

If you have questions, please contact: [email protected]