Privacy Statement

Last Updated - 18th April 2026


We are committed to protecting your privacy in compliance with our obligations under the Irish Data Protection Act and The General Data Protection Regulation (GDPR) (EU) 2016/679.

The purpose of this Web Site Privacy Statement is to outline how we deal with any personal data you provide to us while visiting this web site. Any external links to other web sites are clearly identifiable as such, and we are not responsible for the content or the privacy policies of these other web sites.

1. Purposes for which we collect and use your Information

PERSONAL DATA

We will process any Personal Data you provide to us for the following purposes:- to provide you with the services you have ordered (which includes sending you regular weekly guides, plans and updates via email relevant to your program), to contact you if required in connection with your service order or to respond to any communications you might send to us.

SESSION COOKIES

Session Cookies are used by our website to ensure that any choices that you have made are remembered; in the case of any order you make, data you have added into your order form is maintained for you until you are finished. No personal information is recorded in the session cookie, its sole function is to provide a good web experience for you during your visit.

THIRD PARTY COOKIES

We use third party services such as Google Analytics, YouTube and Adroll to help us understand better where our visitors come from, how they navigate our website and to help promote our services. You can deny these services setting cookies the first time you visit our website if you think they are intrusive.

 

2. Disclosure of Information to Third Parties

We will not disclose your Personal Data to third parties unless you have consented to this disclosure or unless the third party is required to fulfil part of our service to you (e.g. secure payment processing, secure email messging) in such circumstances, the third party will be bound by GDPR compliance.

 

3. Security

Your Personal Data is held on physically secured servers hosted by our trusted vendors and on secured computers at our offices. We take all reasonable steps (including appropriate technical and organisational measures) to protect your Personal Data at all times.

 

4. Location Data

We may collect and process your location data to enable features such as tracking your walking or running activity, calculating distance, and displaying your route on a map. Location data may be collected both when the app is in use and in the background, but only when the user has granted permission and initiated an activity tracking session.

Location data is not shared with third parties, and is used solely for providing personalized activity tracking features to users.


5. Data Retention

We only keep personal data for as long as we need it. Different categories are kept for different periods, depending on how they're used and what the law requires.

 

Payment records (Stripe). Our payment processor, Stripe, retains payment records indefinitely. We rely on this retention to meet our obligations under Irish tax, accounting, and financial reporting law.

 

Customer programme data. Personal information linked to a specific programme purchase is held in our customer order database and deleted once the programme ends.

 

Marketing contacts (Klaviyo). Email addresses collected for marketing are stored in Klaviyo, our email marketing platform, until you unsubscribe. You can unsubscribe at any time using the link at the bottom of any marketing email — this removes you from the list.

 

BodySlims app account data. Your account details, programme progress, weigh-in history, walk activity, progress photos, and food log entries are kept for as long as your app account is active. When you delete your account, we delete this data from our systems (see Section 6).


6. Deleting Your Data

If you use the BodySlims mobile app, you can ask us to delete your account and all associated personal data at any time.

 

How to request deletion. Email info@bodyslims.com from the address linked to your account, with the subject line "Account Deletion Request". We may need to verify your identity before acting on the request — usually by confirming it from that same email address.

 

What happens next. Once we've verified your request, we'll delete your app account data within 30 days.

Please note:

  • We may need to retain some data where required by law (for example, for tax or regulatory reasons).
  • Stripe payment records are not deleted as part of this request — they're retained for audit purposes (see Section 5).
  • If you're also subscribed to our marketing emails, you'll need to unsubscribe separately — account deletion does not automatically remove you from Klaviyo.
  • Deletion does not automatically refund any active programme purchase. For refund queries, please email info@bodyslims.com.

 

Your other rights. Under data protection law, you also have the right to access, correct, or receive a copy of the personal data we hold about you, and to object to or restrict certain uses of it. To exercise any of these rights, email info@bodyslims.com.