JETZT STARTEN

DATENSCHUTZERKLÄRUNG: PRIVACY POLICY

PRIVACY POLICY

Last updated: 16 June 2026

1. Controller

This Privacy Policy explains how TEAM4BL LTD (“TEAM4BL”, “we”, “us”, or “our”) collects, uses, and protects personal data when you use our website, mobile applications, digital platforms, coaching programs, or other related services (collectively, the “Services”).

Controller:

TEAM4BL LTD Georgiou Karaiskaki 11–13 CARISA SALONICA, Flat/Office 102 7560 Pervolia, Larnaca Republic of Cyprus

Company No.: HE 487647

Email: support@team4bl.com Alternative contact: raphael.reisinger@4bl.lifestyle

2. Changes to this Policy

We may update this Privacy Policy from time to time to reflect changes in our services, technologies, or legal obligations.

If material changes occur, we will update the “Last updated” date above and may provide additional notice where required by applicable law.

3. Personal Data We Collect

A. Information You Provide

We collect information when you:

  • Register for an account
  • Purchase subscriptions or products
  • Participate in community challenges or coaching programs
  • Fill out forms or surveys
  • Contact customer support
  • Communicate with us via email or social media
  • Participate in events or promotions

This may include:

  • Name
  • Email address
  • Password (encrypted)
  • Address
  • Payment information (processed securely via third-party payment providers such as Stripe)
  • Fitness goals and training preferences
  • Feedback, comments, and communications

We collect only the minimum amount of data necessary to provide our services.

B. Automatically Collected Information

When you use our Services, we may automatically collect certain information such as:

  • Device information (device model, operating system, app version)
  • Log data (IP address, browser type, timestamps)
  • Usage data (features accessed, session activity, training progress)
  • Transaction data (subscriptions, purchases, trial periods)
  • Approximate location derived from IP address

This information helps us maintain security and improve our services.

C. Health & Fitness Data (Apple HealthKit & Google Health Connect)

With your explicit permission, our app may access certain health and fitness data from Apple Health (HealthKit) on iOS devices and Google Health Connect on Android devices. Granting this access is entirely optional — the app works fully without it. This data is used only to enhance your weekly analysis.

All health and fitness data is processed exclusively locally on your device. This data is never stored by us and is never transmitted to our servers.

The data accessed is limited to the following metrics:

  • Resting heart rate
  • Heart rate variability (HRV)
  • Sleep duration
  • Training time

This data is processed solely on your device to:

  • Personalize your fitness profile and weekly analysis
  • Improve training recommendations
  • Track your progress within the app

The technical access on iOS is implemented exclusively via Apple HealthKit (using the @kingstinct/react-native-healthkit library) and on Android exclusively via Google Health Connect. The data is read as passive sensor data from the operating system’s health framework.

We expressly clarify:

  • No augmented reality (AR) technology is used.
  • No depth camera (e.g. TrueDepth) is used.
  • No facial recognition or facial AR is performed.
  • No body-tracking via camera is performed.
  • No biometric identifiers are collected, stored, or transmitted.

Important safeguards & limited use:

  • Health data is never sold.
  • Health data is never used for advertising, marketing, or profiling purposes.
  • Health data is not shared with third parties, data brokers, or information resellers.
  • Health data is processed locally on your device, only with your explicit consent, and solely to provide the core features of the application.
  • You may revoke access at any time via your Apple Health or Google Health Connect system settings, or via the settings within our app.

Apple HealthKit: Our use of HealthKit data complies with Apple’s HealthKit guidelines. We do not use HealthKit data for advertising, marketing, or data-mining purposes, and we do not disclose it to third parties without your explicit consent.

Google Health Connect — Limited Use: Our use of information received from Google Health Connect adheres to the Health Connect Permissions policy, including the Limited Use requirements. We only access the minimum data necessary, use it exclusively to provide user-facing features within the app, and do not transfer this data except as required by law or with your explicit consent.

D. Cookies & Tracking Technologies

Our website uses cookies and similar technologies to:

  • Improve user experience
  • Analyze website traffic
  • Measure marketing performance

Users may manage cookie settings via their browser.

Our mobile applications may use similar technologies such as analytics SDKs instead of browser cookies.

4. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process personal data based on the following legal grounds:

  • Performance of a contract (providing the Services)
  • Legitimate interests (security, fraud prevention, service improvement)
  • Legal obligations (tax, accounting, compliance)
  • Explicit consent (health data, marketing communication)

For health and fitness data, which constitutes a special category of personal data under Article 9 GDPR, we rely exclusively on your explicit consent. You may withdraw this consent at any time, with effect for the future.

5. How We Use Personal Data

We use personal data to:

  • Provide and operate the Services
  • Create and manage user accounts
  • Process purchases and subscriptions
  • Deliver coaching programs and training content
  • Personalize the user experience
  • Improve product features
  • Provide customer support
  • Prevent fraud or abuse
  • Comply with legal obligations

We do not sell personal data to third parties.

6. Data Sharing

We may share personal data with trusted service providers that support our operations, including:

  • Payment processors (including Stripe)
  • Cloud hosting providers
  • Email service providers
  • Analytics providers
  • Fraud prevention services

These partners process data only on our behalf and under strict contractual data protection obligations.

Please note: health and fitness data accessed via Apple HealthKit or Google Health Connect is processed exclusively on your device and is therefore not shared with any of these service providers.

We may also disclose personal data:

  • When required by law
  • To enforce our policies or terms
  • During mergers, acquisitions, or corporate restructuring

7. Third-Party Services

Our Services may integrate with third-party platforms and service providers including but not limited to:

  • Apple App Store
  • Google Play Store
  • Stripe (payment processing)
  • Cloud hosting providers
  • Analytics platforms

These third parties may process limited data necessary to operate their services.

We recommend reviewing their respective privacy policies.

8. International Data Transfers

TEAM4BL LTD is located in Cyprus (European Union).

If personal data is transferred outside the EU/EEA, we ensure appropriate safeguards including:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by the European Commission
  • Secure data transfer protocols

9. Data Retention

We retain personal data only as long as necessary for:

  • Providing the Services
  • Maintaining user accounts
  • Legal and tax compliance
  • Resolving disputes

When data is no longer necessary, it is securely deleted or anonymized.

10. Your Rights (EEA, UK, Switzerland)

Under applicable data protection laws, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Restrict processing
  • Object to processing
  • Withdraw consent
  • Request data portability

You may also lodge a complaint with your national supervisory authority.

For Cyprus:

Office of the Commissioner for Personal Data Protection Republic of Cyprus

11. Marketing Communications

If you subscribe to marketing communications, we may send emails regarding:

  • Product updates
  • Challenges and events
  • Promotions and offers

You may unsubscribe at any time by:

  • Clicking the “unsubscribe” link
  • Contacting us directly

Service-related emails (e.g., account or payment notifications) may still be sent.

12. Push Notifications

With your permission, our mobile application may send push notifications including:

  • Training reminders
  • Challenge updates
  • Community announcements
  • Service notifications

You may disable push notifications at any time through your device settings.

13. Subscriptions & In-App Purchases

Some features of our Services may require paid subscriptions or in-app purchases.

Payments are processed through:

  • Apple App Store
  • Google Play Store
  • Stripe (for web-based payments)
  • Authorized payment providers

When using Stripe, your payment data is processed directly by Stripe Payments Europe Ltd. and is subject to Stripe’s privacy policy.

We do not store full payment card information on our servers.

Subscription management and cancellations are handled through the respective app store platforms.

14. App Tracking Transparency (ATT)

Where required by Apple’s App Tracking Transparency framework, we will request permission before tracking user activity across apps and websites owned by other companies.

Users may deny or withdraw this permission at any time via device settings.

15. Account Deletion

Users may request deletion of their account and associated personal data at any time.

This can be done by:

  • Using the account deletion function inside the app (if available)
  • Contacting us via email

Upon verified request, we will delete or anonymize personal data unless retention is required by law.

16. Children’s Privacy

Our Services are not intended for children under the age of 16.

We do not knowingly collect personal data from minors.

If we become aware that personal data from a child under 16 has been collected without parental consent, we will take steps to delete such information promptly.

17. Security

We implement technical and organizational measures to protect personal data, including:

  • Encryption
  • Secure cloud infrastructure
  • Access control policies
  • Monitoring for unauthorized access

However, no digital system can guarantee absolute security.

18. Health & Fitness Disclaimer

Our Services provide fitness, lifestyle, and wellness guidance only.

The content within the app is not medical advice and should not replace consultation with qualified healthcare professionals.

Users should consult a medical professional before starting any new training or nutrition program.

19. Contact

If you have questions regarding this Privacy Policy or your personal data:

support@team4bl.com

TEAM4BL LTD Georgiou Karaiskaki 11–13 7560 Pervolia Larnaca Cyprus

© 2026 TEAM4BL LTD All rights reserved.

Scroll to Top