Back to home
Legal

Privacy Policy

Last updated : March 2026

Wellmum is committed to protecting your personal data. This policy explains what information we collect, why, and how we protect it.

Data controller

Wellmum SAS, registered in France, is responsible for processing your personal data. Our head office is located in Paris, France.

Data collected

We collect the following categories of personal data:

  • Identity: first name, last name, email address, phone number
  • Health: delivery date, type of birth, complications, medical clearance, sleep quality, stress level
  • Measurements: weight, height, progress photos
  • Fitness preferences: goals, equipment, session duration, frequency
  • Nutrition: dietary preferences, calorie goal, feeding type
  • Usage data: in-app activity, training history, badges earned

Use of your data

Your data is used for the following purposes:

  • Provide personalized postpartum training programs tailored to your health profile
  • Track your progress (weight, photos, sessions) and provide analytics
  • Send relevant notifications (reminders, achievements, appointments)
  • Enable social features (community, messaging) when you activate them
  • Improve our services through anonymized usage analytics

Legal basis

We process your data on the basis of your explicit consent (given at sign-up), the performance of our contract with you (provision of the Wellmum service), and our legitimate interest in improving the application.

Health data is processed under Article 9(2)(a) of the GDPR with your explicit consent. You may withdraw this consent at any time.

Data sharing

We never sell your personal data. We may share it with:

  • Hosting providers (servers located in the EU) for the application infrastructure
  • Payment processors (Stripe) for subscription management — we never store your banking details
  • Healthcare professionals you book through the application, only with your explicit consent

Retention period

Your personal data is kept for as long as your account is active. When you request account deletion, your data is anonymized after a 30-day grace period.

Anonymized usage statistics may be retained indefinitely for service improvement purposes.

Security

We implement security measures in line with industry standards to protect your data:

  • End-to-end encryption for data in transit (TLS/HTTPS)
  • Encrypted storage for sensitive data (passwords, tokens)
  • Regular security audits and access controls

Your rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access — request a copy of your data
  • Right to rectification — correct inaccurate data
  • Right to erasure — delete your account and all associated data
  • Right to portability — receive your data in a structured format
  • Right to object — object to certain processing activities

Contact us

For any question regarding this privacy policy or to exercise your rights, contact us at:

privacy@wellmum.app