Acuiti Logoacuiti
Login

Acuiti Health Privacy Policy

Your privacy is important to us. It is Acuiti Health‘s policy to respect our users' privacy and comply with any applicable law and regulation regarding any personal information we may collect, including across our website, acuiti.ca, and other sites we own and operate.

Personal information is any information which can be used to identify an individual. This includes information about a person (such as name, address, and date of birth), their devices, payment details, and information about how they use a website or online service.

In the event our site contains links to third-party sites and services, please be aware that those sites and services have their own privacy policies. After following a link to any third-party content, you should read their posted privacy policy information about how they collect and use personal information. This Privacy Policy does not apply to any of your activities after you leave our site.

This policy is effective as of February 17, 2026

Last updated: February 17, 2026

Situations in which we collect or process personal data

There are different situations in which we might obtain personal information:

  1. You contact our support staff through email, phone, forms on our website, or any other means.
  2. You are a business client of Acuiti Health, such as a health or exercise professional, and you use our website to provide services to your own clients.
  3. You use our website to support your exercise program ("end users")

For each of these situations, this privacy policy describes:

  • What data we store or process
  • How we acquire your data
  • How we use your data
  • How we store your data
  • What are your data protection rights
  • How you can contact us

Types of information we collect

Information we collect falls into one of two categories: “voluntarily provided” information and “automatically collected” information.

  1. “Voluntarily provided” information refers to any information you knowingly and actively provide us when using or participating in any of our services and promotions.
  2. “Automatically collected” information refers to any information automatically sent by your devices in the course of accessing our products and services.

Log Data

When you visit our website, we may automatically log the standard data provided by your web browser. This may include your device’s Internet Protocol (IP) address, your browser type and version, the pages you visit, the time and date of your visit, the time spent on each page, and other details about your visit.

Additionally, if you encounter certain errors while using the site, we may automatically collect data about the error and the circumstances surrounding its occurrence. This data may include technical details about your device, what you were trying to do when the error happened, and other technical information relating to the problem. You may or may not receive notice of such errors, even in the moment they occur, that they have occurred, or what the nature of the error is.

Please be aware that while this information may not be personally identifying by itself, it may be possible to combine it with other data to personally identify individual persons.

Personal Information we collect

Information we collect if you contact us:

We may collect personal information about you if and when you contact us by email, phone, social media, or using a form on our website. The types of information could include one or more of the following:

  • your name
  • the company you represent
  • your email address
  • your phone number
  • your country
  • any text that you send us in a message, email, or online form
  • details of your request or question

Information we collect about our business clients

If you are an exercise or health professional using our website or services to provide services to your own clients, we may collect personal information including:

  • your name
  • the company you represent
  • your email address
  • your phone number
  • your country
  • any text that you send us in a message, email, or online form
  • payment information (e.g. credit card, bank account details, PayPal account details)
  • the names of teams that you create within your organization
  • your language preferences

Our business clients may create multiple user accounts within their organization, either by contacting our customer support or using a user interface on our website. If and when you invite a member of your organization to create a profile on our website, we may process and store personal information about them, in order to provide services requested by you. You are the primary collector and controller of this data, and we process it on your behalf as a service provider to you. This information is voluntarily provided, and could include:

  • the names of members in your organization
  • the email addresses of members in your organization
  • the role of members in your organization
  • the teams within your organization that members belong to

Information about end users of our website

End users of our website are people who use it to support their exercise programs. As an end user, you receive access to our website through your exercise or health professional. Your exercise or health professional is the primary collector of your information, and we store and process your data on their behalf as a service provider.

Information we process or store about you as an end user may include:

  • your name
  • your email address
  • the organization that your exercise or health professional belongs to
  • the name and email address of your exercise or health professional
  • your exercise program
  • information about your progress, performance, and activity related to your exercise program
  • your language preferences
  • your time zone

We may process or store this information if and when you or your exercise/health professional enter it into our website. We may automatically obtain your language preferences and/or timezone from your browser when you use our website, to help us communicate with you at the appropriate time and in the appropriate language. You can modify this information in your user profile settings at any time.

Our website can use a camera to track your movements while you perform exercises. If you use this feature, we automatically process and store information to help you and your exercise/health professional track your exercise activity and progress. This information may include:

  • When you performed exercises
  • What exercises you perfomed
  • How long you exercised
  • How many movements you completed
  • If you performed the movements correctly

This information is only obtained when you or your exercise/professional click a button to begin an exercise program. Images from the camera connected to your device are processed immediately to extract the information described above. The camera images never leave users' devices and are not transmitted over the internet. The camera images are not stored in any way after this immediate processing.

SMS Messaging

You may choose to subscribe to SMS notifications by submitting your phone number on our website. Specific information about the information we collect to provide SMS notifications and how we use it can be found here: SMS Privacy Policy

If you do not choose to receive SMS notifications through our website, then the SMS Privacy Policy does not apply to you.

Legitimate Reasons for Processing Personal Information

We only collect and use personal information when we have a legitimate reason for doing so. In which instance, we only collect personal information that is reasonably necessary to provide our services to you.

Use of Information

We may collect, hold, use, and disclose information for the following purposes, and personal information will not be further processed in a manner that is incompatible with these purposes:

  • To provide you with our platform’s core features and services
  • To allow our business customers to provide our platform's core features and services to their own clients
  • To enable you to customise or personalise your experience of our website
  • To contact and communicate with you in order to provide our services or customer support
  • For analytics to operate and improve our website and associated applications

We may combine voluntarily provided and automatically collected personal information with general information or research data we receive from other trusted sources. For example, Our marketing and market research activities may uncover data and insights, which we may combine with information about how visitors use our site, to improve our site and your experience on it.

Security of Your Personal Information

When we collect and process personal information, and while we retain this information, we will protect it within commercially acceptable means to prevent loss and theft, as well as unauthorised access, disclosure, copying, use or modification.

Although we will do our best to protect the personal information you provide to us, we advise that no method of electronic transmission or storage is 100% secure and no one can guarantee absolute data security.

You are responsible for selecting any password and its overall security strength, ensuring the security of your own information within the bounds of our services. For example, ensuring any passwords associated with accessing your personal information and accounts are secure and confidential.

How Long We Keep Your Personal Information

We keep your personal information only for as long as we need to. This time period may depend on what we are using your information for, in accordance with this privacy policy. For example, if you have provided us with personal information as part of creating an account with us, we may retain this information for the duration your account exists on our system. If your personal information is no longer required for this purpose, we will delete it or make it anonymous by removing all details that identify you.

However, if necessary, we may retain your personal information for our compliance with a legal, accounting, or reporting obligation or for archiving purposes in the public interest, scientific, or historical research purposes or statistical purposes.

Disclosure of Personal Information to Third Parties

We may disclose personal information to:

  • third-party service providers for the purpose of enabling them to provide their services
  • our employees, contractors, and/or related entities
  • our existing or potential agents or business partners

Third parties we currently use include:

  • Supabase Inc. (They provide data storage and data processing related to our users' personal information, on our behalf)
  • Vercel Inc. (They host and deliver our website, on our behalf)
  • Twilio Inc. (They send service-related SMS notifications to our users, on our behalf)
  • Plus Five Five, Inc. (They send service-related emails to our users, on our behalf)

We enter contractual agreements with all of our third-party service providers that prohibit them from selling, sharing, or disclosing personal information that they process on our behalf, for any reason other than for providing their services, and that require them to protect this personal information with reasonable security measures.

International Transfers of Personal Information

The personal information we collect is stored and/or processed in Canada, or other countries where we or our partners, affiliates, and third-party providers maintain facilities.

The countries to which we store, process, or transfer your personal information may not have the same data protection laws as the country in which you initially provided the information. If we transfer your personal information to third parties in other countries: (i) we will perform those transfers in accordance with the requirements of applicable law; and (ii) we will protect the transferred personal information in accordance with this privacy policy.

Your Rights and Controlling Your Personal Information

Your choice: By providing personal information to us, you understand we will collect, hold, use, and disclose your personal information in accordance with this privacy policy. You do not have to provide personal information to us, however, if you do not, it may affect your use of our website or the products and/or services offered on or through it.

Information from third parties: If we receive personal information about you from a third party, we will protect it as set out in this privacy policy. If you are a third party providing personal information about somebody else, you represent and warrant that you have such person’s consent to provide the personal information to us.

Marketing permission: If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by contacting us using the details below.

Access: You may request details of the personal information that we hold about you.

Correction: If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant, or misleading, please contact us using the details provided in this privacy policy. We will take reasonable steps to correct any information found to be inaccurate, incomplete, misleading, or out of date.

Non-discrimination: We will not discriminate against you for exercising any of your rights over your personal information. Unless your personal information is required to provide you with a particular service or offer (for example providing user support), we will not deny you goods or services and/or charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties, or provide you with a different level or quality of goods or services.

Downloading of Personal Information: We provide a means for you to download the personal information you have shared through our site. Please contact us for more information.

Notification of data breaches: We will comply with laws applicable to us in respect of any data breach. In the event of a breach of security involving your personal information, we will assess whether the breach creates a real risk of significant harm to you. Where such a risk exists, we will notify you and the Office of the Privacy Commissioner of Canada as soon as feasible, in accordance with PIPEDA's breach of security safeguards regulations. We maintain a record of all security breaches, regardless of whether notification is required. If you have reason to believe your personal information held by us has been compromised, please contact us immediately using the details in the Contact Us section.

Complaints: If you believe that we have breached a relevant data protection law and wish to make a complaint, please contact us using the details below and provide us with full details of the alleged breach. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take to deal with your complaint. You also have the right to contact a regulatory body or data protection authority in relation to your complaint.

Unsubscribe: To unsubscribe from our email database or opt-out of communications (including marketing communications), please contact us using the details provided in this privacy policy, or opt-out using the opt-out facilities provided in the communication. We may need to request specific information from you to help us confirm your identity.

Business Transfers If we or our assets are acquired, or in the unlikely event that we go out of business or enter bankruptcy, we would include data, including your personal information, among the assets transferred to any parties who acquire us. You acknowledge that such transfers may occur, and that any parties who acquire us may, to the extent permitted by applicable law, continue to use your personal information according to this policy, which they will be required to assume as it is the basis for any ownership or use rights we have over such information.

Limits of Our Policy Our website may link to external sites that are not operated by us. Please be aware that we have no control over the content and policies of those sites, and cannot accept responsibility or liability for their respective privacy practices.

Changes to This Policy At our discretion, we may change our privacy policy to reflect updates to our business processes, current acceptable practices, or legislative or regulatory changes. If we decide to change this privacy policy, we will post the changes here at the same link by which you are accessing this privacy policy.

If the changes are significant, or if required by applicable law, we will contact you (based on your selected preferences for communications from us) and all our registered users with the new details and links to the updated or changed policy.

If required by law, we will get your permission or give you the opportunity to opt in to or opt out of, as applicable, any new uses of your personal information.

Additional Disclosures for Personal Information Protection and Electronic Documents Act (PIPEDA) Compliance (Canada)

Customer Data Rights

PIPEDA grants consumers the right to:

  • Access the personal information organizations hold about them;
  • Correct any inaccurate or outdated personal information the organization hold about them (or, if this is not possible, delete the inaccurate personal information)
  • Withdraw consent for any activities for which they have consented

Right to Withdraw Consent

Where you give us consent to collect and use your personal information for a specific purpose. Subject to some restrictions, you can, at any time, refuse to consent, or continue to consent to the collection, use or disclosure of their personal information by notifying us using the email address below in the ‘Contact Us’ section. Withdrawal of consent may impact our ability to provide or continue to provide services.

Customers cannot refuse collection, use and disclosure of their personal information if such information is required to:

  • be collected, used or disclosed as required by any law;
  • fulfill the terms of any contractual agreement; and
  • be collected, used or disclosed as required by any regulators including self regulatory organizations

While you may request that we delete your contact details at any time, we cannot recall any email we have already sent. If you have any further enquiries about how to withdraw your consent, please feel free to enquire using the details provided in the Contact Us section of this privacy policy.

Right of Access under PIPEDA

PIPEDA gives you a general right to access the PII held by businesses subject to this law. You may request to access any Personal information we have collected from you through the contact information provided in the Contact Us section of this privacy policy. We will take all necessary measures to fulfill your request in 30 days from receipt, otherwise we must inform you of our inability to do so before the 30-day timeframe if:

  • meeting the time limit would unreasonably interfere with our business activities; or
  • the time required to undertake consultations necessary to respond to the request would make it impractical to meet the time limit. We may also extend the time limit for the length of time required to convert the personal information into an alternative format. In these circumstances, we will advise you of the delay within the first 30 days and explain the reason for it.
  • a large number of requests makes it impractical to respond in time. In these cases, we may respond to access requests within a maximum of 60 days.

If you are unsatisfied with our response to your access request, or if we deny your request, you have the right to file a complaint with the Office of the Privacy Commissioner of Canada (OPC). Contact details for the OPC are provided in the Enquiries, Reports and Escalation section of this policy.

Right of rectification under PIPEDA

You may request a correction to any factual errors or omissions within your PII. We would ask you to provide some evidence to support your claim. Under PIPEDA, an organization must amend the information, as required, if you successfully demonstrate that it’s incomplete or inaccurate.

You may contact us at any time, using the information provided in the Contact Us section of this privacy policy if you believe your PII on our systems is incorrect or incomplete.

If we cannot agree on changing the information, you have the right to have your concerns recorded with the Office of the Privacy Commissioner of Canada.

Compliance with PIPEDA’s Ten Principles of Privacy

This privacy policy aims to complies with the PIPEDA’s requirements and ten principles of privacy, which are as follows:

  • Accountability: Acuiti Health is responsible for the PII under its control and designates one or more persons to ensure organizational accountability for compliance with the ten principles of privacy under PIPEDA, whose details are included below. All personnel are accountable for the protection of customers’ personal information.
  • Identifying purposes: Acuiti Health identifies the purposes for which personal information is collected at or before the time the information is collected.
  • Consent: Consent is required for Acuiti Health’s collection, use or disclosure of personal information, except where required or permitted by PIPEDA or other law. In addition, when customers access a product or service offered by us, consent is deemed to be granted. Express consent may be obtained verbally, in writing or through electronic means. Alternatively, consent may be implied through the actions of customers or continued use of a product or service following Acuiti Health’s notification of changes.
  • Limiting collection: Personal information collected will be limited to that which is necessary for the purposes identified by Acuiti Health.
  • Limiting use, disclosure and retention. We will not use or disclose personal information for purposes other than those for which the information was collected, except with your consent or as required by law. We will retain personal information only for as long as is necessary to fulfill the purposes for collecting such information and compliance with any legal requirements.
  • Accuracy: Personal information will be maintained by Acuiti Health in an accurate, complete and up-to-date format as is necessary for the purpose(s) for which the personal information was collected.
  • Safeguards: We will protect personal information with security safeguards appropriate to the sensitivity of such information.
  • Openness: We will make our policies and practices relating to the collection and management of personal information readily available upon request, including our brochures or other information that explain our policies, standards, or codes.
  • Customer access: We will inform customers of the existence, use and disclosure of their personal information and will provide access to their personal information, subject to any legal restrictions. We may require written requests for access to personal information and in most cases, will respond within 30 days of receipt of such requests. Customers may verify the accuracy and completeness of their personal information, and may request the personal information be corrected or updated, if appropriate.
  • Challenging compliance: Customers are welcome to direct any questions or inquiries concerning our compliance with this privacy policy and PIPEDA requirements using the contact information provided in the Contact Us section of this privacy policy.

Enquiries, Reports and Escalation

To enquire about Acuiti Health's privacy policy, or to report violations of user privacy, you may contact us using the details in the Contact us section of this privacy policy.

If we fail to resolve your concern to your satisfaction, you may also contact the Office of the Privacy Commissioner of Canada:

30 Victoria Street

Gatineau, QC K1A 1H3

Toll Free: 1.800.282.1376

www.priv.gc.ca

Contact Us

For any questions or concerns regarding your privacy, you may contact us using the following details:

Dimitrios Palidis, Director & Privacy Officer

dimitri@acuiti.ca