Privacy Policy

Last updated: 28 December 2025

Version 1.1

This Privacy Policy explains how LIMBA collects and uses your personal data.

In short:

  • We collect only the data needed to create your wellness profile, generate stretching routines, and track progress.
  • Some information you choose to provide (such as a yes/no medical history indicator) is treated as health data and used only with your explicit consent.
  • We do not provide medical advice and do not store medical records.
  • Payments are handled by trusted third parties; we do not store card details.
  • You control your data and can withdraw consent or request deletion at any time.

For full details, please read the sections below.

1. Who we are

LIMBA is a stretching and mobility app operated by Trill Labs, Limited, based in the United Kingdom.

Trill Labs, Limited is the data controller responsible for the use of your personal data under the UK GDPR and EU GDPR.

Contact us:

Email: support@getlimba.co.uk

2. What data we collect

We collect only the data necessary to provide and improve the LIMBA app.

Account information

  • Display name
  • Email address
  • Age
  • Gender

Wellness and health-related information

  • Medical history status (yes/no only)
  • Wellness preferences, such as:
    • Discomfort frequency
    • Target muscle groups
    • Sedentary time

We do not collect detailed medical histories, diagnoses, medical records, or clinical notes.

App usage data

  • Stretching sessions completed
  • Session frequency
  • Feature usage

Device information

  • App version
  • Operating system
  • Basic device identifiers

Subscription and payment information

  • Subscription status
  • Transaction identifiers

Payments are processed securely by RevenueCat, Apple App Store, or Google Play.

We do not store or have access to your full payment card details.

Support communications

  • Information you provide when contacting support

We do not collect precise location data.

3. How we use your data

How LIMBA works

LIMBA uses your information to support the following flow:

  1. Onboarding – you create an account and provide basic information
  2. Wellness profile – you choose preferences such as target muscle groups, sedentary time, and (optionally) a yes/no medical history indicator
  3. Routine generation – the app generates stretching routines based on your selected preferences
  4. Tracking – your completed sessions and usage are recorded to help you track progress over time

All personalisation is based on self-reported information and general wellness logic.

We also use your data to:

  • Provide core app features
  • Personalise stretching routines
  • Track progress and activity
  • Improve app performance and content
  • Understand how the app is used
  • Respond to support requests
  • Send important service-related messages (such as account or subscription updates)
  • Send reminders and notifications you choose to enable

4. Legal basis for using your data

Under UK/EU GDPR, we rely on the following legal bases:

Article 6 (general personal data)

  • Contract – to provide the app and subscription services
  • Legitimate interests – to improve the app and communicate with users
  • Consent – for optional marketing communications and reminders
  • Legal obligation – where required by law

Article 9 (health-related data)

We process limited health-related information only with your explicit consent, for the purpose of personalising your experience within the app.

You may withdraw this consent at any time through the app or by contacting us.

5. Health data

Some of the information you choose to provide (such as a yes/no indication of medical history) is considered special category health data under GDPR.

We process this data:

  • Only with your explicit consent
  • Only for personalisation within the app
  • Only at a high-level and non-clinical level

We do not:

  • Provide medical advice, diagnosis, or treatment
  • Use health data for advertising or profiling
  • Share health data with third parties for marketing

LIMBA is a wellness app and is not a medical device or healthcare service.

You should consult a qualified healthcare professional before starting any new physical activity program.

6. Reminders and notifications

If you enable reminders, we may send notifications such as:

  • Stretching reminders
  • Routine prompts
  • Progress-related notifications

You can manage or disable reminders at any time through your device settings or within the app.

7. Analytics and third-party services

We use trusted third-party services to operate and improve the app, including:

  • RevenueCat (payment processing)
  • Apple App Store and Google Play (subscriptions)
  • Analytics providers
  • Cloud hosting services
  • Customer support tools

These providers process data only on our instructions and are required to keep it secure.

We do not sell your personal data.

8. Media and content delivery

LIMBA delivers videos, images, and other media content using secure, time-limited access methods (such as signed URLs).

Media assets provided through the app:

  • Are not personalised to individual users
  • Do not embed personal data
  • Are used solely to deliver app content securely

Access to media content does not expose your personal information to other users or third parties.

9. International data transfers

Some service providers may process data outside the UK or EU.

When this occurs, we utilize appropriate safeguards approved under the GDPR, such as standard contractual clauses.

10. Users outside the UK or EU

If you access the LIMBA app from outside the United Kingdom or European Union, your personal data will still be processed in accordance with this Privacy Policy and UK GDPR standards.

Depending on your location, you may have additional rights under local data protection laws. We will respect those rights where they apply.

By using the app, you acknowledge that your personal data may be transferred to and processed in the UK or other countries where our service providers operate, with appropriate safeguards in place.

11. How long we keep your data

We keep personal data only for as long as necessary to:

  • Provide the app and maintain your account
  • Meet legal or accounting obligations
  • Resolve disputes

Health-related data is retained only while your account is active or until you withdraw consent or request deletion.

12. Your rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request the deletion of your data
  • Restrict or object to certain processing
  • Withdraw consent at any time (including for health data)
  • Request a copy of your data in a portable format

To exercise your rights, contact support@getlimba.com.

13. Consent recording and versioning

When you create an account or continue using LIMBA after policy updates, we record your acceptance of this Privacy Policy and the Terms of Use.

For audit and compliance purposes, we maintain records of:

  • The policy name (Privacy Policy or Terms of Use)
  • The version number
  • The date and time of acceptance

These records are used solely to demonstrate compliance with legal and contractual requirements.

14. Complaints

If you have concerns about how we handle your data, please contact us first.

You also have the right to complain to the Information Commissioner's Office (ICO) in the UK.

15. Children

LIMBA is not intended for children under 16, and we do not knowingly collect personal data from children.

16. Data Protection Impact Assessment (DPIA)

Because LIMBA processes limited health-related information, we have carried out a Data Protection Impact Assessment (DPIA) to assess potential risks to users and identify appropriate safeguards. This assessment confirms that data collection is minimal, consent-based, proportionate, and subject to appropriate security and user controls.

17. Changes to this policy

We may update this Privacy Policy from time to time.

If changes are significant, we will notify you through the app.