Privacy Policy

Updated: 11 June 2025

Ahlya Limited (“Ahlya”, “we”, “our”, or “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect the information you provide when using the Ahlya mobile application (the “App”).

We are a UK private limited company and comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and global privacy laws including the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), and applicable international standards.

1. Information We Collect

We collect the following types of information when you use the Ahlya App:

  • Profile Information: Name, date of birth, and email address.

  • Menstrual & Cycle Data: Date of last period, typical cycle length, period duration, and manual adjustments to predictions.

  • Symptom Logs: Physical, emotional, and lifestyle tags (e.g., mood, stress, alcohol intake).

  • Calendar Data: Cycle phases, current cycle day, next period prediction.

  • Health Metrics: Integrated via Apple Health or Google Fit APIs (e.g., steps, sleep, temperature, heart rate), with your permission.

  • Mental Health Inputs: Gratitude entries, journaling, audio or meditation activities.

  • Usage Data: Frequency of use, feature engagement, interaction patterns.

  • Partner Sharing Data: Information you choose to share (e.g., current cycle phase or insights), sent through a separate partner-facing interface, only with your explicit consent.

When you visit our website (www.ahlya.com), we may collect your name and email address if you sign up for a waitlist, newsletter, or contact us. We may also use cookies or similar technologies to understand how visitors interact with our site. Non-essential cookies are used only with your consent. You can manage your preferences at any time. You can read more about this in our Cookie Policy.

2. How We Use Your Information

We use your personal data to:

  • Deliver and personalize core app features, including period tracking, symptom logging, and wellness insights.

  • Tailor physical, mental, and lifestyle recommendations to your cycle phase.

  • Synchronize health metrics via Apple Health or Google Fit, with your consent.

  • Provide in-app sharing functionality to communicate select insights to a partner of your choice.

  • Improve app performance and develop new features, using de-identified and aggregated data.

  • Send you updates or content (e.g., reminders or new features), with your consent.

If you visit our website, we use your information to respond to enquiries, deliver email updates (if opted-in), and analyse visitor traffic (on an aggregated, anonymised basis).

3. Automated Processing and AI

We use automated systems and artificial intelligence (AI) to analyze your inputs (e.g., symptoms, phase, lifestyle data) and generate tailored insights. These insights are intended to support your well-being by offering informational suggestions across categories such as mood, productivity, nutrition, and social engagement.

No automated decision-making is used to produce legally or similarly significant effects.

4. Legal Basis for Processing (UK/EU)

We process your data under the following legal bases:

  • Consent: For collection and processing of sensitive personal data (e.g., health information, Apple/Google integrations).

  • Performance of a Contract: To provide you with features and services you request by registering for and using the App.

  • Legitimate Interests: For product improvement, analytics, and debugging, provided your rights are not overridden.

5. Sharing Your Data

We do not sell or share your data with third parties for advertising.

We may share your data with:

  • Service providers under strict confidentiality and security obligations.

  • Apple HealthKit or Google Fit, only if you authorize sharing.

  • Your designated partner, via a dedicated partner interface, and only with your express permission. You can withdraw access at any time.

6. International Data Transfers

If your data is transferred outside the UK or European Economic Area (EEA), we use appropriate safeguards (e.g., Standard Contractual Clauses) to ensure it remains protected.

7. Data Retention

We retain your data only as long as needed to provide our services or comply with legal obligations. You can request deletion of your account and associated data at any time.

8. Your Rights (UK & EU Users)

You have the right to:

  • Access the personal data we hold

  • Request correction of inaccurate data

  • Request deletion of your data

  • Object to or restrict processing

  • Withdraw your consent at any time

  • Request data portability

To exercise your rights, contact us at lynda@ahlya.com.

9. Your Rights (U.S. Users – California & Other States)

If you reside in California or certain U.S. states, you may have the right to:

  • Know what personal data we collect and how we use it

  • Access and receive a copy of your personal data

  • Request deletion of your data

  • Opt out of the sale or sharing of data (Ahlya does not sell your data)

  • Designate an authorized agent to make requests on your behalf

To exercise these rights, contact us at lynda@ahlya.com. We will not discriminate against you for exercising your privacy rights.

10. Data Security

We use industry-standard safeguards including encryption, secure servers, and access controls to protect your data from unauthorized access, disclosure, or loss.

11. Children’s Privacy

The Ahlya App is not intended for individuals under the age of 16. We do not knowingly collect personal information from children. If we learn that a child has provided us with data, we will delete it promptly.

12. Not Medical Advice

The Ahlya App is designed for general well-being and informational purposes only. It is not a medical device, and the insights provided do not constitute medical advice, diagnosis, or treatment. Always consult a qualified healthcare professional with any health-related concerns.

Ahlya is not a healthcare provider, and is not subject to HIPAA (Health Insurance Portability and Accountability Act), as we do not provide care or process health information on behalf of medical entities.

13. Changes to This Policy

We may update this Privacy Policy to reflect changes to our practices or the law. We’ll notify you via the app or email and update the “Effective Date” at the top of this page.

14. Contact Us

If you have any questions or requests regarding this policy, please contact Ahlya Limited at lynda@ahlya.com.