Privacy Policy

GetWello ("we", "us", "our") provides a family wellbeing platform. This Privacy Policy explains how we collect, use, and look after your personal data when you use the GetWello website and app.

We act as a data controller for the personal information you give us. If you have any questions about this policy or your data, you can contact us at hello@getwello.co.uk.

We collect the following categories of personal data:

• Account information: your name, email address, and a hashed password.
• Circle information: the name of your Circle, the members you invite, and the roles you assign them.
• Check-in records: the date and time of each check-in submitted by a Check-in Member.
• Visit calendar entries: dates, times, optional notes, and the people involved.
• Preferences: accessibility preferences such as larger text, simplified interface, and notification settings.
• Operational data: audit log entries (which user did what and when), and notification delivery records.
• Technical data: basic information such as your IP address and browser type, used to operate and secure the service.

We use your data to:

• Provide the GetWello service to you and your Circle.
• Send notifications by email and within the app when something relevant happens (a check-in, a missed check-in, a new visit).
• Keep an accurate audit log so families have shared clarity.
• Keep the service secure and prevent abuse.
• Improve the product based on aggregated, anonymous use.

We do not sell your data. We do not use it for advertising. We do not share it with third parties except the operational sub-processors listed below.

We rely on the following lawful bases under UK GDPR:

• Contract: to provide the service you have signed up for.
• Legitimate interests: to keep the service safe and reliable, and to send service-related notifications.
• Consent: for marketing emails (which we will only send if you have opted in).
• Legal obligation: where we have to retain or disclose information by law.

Your data is held in our database in the European Union (Ireland), with our application servers also running in the same region.

We use the following sub-processors:

• Supabase (database, authentication, file storage) hosted in Ireland (eu-west-1).
• Vercel (application hosting and serverless compute) in Dublin (dub1).
• Resend (transactional email delivery).

We keep your data for as long as your account is active. If you delete your account, we delete your personal data within 30 days, except where we are legally required to keep it for longer (for example for tax records).

Under UK GDPR you have the right to:

• Access the personal data we hold about you.
• Ask us to correct inaccurate data.
• Ask us to delete your data.
• Object to or restrict our processing of your data.
• Receive a portable copy of your data.
• Lodge a complaint with the Information Commissioner's Office (ICO).

To exercise any of these rights, email hello@getwello.co.uk.

We use a small number of essential cookies to keep you signed in and to remember your active Circle. We do not use advertising or tracking cookies.

We may update this policy occasionally. If we make material changes we will let you know by email and update the "last updated" date at the top of this page.