WeMove
WeMoveFormerly Reaction Club
Back to Home

Privacy Policy

Last Updated: January 2025

We at Reaction Wellness Ltd., operating as WeMove ("WeMove", "we", or "us") respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our wellness platform and services.

Key Points

  • You are not required by law to provide us with any personal data. Sharing is entirely voluntary.
  • Our services are intended for users over the age of 18.
  • We do not sell, trade, or rent your personal data to third parties.
  • You may request to review, amend, erase, or restrict the processing of your personal data at any time.
  • Health and fitness data is encrypted and stored securely with industry-standard protections.

1. What Data Do We Collect?

Personal Data

"Personal Data" means any information which identifies or can be used to identify a natural person. This includes:

Account Information: When you register for WeMove, we collect your full name, email address, phone number, and company/organization details if applicable.

Health and Fitness Data: To provide our wellness services, we may collect:

  • Step counts and activity data from connected devices (Google Fit, Apple Health, Fitbit, Garmin, etc.)
  • Weight and body composition data (if you choose to share)
  • Heart rate, stress levels, and sleep data from MoveBand or connected wearables
  • Activity goals and wellness preferences

Challenge Participation Data: Information about your participation in step challenges, team assignments, leaderboard rankings, and rewards earned.

Payment Information: For premium subscriptions, we collect billing details through our secure payment processors (Stripe, Apple Pay, Google Pay). We do not store complete credit card numbers.

Non-Personal Data

We automatically collect technical data about your use of the platform:

  • Device information (type, operating system, browser)
  • IP address and general location data
  • App usage patterns and feature interactions
  • Performance and error logs for troubleshooting

2. How Do We Use Your Data?

Service Delivery

  • Operate and maintain the WeMove platform and mobile applications
  • Track your wellness progress and display personalized dashboards
  • Calculate challenge rankings and leaderboard positions
  • Process rewards and gift card redemptions
  • Provide AI-powered coaching through Mo, our wellness assistant

Platform Improvement

  • Analyze usage patterns to improve features and user experience
  • Develop new wellness programs and challenge types
  • Train and improve our AI Fair Play anti-cheat system
  • Fix bugs and optimize performance

Communications

  • Send challenge updates, progress notifications, and achievement alerts
  • Provide customer support and respond to inquiries
  • Send important account and security notices
  • Marketing communications (only with your explicit consent)

3. Who Do We Share Data With?

We do not sell, trade, or rent your personal data. We may share data only in these limited circumstances:

Within Your Organization

If you participate in corporate challenges, your employer or HR administrator may see:

  • Your name and team assignment
  • Challenge participation status and leaderboard ranking
  • Aggregate wellness metrics (never individual health data)

Note: Detailed health data like heart rate, sleep, or stress levels is never shared with employers.

Service Providers

We work with trusted third-party providers who help us operate the platform:

  • Amazon Web Services (AWS) – Cloud infrastructure and data storage
  • Google Analytics – Website analytics and performance monitoring
  • Stripe – Payment processing
  • Mixpanel – Product analytics
  • BugSnag – Error tracking and debugging

All service providers are contractually bound to protect your data and use it only for specified purposes.

Legal Requirements

We may disclose data when required by law, court order, or to protect the rights, property, or safety of WeMove, our users, or others.

4. How Do We Protect Your Data?

We implement industry-standard security measures to protect your information:

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Strict role-based access to personal data
  • Infrastructure: Secure cloud hosting with SOC 2 certified providers
  • Monitoring: 24/7 security monitoring and intrusion detection
  • Regular Audits: Periodic security assessments and penetration testing

5. Your Rights

You have the following rights regarding your personal data:

Access: Request a copy of all personal data we hold about you.

Correction: Update or correct inaccurate information in your account.

Deletion: Request deletion of your account and associated data. You can delete your account directly in the app settings or by contacting us.

Portability: Request your data in a portable, machine-readable format.

Restriction: Request that we limit how we use your data.

Objection: Object to certain types of data processing.

Withdraw Consent: If you've connected health services, you can disconnect them at any time through the app settings.

To exercise any of these rights, contact our Data Protection Officer at DPO@reaction-club.com

6. Cookies and Tracking

Our website and app use cookies and similar technologies to:

  • Remember your login session and preferences
  • Analyze how our platform is used
  • Improve performance and user experience

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect platform functionality.

7. Data Retention

We retain your data for as long as necessary to provide our services and fulfill legal obligations:

  • Active Accounts: Data is retained while your account is active
  • Deleted Accounts: Most data is deleted within 30 days; some may be retained for up to 90 days for backup recovery
  • Legal Requirements: Financial records may be retained for up to 7 years for tax and legal compliance

8. Children's Privacy

WeMove is intended for users aged 18 and older. We do not knowingly collect personal data from anyone under 18. If you believe a child has provided us with personal data, please contact us immediately at DPO@reaction-club.com

9. International Data Transfers

Our servers are located in the United States and European Union (France). If you access our services from outside these regions, your data may be transferred internationally. We ensure appropriate safeguards are in place for such transfers, including:

  • Standard Contractual Clauses approved by the European Commission
  • Compliance with local data protection requirements

10. Third-Party Links

Our platform may contain links to third-party websites or services. We are not responsible for the privacy practices of these external sites. Please review their privacy policies before sharing any personal information.

11. GDPR Compliance

For users in the European Economic Area (EEA), we process personal data in accordance with the General Data Protection Regulation (GDPR). Our legal bases for processing include:

  • Contract Performance: Processing necessary to provide our services
  • Legitimate Interests: Analytics, security, and platform improvement
  • Consent: Marketing communications and optional data sharing
  • Legal Obligations: Compliance with applicable laws

12. Policy Updates

We may update this privacy policy periodically. Significant changes will be communicated through the app, email, or our website. The "Last Updated" date at the top indicates when the policy was last revised.

13. Contact Us

For privacy-related questions or to exercise your rights, please contact:

Data Protection Officer
Reaction Wellness Ltd. (WeMove)
Email: DPO@reaction-club.com

We aim to respond to all requests within 30 days.