How we handle your data.

LILO is operated by [LEGAL_ENTITY], organisation number [ORG_NUMBER], registered at [ADDRESS]. You can reach our privacy team at [CONTACT_EMAIL].

We are based in Norway. The European General Data Protection Regulation (GDPR) applies to LILO through the EEA Agreement, alongside the Norwegian Personal Data Act.

LILO has two kinds of users: the trainers who run their coaching business on the platform, and the clients they coach. We handle data differently in each case, so this policy is split accordingly.

What we collect. Email, name, avatar, timezone, language preference, and role. Your subscription status (active, trial, expired) and customer ID from RevenueCat. Stripe Connect payout details if you sell session packages. Server logs and usage counters used for AI rate limits and abuse prevention.

How we use it. To run your account, deliver the service you signed up for, bill the subscription, send transactional email (verification codes, receipts, critical notices), provide support, and keep the platform secure.

Legal basis. Performance of our contract with you (running the service), our legitimate interest in security and fraud prevention, and legal obligations such as bookkeeping.

Your rights. You can access, correct, export, or delete your data, and object to processing based on legitimate interests. Contact [CONTACT_EMAIL]. You also have the right to lodge a complaint with Datatilsynet, the Norwegian Data Protection Authority.

Your trainer invited you to LILO so they can coach you in one place instead of across spreadsheets and chat apps. Here is what they collect about you and what you can do.

What’s collected about you. Your name, email, phone, goal, the notes your trainer takes about you, where you are in their pipeline, the messages you exchange with them, calendar events, the programs they assign you, and your session bookings and balances. If you use the LILO mobile app, also: weight, sleep, steps, heart rate, body composition, and calorie/nutrition logs.

What you pay through LILO. If you buy session packages from your trainer, your card and billing address are processed directly by Stripe. LILO never stores your card number.

Who decides how this is used. Your trainer is the data controller for the data they store about you in LILO. To exercise your rights — access, rectification, erasure, export, objection — start with your trainer; they can act on the request from inside LILO. If they don’t respond, contact [CONTACT_EMAIL] and we’ll help.

What your trainer agreed to. When trainers sign up they commit to informing clients about how LILO is used and to obtaining any consents required by law, especially before turning on AI features or syncing health data.

Some data we keep regardless of which side of the platform you sit on: server logs, IP addresses captured for authentication and abuse prevention, login events, AI usage counters used to enforce rate limits, and security telemetry. We are the controller for this operational data, and we keep it for as long as it’s useful for security and no longer.

LILO uses Google Gemini to generate coaching insights and suggested routines for trainers. We take privacy here seriously enough that it’s worth its own section.

Clients can opt out of AI features. When a client is opted out, they are excluded entirely from the data sent to Gemini — not anonymised, not included. Trainers manage this through each client’s data-sharing setting.

The legal basis for the anonymised data we do send is our legitimate interest in providing useful coaching tools, balanced against the interests of trainers and clients. If you prefer your data not be processed for AI even after anonymisation, opting out at the source achieves that.

LILO sets only essential cookies: the Supabase authentication session, your theme choice, and your language preference. We do not run analytics, advertising, or cross-site tracking, which is why you don’t see a cookie banner.

The companies that help us run LILO and the data they handle:

We update this list when sub-processors change. If you would like advance notice of material changes, write to [CONTACT_EMAIL].

Primary data storage and authentication run inside the European Union. Some sub-processors (Stripe, RevenueCat, Google Gemini, and Vercel’s global edge) involve transfers outside the EEA. Those transfers are covered by the European Commission’s Standard Contractual Clauses and the supplementary measures the relevant providers publish.

We keep your data for as long as your account is active. When an account is closed, we delete personal data within thirty days, except for records we are required to keep — principally accounting records, retained for the period set by the Norwegian Bookkeeping Act (typically five years).

Cached AI outputs expire automatically after six hours. Server logs are rotated on a rolling window kept short enough for security review and no longer.

LILO is built for adults. We do not knowingly create accounts for anyone under eighteen. Trainers who coach minors are responsible for getting guardian consent before adding the minor to LILO and for limiting the data they store accordingly.

When this policy changes in a way that materially affects you, we will notify you at least thirty days before the change takes effect, by email and through an in-product banner. Smaller clarifications are reflected by updating the date at the top of the page.

Questions, requests, complaints — write to [CONTACT_EMAIL]. We aim to respond within five working days.