Version February 2026 (Updated to include AI-Powered Features)
Beoflow is an online health and fitness platform that centralizes third-party biomonitoring services and devices. It does this via the website app.beoflow.com and the Beoflow mobile application.
To provide its services, Beoflow collects and analyzes specific user data as described in this Privacy Policy. Beoflow also incorporates AI-Powered Features as a core component of the Service; the collection and processing of data in connection with those features is described in this Policy.
We recommend that you read this policy carefully before using Beoflow services and check this policy regularly for changes and amendments. If you have any questions about this Privacy Policy, please feel free to contact us at [email protected].
By registering with Beoflow and using Beoflow's services, you agree to the collection, processing, and use of your personal data as set out in this Privacy Policy. Please be aware that users may withdraw consent; however, non-acceptance of this policy or withdrawal of consent may result in you being unable to use the Service.
You directly provide Beoflow with most of the data we collect. We collect and process data when you:
Personal identification data such as, but not limited to, the user's name, email address, telephone number, and demographic information, including age, gender, and country of origin. Please note that a record of any updates or changes made to this data will be retained. For further information relating to how this data is processed please see Section 5.
Personal health data is collected from third-party peripheral services, such as, but not limited to, heart rate meters, sleep trackers, wearables and other sports devices. This includes health and fitness data collected by supported biomonitors, such as heart rate, respiratory rate, heart rate variability, sleep duration and quality, muscle pain, cadence, power, distance, GPS location and speed. CHI also includes any data provided through the Service's forms or automated interactions. For further information relating to how this data is processed please see Section 6.
Information our servers and analytics software automatically collect when the user accesses the Platform, such as your IP address, browser type, operating system, device information, access times, session data, and usage patterns within the Service. This data is collected for platform analytics, maintenance, and improvement of the Service. The lawful basis for this processing is Beoflow's legitimate interest in maintaining, securing, and improving the Platform (GDPR Art. 6(1)(f)). Analytics data is not shared with third parties.
Financial information related to the user's payment method (e.g., valid credit card number, card brand, expiration date, billing address) is voluntarily provided by the user upon account subscription. All financial information is stored and processed by our online payment provider, Stripe. You are encouraged to review their privacy policy and contact them directly for responses to payment-related questions.
Device information about the user's mobile device and chosen biotracker integration, including device ID, model, manufacturer, and information about the location of your device.
Information from third parties, such as personal information or network friends if you connect your account to the third party and grant the site permission to access this information.
Personal and other information you may provide when entering contests or giveaways and/or responding to surveys.
In compliance with legal obligations, we are mandated to maintain a comprehensive record of all instances wherein users grant their consent to our Privacy Policy, cookies, Terms of Service, agent access, and biotracker integration.
AI Interaction Data refers to data generated through your use of AI-Powered Features within the Service. This includes any inputs you submit to AI-Powered Features, as well as any outputs generated by AI-Powered Features in response — such as training programmes, recommendations, insights, and chat responses. For further information on how this data is used, please see Section 6.
Beoflow gathers the data mentioned in Section 3 with the aim of enhancing and delivering our highly personalized service. This data includes Personal Information ("PI") and Consumer Health Data ("CHI"), which are essential for us to provide our services through both the website and the app, serving the purposes outlined in Sections 5 and 6.
Acquiring personal information pertaining to your profile allows us to deliver a seamless, productive, and tailored experience. Specifically, we will utilize the data collected about you through the site or service to:
The use of our Service and associated products is dependent on collecting your Consumer Health Data (CHI) through integrations with third-party peripherals, services, and software. As part of the Service, you have the option to authorize us to access your CHI from third-party sources through an informed authentication process to provide Beoflow with your health and fitness data. This data will be used for the following purposes:
Beoflow uses artificial intelligence as a core component of the Service. AI-Powered Features process your data to deliver personalised health and fitness outputs, including training programmes, insights, recommendations, and interactive chat responses.
AI-Powered Features may process your CHI, PI, and AI Interaction Data as defined in Section 3 of this Policy. This includes data you submit directly, data synced from third-party integrations, and data generated through your use of the Service over time. Previous interactions with AI-Powered Features may be used to inform and personalise subsequent responses and recommendations.
Data is processed by AI-Powered Features to deliver the core functionality of the Service.
The lawful basis for this processing is the performance of the contract between you and Beoflow. Health and fitness data is classified as special category data under the GDPR, which requires a separate lawful basis beyond the standard contractual relationship. For this reason, during onboarding you are asked to provide explicit consent specifically for the processing of your health data by AI-Powered Features. This consent is separate from and in addition to your acceptance of the Terms and Conditions and this Privacy Policy. Without this consent, the Service cannot function as intended and your account may not be activated. You may withdraw this consent at any time by requesting account deletion in accordance with Section 11 of this Policy. Withdrawal of consent may result in the termination of your account and access to the Service.
AI interaction data, including chat history and onboarding inputs, is stored by Beoflow and retained for as long as your account remains active, in accordance with the data retention practices described in Section 9. CHI and PI used as inputs to AI-Powered Features is retained in accordance with Beoflow's standard data retention practices.
Beoflow does not sell, rent, or trade your personal data or health data to third parties. Your data is intended solely for your personal viewing only; however, in certain circumstances, the following parties may be given access to your data.
At Beoflow, we use Stripe, a secure third-party payment processor to handle all transactions. When you make a purchase, Stripe collects and processes your personal data (name, email address, billing and shipping addresses), and financial information (credit card number, bank account information), and transaction data (amount, date, time). This information is used solely for processing your payment, preventing fraud, and ensuring transaction security. Stripe adheres to strict data protection standards and uses advanced encryption to safeguard your information. Beoflow does not store your payment information; it is securely transmitted to Stripe, which handles your data in accordance with its own privacy policy. You are encouraged to review Stripe's privacy policy from time to time.
Beoflow uses third-party email and support tools to manage customer service enquiries and support requests. These tools process personal information such as your name and email address for the purpose of providing you with customer support and resolving issues. Where relevant to a support case, Beoflow support staff may also access and process your CHI or other data held within the Service. If you voluntarily include CHI or other personal data in a support communication, that data will be processed through these third-party tools. Beoflow does not share your data with third parties for purposes beyond those described in this Policy.
At Beoflow, we use Moneybird, an accounting software, to manage our financial records and transactions. Moneybird collects and processes your name and email address. This information is used solely for accounting purposes, including invoicing and financial reporting. Moneybird adheres to strict data protection standards to ensure the security and privacy of your information. Beoflow does not share your name or email address with any other third parties, and it is only used for the purposes described above.
At Beoflow, we provide users with the option to integrate their Google Calendar for seamless synchronization of events. When you connect your Google Calendar, event data such as titles, times, dates, locations, and attendee information is shared between the two platforms to enable this functionality. User data is securely stored on dedicated servers and is protected by a number of security measures. Some of those methods include encryption, secure socket layers, and authentication processes. We do not transfer or disclose your information to third parties for purposes other than the ones provided. This data is used solely for the purpose of ensuring your calendars are kept in sync, and we recommend reviewing Google's privacy policy to understand how they handle your data.
To power AI-Powered Features within the Service, Beoflow uses a third-party AI infrastructure provider ("AI Infrastructure Provider"). The AI Infrastructure Provider acts as a data processor on Beoflow's behalf, using open-source AI models to process your CHI, relevant PI, and any information submitted to AI-Powered Features solely for the purpose of generating AI outputs in response to your use of the Service.
Data processing: When AI-Powered Features are used, Beoflow transmits the relevant data securely to the AI Infrastructure Provider for processing. Once processing is complete, the output is returned to Beoflow.
AI model training and service improvement: Beoflow does not use your individual data to train AI models at any point. Beoflow may analyse AI-driven interactions for the purpose of improving the quality and relevance of the Service. Insights derived from this analysis are conceptual in nature — they are used to identify general patterns and inform improvements to the Service, not to extract or replicate individual user data. These insights are defined internally and then implemented into Beoflow's knowledge systems. Individual user data is not shared at any stage of this process.
International data transfer: The AI Infrastructure Provider is based outside the European Economic Area (EEA). Beoflow ensures that any transfer of personal data to the provider is carried out in compliance with applicable data protection law, including through the use of appropriate safeguards such as Standard Contractual Clauses.
User data is securely stored on privately hosted servers and is protected by a number of security measures. Some of those methods include blind encryption, secure socket layers, authentication processes, and non-disclosure agreements. If a data breach comes to our attention, we will investigate the extent of the breach and inform you promptly via email. Please be aware that your data will be retained as long as you maintain an account with us.
Upon account creation, the user can opt-in to receive marketing communications tailored to their preferences. The user can opt out of receiving marketing communications from us at any time by clicking the unsubscribe link located at the bottom of our marketing emails. We also use the user's personal data to tailor the marketing communications we send. We may send different types of marketing communications depending on your interests and activity data. We will never share the user's personal data with 3rd party advertising companies.
Beoflow would like to make sure you are fully aware of all your data protection rights. Every user is entitled to the following:
It is important to note, however, that changes made to the processing of your data may compromise the quality of the service provided. If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email address listed below.
Privacy Policies of Connected Services – The Beoflow website contains links to other websites and services. Our Privacy Policy applies only to our website and service. If you follow a link to another website, we advise you read their privacy policy and terms of service.
You may request deletion of your Beoflow or Beolift account at any time through the app. When you submit a deletion request, you will receive a confirmation email to verify your request.
Once confirmed, your account will enter a 30-day grace period before permanent deletion. During this period you may reactivate your account at any time (see below). If you attempt to log in during the grace period, you will be shown a screen displaying the scheduled deletion date and the option to reactivate your account. To reactivate, you must enter your password to confirm your identity, after which you will receive an email confirming that your account has been restored.
If your account is not reactivated within the 30-day grace period, it will be permanently deleted. At that point, your account and all associated identifiers will be removed from our database, and all links between your identity and your Consumer Health Data will be permanently severed.
Following permanent deletion, your Consumer Health Data is anonymised and can no longer be attributed to you or any identifiable individual. Anonymised data may be retained by Beoflow for service improvement purposes, as it no longer constitutes personal data within the meaning of the GDPR.
Beoflow keeps its Privacy Policy under regular review and places any updates on this web page. This Privacy Policy was last updated on February 2026.
If you have any questions about Beoflow's Privacy Policy, the data we hold on you, or you would like to exercise any of your data protection rights, please do not hesitate to contact us via the email [email protected]
Address:
Dalhuysenstraat 10-50
8448 EW, Heerenveen
The Netherlands
