Privacy Policy

Effective Date: 05/03/2025

1 - Introduction

Your privacy is important to us. At Rehuman Limited (“Rehuman,” “we,” “us,” or “our”), we are committed to respecting and protecting your privacy while providing our services. This Privacy Policy outlines how we collect, use, store, and share your personal data when you interact with our platform, rewards marketplace, loyalty program management system, and omnichannel engagement interfaces.We comply with applicable data privacy laws, including but not limited to the EU General Data Protection Regulation (GDPR), UK Data Protection Act 2018, California Consumer Privacy Act (CCPA/CPRA), and other global regulations, ensuring secure and lawful processing of your personal data.By using our services, you consent to our collection, use, and disclosure of your personal information as described in this policy. If you have any questions, please contact us at info@rehuman.co.uk

2 - Scope & Applicability

This Privacy Policy applies to:

  • Users of our loyalty and rewards programs offered through insurers and enterprise clients.
  • Individuals using our web platform, mobile application, and APIs for managing their engagement and reward activities.
  • Policyholders and customers interacting with insurer-integrated engagement solutions powered by Rehuman.
  • Corporate clients using our data-driven engagement tools and omnichannel interfaces.

If you access Rehuman services via a third-party platform (such as an insurer’s app or corporate wellness portal), their privacy policies may also apply, and we encourage you to review them.   

3- Information We Collect

We collect different types of information depending on how you interact with our platform:

A. Information from Corporate Clients (B2B)

If you are a business partner, we may collect:

  • Company details (e.g., company name, business email, industry).
  • Employee engagement data (aggregated data on participation, redemption rates, and activity trends).
  • Integration data (e.g., API keys, service configurations, and platform usage insights).

B. Information from Policyholders & Users (B2C)If you are an end-user of our platform via an insurer or employer, we may collect:

  • Personal details (e.g., name, email, phone number, user ID).
  • Health & engagement data (e.g., steps, workouts, wellness activities).
  • Loyalty & rewards activity (e.g., points earned, redemptions, preferred rewards).
  • Device & interaction data (e.g., IP address, device type, browsing behavior, app usage).

C. Payment & Transaction Information

For transactions within our rewards marketplace, we collect:

  • Billing details (if applicable).
  • Payment confirmation from third-party processors (e.g., Stripe, PayPal).

4- How We Use Your Information

We use the collected data to:

  • 5- Data Sharing with Third Partiesinsurer and employer loyalty programs by tracking engagement and rewards.
  • Enhance user experience by providing relevant health incentives and marketplace offers.
  • Personalize content and offers based on user behavior and preferences.
  • Facilitate omnichannel engagement through email, SMS, in-app notifications, and web platforms.
  • Improve our services through analytics, trend analysis, and feedback loops.

We do not sell or share your personal data for direct marketing without consent.

5- Data Sharing with Third Parties

We may share personal data only as necessary for providing our services:

  • With insurers & corporate clients (aggregated engagement insights, no personal identifiers).
  • With rewards providers & merchants (for redemption processing).
  • With third-party service providers (e.g., cloud hosting, analytics, payment processors).
  • For legal compliance (in response to legal obligations or regulatory inquiries).

All third-party vendors undergo strict data protection compliance measures.

6- International Data Sharing

Rehuman operates globally, and data may be processed in multiple jurisdictions, including the UK, EU, US, and UAE. We ensure compliance with GDPR-standard contractual clauses and implement encryption for cross-border data transfers.

7-Data Sharing Measures

We prioritise the security and confidentiality of your personal data. Measures include:

  • SSL encryption for data transmission.
  • Access controls & authentication (role-based access restrictions).
  • Regular security audits & staff training to prevent unauthorized access.
  • Encrypted storage for sensitive personal information.

8-Data Retention Policy

We retain data based on business needs and legal requirements:

  • User data: Retained for 3 years after account termination.
  • Corporate engagement data: Retained for 5 years for trend analysis.
  • Financial transactions: Retained for 7 years per compliance requirements.

Users may request early deletion of their data via the Right to Erasure.

9 -Data Protection Rights

You have the following rights under applicable data privacy laws:

  • Right to Access – Request a copy of your personal data.
  • Right to Rectification – Correct inaccurate or incomplete data.
  • Right to Erasure – Request deletion of your personal data.
  • Right to Restrict Processing – Limit how your data is processed.
  • Right to Object – Opt-out of certain uses of your data.
  • Right to Data Portability – Transfer your data to another provider.

To exercise your rights, contact us at info@rehuman.co.uk.

10 -California and Data Rights

For California residents, in line with CCPA/CPRA, you have:

  • The right to know what personal data we collect.
  • The right to delete your personal data.
  • The right to opt-out of personal data sales (we do not sell data).

For EU & UK residents, we adhere to GDPR principles and ensure transparency in data processing.

11 - Childrens Privacy

Rehuman does not knowingly collect data from individuals under 16 years of age. If we discover such data, it will be deleted immediately.

12 - Business Transfers and Mergers

If Rehuman undergoes a merger, acquisition, or sale, user data may be transferred, subject to continued protection under this policy.

13 - Policy Updates

We may update this Privacy Policy periodically. Changes will be communicated via email and reflected with a new “Last Updated” date at the top of this page.

14 - Contact Us

If you have any questions about this Privacy Policy or how your data is processed, you can contact our Data Protection Officer (DPO):

📩 Email: info@rehuman.co.uk


📍 Registered Address: Rehuman Limited, 111 Weston Lane Weston Lane, Otley, England, LS21 2DF