Privacy Policy
Your privacy and data security matter to us.
Last updated: June 2026Introduction
WellSync (“we”, “us”, or “our”) is committed to protecting the privacy of physiotherapists, wellness professionals, and their clients who use our platform. This Privacy Policy explains what data we collect, how we use it, and your rights as a user.
By creating an account and using WellSync, you agree to the collection and use of information as described in this policy. We will never sell your data to third parties.
If you have any questions about this policy, you can contact us at support@getwellsync.com.
Information We Collect
We collect only the information necessary to provide and improve the WellSync platform. This falls into three categories:
Account Information
When you create a WellSync account, we collect:
- Your name and email address
- Login credentials (passwords are hashed and never stored in plain text)
- Billing details, handled securely via Stripe
Practice & Client Data
As part of running your practice through WellSync, you may store the following on our platform:
- Client contact details (name, email, phone number)
- Appointment information (date, time, duration)
- Session notes and treatment records
- Any notes or files you choose to upload
This data belongs to you and your practice. WellSync acts as a data processor on your behalf and does not access it except to provide the service.
Usage Information
We may automatically collect limited technical data to keep the platform running smoothly:
- Browser type and device information
- Pages visited and actions taken within the platform
- Log data including IP address and timestamps
- Aggregate, anonymised analytics data
How We Use Your Information
We use the information we collect to:
- Provide, operate, and improve the WellSync platform
- Manage appointments, client records, and session notes on your behalf
- Send appointment reminders to your clients (when enabled by you)
- Process payments securely via Stripe
- Respond to support requests and resolve issues
- Maintain platform security and prevent misuse
- Send important service updates, security notices, and policy changes
We do not use your practice or client data for advertising, profiling, or any purpose beyond operating the platform for you.
Data Storage & Security
Your data is stored on secure infrastructure provided by Supabase, built on industry-standard cloud servers. We implement the following safeguards:
- Encryption in transit via HTTPS/TLS for all data transfers
- Encrypted storage for all sensitive data at rest
- Row-level security (RLS) ensuring users can only access their own data
- Strict access controls limiting who within WellSync can access data
- Regular security reviews and dependency updates
Payments
Payments on WellSync are processed securely through Stripe, a PCI DSS-compliant payment provider trusted by millions of businesses worldwide.
WellSync does not store your full card number, CVV, or any sensitive payment details. All payment data is handled directly by Stripe and governed by their privacy policy.
Third-Party Services
WellSync uses the following trusted third-party services to operate the platform. Each processes only the data necessary to perform their service:
Each provider is subject to their own privacy policy and data processing agreements. We select providers that meet high standards for security and privacy.
Your Rights
As a WellSync user, you have the following rights regarding your personal data:
To exercise any of these rights, please contact us at support@getwellsync.com. We will respond within a reasonable timeframe.
Contact Us
If you have any questions, concerns, or requests related to this Privacy Policy or how your data is handled, please reach out — we take privacy seriously and respond to all enquiries promptly.
Privacy support
support@getwellsync.com