Liftably

Privacy Notice

Last updated: 9 June 2026

This Privacy Notice explains how Chris Bilcliff ("we", "us", "our"), trading as Liftably, collects and processes personal data when you use the Liftably service. We act as the data controller for the personal data described below.

1. Personal Data We Collect

  • Account data: name, email address, and login credentials.
  • Workout data: the gym entries, exercises, weights and notes you log.
  • Support data: messages you send us.
  • Usage and device data: IP address, device identifiers, browser type, and basic telemetry about how you use the Service.
  • Billing data: handled by Paddle (see below); we receive only summary subscription information.

2. How and Why We Use Your Data

  • Provide the Service — store and sync your workouts (legal basis: performance of contract).
  • Account management — authenticate you and manage your subscription (contract).
  • Security and fraud prevention — protect the Service and our users (legitimate interests).
  • Product improvement — diagnose bugs and improve features using aggregated telemetry (legitimate interests).
  • Customer support — respond to your messages (legitimate interests / contract).
  • Legal compliance — meet regulatory and tax obligations (legal obligation).

3. Who We Share Data With

  • Service providers / subprocessors: hosting, database, email delivery, and analytics tooling, acting on our instructions.
  • Paddle.com Market Limited: our Merchant of Record, which handles checkout, subscription management, payments, tax compliance, and invoicing on our behalf.
  • Professional advisers: legal and accounting advisers where necessary.
  • Authorities: where required by law or to protect our rights.

4. International Transfers

Some of our service providers are located outside the UK / EEA. Where data is transferred internationally, we rely on appropriate safeguards such as the UK International Data Transfer Agreement, EU Standard Contractual Clauses, or adequacy decisions.

5. Data Retention

We keep your account and workout data for as long as your account is active. If you delete your account, we will delete or anonymise your personal data within 90 days, except where we need to retain limited records for legal, accounting, or fraud-prevention purposes.

6. Your Rights

Under UK GDPR / EU GDPR, you have the right to:

  • access the personal data we hold about you;
  • request correction of inaccurate data;
  • request erasure ("right to be forgotten");
  • restrict or object to certain processing;
  • request data portability;
  • withdraw consent at any time where processing is based on consent; and
  • lodge a complaint with a supervisory authority (in the UK, the ICO at ico.org.uk).

We aim to respond to requests within one month.

7. Security

We use appropriate technical and organisational measures to protect your personal data, including encryption in transit, access controls, and least-privilege database policies.

8. Cookies

We use essential cookies required to keep you signed in and to remember your preferences. We may also use limited analytics cookies to understand product usage. You can manage cookies via your browser settings; disabling essential cookies may break parts of the Service.

9. Contact

For privacy questions or to exercise your rights, contact Chris Bilcliff via the support channel inside the app or the email address listed on our site.