Privacy Policy

Welcome to the Privacy Policy of HEALTHYYOU WITH DR WUMI INC. (hereinafter referred to as “We,” “Us,” “Company,” or “Platform”). This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information. By using our website (hereinafter referred to as “Website”) and its services, you acknowledge that you have read and understood the terms of this Privacy Policy.

At HEALTHYYOU WITH DR WUMI INC., our core mission is to remove the barriers to better health for everyone. A necessary part of that mission is to set a high standard for protecting the privacy of your information. We wish to assure you that the Company is strongly committed to protect the privacy of its users and has taken all necessary and reasonable measures in line with the best industry practice to protect the confidentiality of your personal information and its transmission through our website.
You understand and acknowledge that this policy is effective from the date and time a user registers with the site (hereinafter referred to as “Effective Date”) and accept the terms and conditions laid out on the site.
We may alter this Privacy Policy as needed for certain products and services and to abide by local laws or regulations around the world, such as by providing supplemental information in certain countries.


This Privacy Policy applies to the information that we obtain through your use of our services and process as a data controller, which may include information processed in connection with our website (, our Platform, social media, communications, and web-based tools (collectively, our “Services”).

If you have any questions or concerns about this Privacy Policy or about our privacy or data security practices, please contact us at [email protected]

What We Mean by Personal Information

For purposes of this Privacy Policy, “Personal Information” means information from or about you that identifies you directly and information that is associated with you and thus could potentially identify you, including when combined with other information from or about you.
“Sensitive Personal Information” includes data about racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union memberships, genetic and biometric data when used for identification purposes, and data about health, sex life, and sexual orientation.

Information Collected from You

For purposes of this Privacy Policy, “Personal Information” means information from or about you that identifies you directly and information that is associated with you and thus could potentially identify you, including when combined with other information from or about you.
“Sensitive Personal Information” includes data about racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union memberships, genetic and biometric data when used for identification purposes, and data about health, sex life, and sexual orientation.

Information Collected from You

We may collect personally identifiable information like name, telephone number, date of birth, shipping address, e-mail address, etc., personal information and sensitive personal information. Other information that we may collect includes location details, IP address, logs, metadata, and other Personal Data we get from communications done through e-mails, SMS, instant messages, and calls.
We may also maintain a record of your product interest and acquire information about you for our present and/or future affiliates. If you choose to post messages on our message boards, online/ offline chats or other message areas or leave feedback for other users, we may retain this information.
We may collect information about the location of your device to facilitate your use of certain features of our Services, device ID, device type, determine the speed at which your device is traveling, and add location-based filters. We may collect information about the hardware model, operating system and version, unique device identifier, phone number, International Mobile Equipment Identity (“IMEI”) and mobile network information. This information includes, but is not limited to demographic data, navigation data, additional contact data and additional data about you from other sources, such as public authorities, to the extent permitted by law.
Moreover, if you permit the website/application to access the address book on your device through the permission system used by your device platform, we may access and store names, contact and messages information from your address book to facilitate any form of interactions through our Services and for other purposes specified in this Privacy Policy.
All the aforesaid information is service-dependent, and we may use the above said user information to maintain, protect, and improve services (including advertising services) and/or for developing new services. Users can always refuse to supply personally identifiable or any other information, with the condition that it may prevent them from engaging in certain website-related activities and functionalities.
You acknowledge that our third-party services providers may need to collect certain additional information, e.g.- your credit or debit card number and expiration date, bank routing and account number. We may also aggregate non-personal information about you and other customers who visit our Website.


We collect and store content that you create, input, submit, post, upload, transmit, or store while using our Services. Such content may include any Personal or other Sensitive Personal Information submitted using our Services, such as HIPAA Protected Health Information under the US’ Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), personal data under the EU’s General Data Protection Regulation (“GDPR”), and other information such as source code or regulatory compliance materials.

Other submissions: We collect other data that you may submit to our Services or to us directly, such as when you request customer support or communicate with us via email or social media sites.

Inclusion of Pictures or Photographs for Marketing Purposes

From time to time, we may request and collect your pictures or photographs if you have benefited from our programs, including but not limited to ‘before and after’ pictures showcasing the positive impact of our weight management program. Participation in this activity is entirely voluntary, and you have the right to choose whether to provide such images. Choosing not to participate in this initiative will in no way affect the quality or level of services provided by the us.

A consent letter will be provided to you for this purpose. By completing and signing the consent letter, you grant permission for the use of your images for marketing and promotional purposes. You may revoke this consent at any time by contacting us at [email protected] and requesting the removal of your images from marketing materials.

These pictures or photographs may be used for marketing and promotional purposes, including on our website, social media platforms, printed materials, and other promotional channels.

Information that We Collect from Other Sources

In some cases, individuals may provide us with information about other individuals, or authorized users, such as account administrators, may create accounts on behalf of individuals. When such information is provided (including Personal Information), we assume that the individual providing the information has the necessary permission and authority to do so. This includes obtaining consent on behalf of the individual whose information is being provided. By providing such information, the individual giving the information confirms that they have the necessary rights to share it and that they consent to the collection and use of Personal Information as outlined in this Privacy Policy.

If you become aware of any instance where an individual has provided Personal Information about another individual without proper authorization, please contact us immediately at [email protected]

Sensitive Personal Data

In limited circumstances and when permitted by law, we may request biometric data to confirm your identity, such as when we authenticate a payment using your fingerprint. In some circumstances, we may collect information that may reveal health or medical information, such as when we provide health-related counselling or process transactions at health or medical facilities or pharmacies. In the context of processing employment applications, we may also request sensitive information, such as racial or ethnic origin or information about disability, where required or permitted by law of the country in which you are applying for employment.
Outside of these contexts or otherwise as we specifically request, we ask that you not provide us with any sensitive personal data (meaning information revealing racial or ethnic origin, political opinions, religion or philosophical beliefs, trade union membership, genetic, health, or biometric information, information about sex life or sexual orientation, or criminal convictions or offenses) through our websites or mobile applications, or otherwise to us.

Usage of Information Collected from You

We will not use your Personal Information for anything other than the following purposes:

To establish and maintain contractual relationships with our customers:

  • To fulfill our obligations to current customers.
  • To contact customers regarding account-related issues and business communications relating to the Services, including technical notices, updates, security alerts, and administrative messages.
  • To enable individuals to access and use our Services.
To comply with our legal obligations:
  • To comply with legal obligations, including but not limited to complying with tax and financial reporting requirements.
  • To demonstrate compliance with applicable privacy and data security laws and regulations, such as HIPAA and GDPR.
  • To comply with incident monitoring, reporting, assessment, and notification requirements under applicable law.
  • To comply with other applicable criminal and civil law and regulatory requirements under federal, state, and international law.
To provide services and information that you request:
  • To provide customer service and support.
  • To communicate with you, including responding to your comments, questions, and requests regarding our Services.
  • To provide direct marketing, email, and other distributed information distribution.
To fulfill our legitimate interests as a business:
  • To administer, operate, maintain, and secure our website and Services.
  • To monitor and analyze trends, usage, and activities in connection with our Services.
  • To investigate and prevent fraudulent transactions, unauthorized access to our Services, and other illegal activities.
  • To verify compliance with our internal policies and procedures.
  • For accounting, recordkeeping, backup, and administrative purposes.
  • To customize and improve the content of our communications, websites, and social media accounts.
  • To educate and train our workforce in data protection and customer support.
  • To provide, operate, maintain, improve, personalize, and promote our Services.
  • To develop new products, services, features, and functionality.
  • To enable an organization to view, cancel, or reschedule session bookings for you which were booked by that organization on your behalf (such as a clinic that is providing you with access to our Services).
For research and quality improvement:
  • To analyze trends, user behavior, and program effectiveness for research and quality improvement purposes, while ensuring the privacy and confidentiality of individual users.
When possible, we will use anonymized data for these purposes. When use of anonymized data is not possible or would be insufficient for our needs, or if we combine it with Personal Information, we will treat any such Personal Information in accordance with the procedures outlined in this Privacy Policy.
​We will only process your Personal Information where we have a legal basis for doing so, and this will be determined by the purpose for which your Personal Information is processed. Typically, we process your Personal Information on one of the following legal bases:
  • Because it is necessary to fulfil a contract that we have with you or to take steps at your request prior to entering into a contract.
  • Because you have provided your consent; or
  • Because it is in our legitimate interests to do so (and these are not overridden by the impact on your privacy or other rights). Our legitimate interests include the provision of our Service, the operation of our website, enhancing our profile and reputation and raising our customers’ and prospective customers’ awareness of our Services.

Storing Your Personal Data

We retain your information only for as long as is necessary for the purposes for which we process the information as set out in this Policy. However, we may retain your Personal Data for a longer period where such retention is necessary for compliance with a legal obligation to which we are subject, or to protect your vital interests or the vital interests of another natural person.

Sharing Your Personal Data

We generally do not share Personal Information that we collect from or about you with third parties. However, Personal Information may be shared with third parties where one of the following circumstances applies:

​With Your Express Consent: We will share your Personal Information with companies, organizations, or individuals outside of the platform when we have your consent to do so.

When Your Account Is Accessed by One of Your Organization’s Designated Account Administrators: Your account administrators at our platform may be able to:

  • Access information in and about your account
  • Disclose, restrict, or access information that you have provided or that is made available to you when using your account, including your content; and
  • Control how your account may be configured, accessed, or deleted.

With our vendors and business partners, to accomplish our business purposes: We may share your information with the Health Service Providers and other third parties listed in our Subvendor Directory who perform services on our platform. We provide your payment information to our service providers for payment processing and verification. We share Personal Information with its vendors and other parties performing services on our platform only after they have agreed in writing to implement appropriate protections with respect to your Personal Information.

​When Necessary to Comply with Laws and Law Enforcement Requests, or Otherwise to Protect Our Rights or Those of Individuals: We may disclose your information (including your Personal Information) to a third party if:

  • We believe that disclosure is reasonably necessary to comply with any applicable law, regulation, legal process, or governmental request.
  • To enforce our agreements, policies, and terms of service.
  • To protect the security or integrity of our products and services.
  • To respond to an incident involving personal data for which we may have direct or indirect responsibility.
  • To protect the property, rights, and safety of our platform, our customers or the public from harm or illegal activities.
  • To respond to an emergency which we believe in the good faith requires us to disclose information to assist in preventing the death or serious injury of any person; or
  • To investigate and defend ourselves against any third-party claims or allegations.

As the result of a business transition: We may share or transfer your information (including your Personal Information) in connection with, or during negotiations of, any merger, sale of Company assets, financing, or acquisition of all or a portion of our business to another Company. We will take reasonable steps to assure that any other entity involved continues to comply with the terms of this Privacy Policy. We will notify you of such a change in ownership or transfer of assets by posting a notice on our website. We may limit our disclosure or use of any Personal Information that is considered Protected Health Information if our company undergoes a business transition to comply with HIPAA.

Sharing aggregated, anonymized, deidentified, or otherwise non- personal data: We may share aggregated, anonymized, deidentified, or otherwise non-Personal Information that does not directly or indirectly identify you and that cannot, with reasonable effort, be used to reidentify you to improve the overall experience of our Services. Such Personal Information will be aggregated, anonymized, deidentified, or otherwise rendered not re-identifiable in accordance with applicable law such that the resulting information is not considered Personal Information within the scope of this Privacy Policy.

Children’s Privacy

We do not knowingly collect Personal Information from children under 16. If we become aware that a child under 16 (sixteen) has provided us with Personal Information, we will take steps to delete such information. If you become aware that a child has provided us with Personal Information, please contact us at [email protected].

California Privacy Rights

California Civil Code Section 1798.83 permits our customers who are California residents to request certain information regarding our disclosure of Personal Information to third parties for their direct marketing purposes. If you require more information about it, please contact [email protected].

Use Of Cookies and Web Logs

Web Logs: We record certain information and store it in log files when you interact with our Services. This information may include Internet Protocol (IP) or other device addresses or ID numbers, browser type, Internet Service Provider information, URLs of referring/exit pages, operating system type, date/time stamp information, information that you search for, your locale and language preferences, your mobile carrier, and system configuration information.

Cookies: We use various technologies to collect information, including through cookies that we save to your computer or mobile device. Cookies are small data files stored on your hard drive or in device memory. We use cookies to authenticate you when using our Services – these cookies are ‘strictly necessary’, and essential for the website to function. We may also associate the information we store in cookies with Personal Information you submit through our Services. You can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from websites you visit by changing your browser options. If you do not accept cookies, however, you may affect how our Website and Services function.

Links To Third Party Websites

Our website may provide links to third-party websites for your information. If you access those links through our website, you will leave our website. We do not own and control those sites, their content, or their privacy practices. We encourage you to review the privacy policy of any website before submitting your personal information.


Safety Of Your Data

We employ a variety of organizational, technical, and administrative measures to provide a level of security appropriate to the risk associated with the Personal Information you trust us with.

To that end, we manage our data protection program consistent with ISO 27001, SOC 2, HITRUST, and legal and regulatory requirements such as HIPAA, PIPEDA and GDPR, as they may be applicable to our services.

We protect Personal Information under its control and obligates its service providers in writing to also protect against accidental or unlawful destruction, loss, alteration, unauthorized disclosure of or access to, personal data transmitted, stored, or otherwise processed.

If you have concerns about the security of your information with us, please contact us immediately at [email protected] to report an issue.

Your Rights and Choices

You have certain rights in relation to your Personal Information. Depending on your geographic location, these may include the right to:
  • Update or correct your Personal Information at any time by accessing the account settings page on the website or within our platform.
  • Decline to share certain Personal Information with us, in which case we may not be able to provide you with some of the features and functionality of our Services or fulfill your requests. For example, we need your email address to authenticate you and perform account services such as password resets, or to provide you with customer support.
  • Decline to accept cookies, but that decision may affect the functionality and performance of our Services.
  • Opt out of receiving promotional communications from our platform by using the unsubscribe link within each email or otherwise request that we communicate with you in a confidential manner. Note that, if you maintain an account with us, you will continue to receive administrative messages from us regarding the Services.
  • Request information about, and access to, the personal data that we collect from you.
  • Ask questions or make complaints about our privacy and data security practices regarding your personal data.
  • Request that we delete information that we have collected about you.
  • Ask us for a copy of the information that we collected from you.
  • Request restrictions on how we use or disclose your Personal Information. Request a paper copy of this Privacy Policy.

To exercise any of these options, or for additional information about our privacy and data security practices, contact us at [email protected].

You may also have the right to contact the relevant data protection authority if you think we have processed your Personal Information in a manner which is unlawful or breaches your rights. If you have such concerns, we request that you initially contact us at the email address above so that we can investigate, and hopefully resolve, your concerns.

International Transfers

We are headquartered in Canada, and in future, we may maintain offices and have service providers in other countries. Your personal data may be transferred to within Canada or other locations outside of your state, province, country, or other governmental jurisdiction where we or our service providers maintain offices and where privacy laws may not be as protective as those in your jurisdiction. If we make such a transfer, we will require that the recipients of your personal data provide data security and protection in accordance with applicable law.

Data Retention & Disposal

We retain your Personal Information only as long as necessary to accomplish the business purpose for which it was collected or to comply with our legal and contractual obligations, we securely dispose of your Personal Information promptly after any such business, legal, or contractual need has lapsed.
Unless we otherwise give you notice, we will retain your Information on our platform on your behalf until such times as you or we terminate your account. The exception would be on-demand recordings, where your Personal Information may be retained and made available to others to the extent you expressly consented to be part of a recorded group session.

Data Storage and Location of Data

HEALTHYYOU WITH DR WUMI INC. is a Canadian-based Company that offers its Services to domestic and international business customers. As a result, information that we collect, including Personal Information, may be transferred to our Canadian offices to permit us to comply with our legal and contractual obligations, to provide information and services to prospective and current clients, and to perform related business activities. In addition, we may provide information to third-party service providers in Canada and in other countries as described above. Thus, Personal Information may be transferred to and stored on servers located in Canada and in countries different from the country in which that information was initially collected, including out of the European Union. Similarly, information we collect may be accessed by us and our third-party service providers and business partners from countries other than the ones in which the information is stored.
If you are a resident in the European Union, please note that wherever we transfer and store information outside the European Union, we will take legally required steps to ensure that appropriate safeguards are put in place to protect your Personal Information. You may contact us for an explanation of the basis on which we have transferred your Personal Information and, where relevant, to request a copy of the legal safeguards which we have put in place.
If we engage a third party to process Personal Information on our behalf, we contractually require them to handle your Personal Information appropriately.


If you have a complaint about our handling of your personal data, you may contact our data protection officer using the contact information below. We request that a complaint be made in writing. Please provide details about your concern or complaint so that our data protection officer can investigate it. We will take appropriate action in response to your complaint, which may include conducting internal discussions with relevant business representatives. We may contact you for additional details or clarification about your concern or complaint. We will contact you to inform you of our response to your complaint. You also may have a right to file a complaint with a national or local regulatory agency.

Modifications To the Policy

We may update this Privacy Policy and information security procedures from time to time. If this privacy and/or information security procedures materially change at any time in the future, we will post the new changes conspicuously on the Website to notify you.
Please note that we may attempt to notify you when changes are made to this Privacy Policy, you are responsible for periodically reviewing any changes which may be made to the Policy. We may, in our sole discretion, modify or revise the Policy at any time, and you agree to be bound by the same.
Your continued use of our website and service/s, following notice of such changes shall indicate your acknowledgement of such changes and agreement to be bound by the terms and conditions of such changes.

Contact Us

In case you have any questions about this Privacy Policy, our practices relating to the website, or your dealings with us, please contact our Data Protection Officer at [email protected] and +1 780-851-6545.

Pin It on Pinterest

Share This