← Back to FITRA

Privacy Policy

Last updated: June 2026

1. Who we are

FITRA is a Bali-based wellness membership platform. We are committed to protecting your personal data and being transparent about how we use it. Contact us at hello@fitra.asia with any privacy questions.

2. Data we collect

When you use FITRA, we collect:

  • Account data: name, email address, password (encrypted)
  • Profile data: location, bio, interests, Instagram handle (optional)
  • Usage data: events registered, perks redeemed, classes booked
  • Partner data: for businesses: business name, address, registration number, Instagram

3. How we use your data

  • To provide and improve the FITRA platform
  • To send transactional emails (account confirmation, booking updates, partner decisions)
  • To send platform updates and announcements (you can opt out)
  • To verify partner business applications
  • To generate anonymous usage analytics

4. Your QR code

Your member QR code is a unique identifier used only to record perk redemptions at partner businesses. It does not contain your personal information. Partner businesses can only confirm that a QR code is valid. They cannot see your name or other profile data.

5. Data sharing

We do not sell your personal data. We share data only as follows:

  • Partner businesses: only that a QR code is valid at time of redemption
  • Service providers: Supabase (database/auth), Resend (email), Mapbox (maps), Vercel (hosting), all under data processing agreements
  • Legal requirements: if required by law

6. Data retention

We retain your data while your account is active. If you delete your account, we remove your personal data within 30 days, except where required by law.

7. Your rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Delete your account and data
  • Opt out of non-essential emails

To exercise any of these rights, email hello@fitra.asia

8. Cookies

We use session cookies to keep you logged in. We do not use advertising or tracking cookies.

9. Security

Your data is stored securely using Supabase with row-level security. Passwords are encrypted. We use HTTPS across the platform.

10. Changes

We may update this policy. We will notify you by email of significant changes.

11. Contact

Privacy questions: hello@fitra.asia

Terms of ServiceHelp & FAQ