Security & Privacy

We use modern encryption in transit and at rest, apply least-privilege access, and maintain regular, versioned backups. We never sell your data and only collect what we need to run the service.

Data Handling

We collect only what's necessary to provide the service and never sell your personal information. You own your data and can export or delete it at any time.

Encryption

All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption. We use industry-standard security practices throughout our infrastructure.

Hosting Basics

Fitly runs on secure, industry-standard cloud infrastructure with automatic security updates and monitoring.

Backups

We maintain regular, versioned backups of all data with secure off-site storage and tested recovery procedures.

Access Controls

We implement least-privilege access controls, multi-factor authentication, and regular security audits for all team members with system access.

Reporting an Issue

If you discover a security vulnerability, please report it responsibly to security@fitly.pro. We take all reports seriously and will respond promptly.

Our security & privacy policy

  • TLS in transit. All traffic between your devices and Fitly is encrypted with TLS 1.2 or higher.
  • Encrypted at rest. Customer data and backups are encrypted at rest using AES-256.
  • Role-based access. Internal access is enforced through role and permission checks (admin roles, role management) so staff only see what their role requires.
  • Audit logging. Sensitive admin actions, including any support impersonation, are recorded to an immutable audit log.
  • Stripe PCI scope. Card numbers and bank details are handled directly by Stripe. Fitly never stores raw card or bank account data.
  • GDPR export & delete. You can export your data and request deletion at any time through the in-app privacy tools, which call our GDPR endpoints.
  • No external model training. We do not use your customer data, prompts, or content to train external AI models.
  • No advertising. Fitly does not sell your data or run ads against it.
Privacy Policy Terms of Service