888-368-0009 [email protected]

SHVAlytics Privacy Policy

Effective Date: September 2025

SHVAlytics (“we,” “us,” or “our”) is committed to protecting your privacy and ensuring the security and proper handling of your personal information. This Privacy Policy explains how we collect, use, store, and share personal data when you use our coaching performance platform and related services (“Services”), hosted on cloud infrastructure, including Supabase.

By using SHVAlytics, you consent to the practices described in this policy.

1. Information We Collect

  • Personal Identifiers: Name, email address, phone number, user account information, and billing details.

  • Coaching Data: KPIs, session data, client responses, progress metrics related to coaching sessions.

  • Usage Data: Logs, device information, IP addresses, browser type, and interaction data for analytics and performance monitoring.

  • Marketing Data: Preferences and consent to receive communications.

2. How We Use Your Information

  • Service Delivery: To provide and improve our platform, manage your account, and support coaching sessions.

  • Analytics & Reporting: To generate ROI metrics, performance insights, and aggregated reporting dashboards.

  • Security & Compliance: To secure your data, detect fraud, and comply with legal obligations.

  • Marketing & Communication: To send updates, offers, and respond to inquiries, provided you have given your consent.

3. Data Storage and Security

  • Your data is securely stored using Supabase’s cloud infrastructure with encryption at rest and in transit.

  • We implement strict access controls, regular security audits, and comply with industry-standard data protection protocols.

  • Backup and disaster recovery measures are in place to prevent data loss.

4. International Data Transfers

  • SHVAlytics operates globally and may transfer your personal data to servers and service providers located worldwide, including countries that may not have equivalent data protection laws.

  • We use standard contractual clauses approved by regulatory authorities and take necessary safeguards for lawful international transfers.

5. Your Privacy Rights

Depending on your jurisdiction, you have rights regarding your personal data, including:

  • Right to access and obtain a copy of your data.

  • Right to correct or update inaccurate data.

  • Right to data portability.

  • Right to object to or restrict processing.

  • Right to withdraw consent at any time.

  • Right to request deletion (the “right to be forgotten”) where applicable.

To exercise these rights, please get in touch with our Data Protection Officer at [email protected].

6. Data Retention

  • We retain your personal and coaching data in accordance with applicable professional standards and legal requirements.

  • Specifically, SHVAlytics follows the Center for Credentialing & Education’s Board Certified Coach (BCC) policy, retaining coaching records for a minimum of five (5) years after the end of the coaching relationship or credential maintenance cycle.

  • This retention period applies to all session notes, coaching agreements, KPI data, and related documentation necessary to maintain professional accountability.

  • After the retention period, data will be securely deleted or anonymized in a manner that protects client confidentiality and privacy.

7. Cookies and Tracking Technologies

  • We use cookies and similar technologies to enhance user experience, analyze usage patterns, and deliver personalized content.

  • You can manage cookie preferences through your browser settings; however, disabling essential cookies may affect platform functionality.

8. Compliance with Key Privacy Laws

  • GDPR (EU): We comply with EU regulations protecting the data of EU residents.

  • CCPA and Other US State Laws: We respect consumer privacy rights under California and other state-level laws.

  • APAC and Global Laws: We comply with regional laws, including India’s DPDPA, Australia’s Privacy Act amendments, and others affecting users worldwide.

  • Children’s Privacy: Our platform is not directed to children under 16; we do not knowingly collect data from children.

9. Data Breach Notification

  • In the unlikely event of a data breach, we will promptly notify affected users and relevant regulators as required by law, providing details of the breach and outlining the remediation steps.

10. Third-Party Services

  • We partner with trusted third parties, including Supabase and Stripe for data storage, payment processors, and analytic providers. These partners are contractually bound to protect your data and only use it for specified purposes.

11. Changes to This Privacy Policy

  • We may update this policy periodically to reflect changes in legal, regulatory, or operational requirements.

  • Material changes will be communicated via email or platform notifications.

12. Contact Us

For questions or data protection requests, contact:

Data Protection Officer
Email: [email protected]