Privacy Policy

Last Updated

February 9, 2026

1. Introduction

Welcome to Just Jimmy LLC ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website jimmycoach.com (the "Site"), use our mobile application ("App"), and engage with our coaching services. Important Note for EU Users: While Just Jimmy LLC is a company based in the United States, we highly value your privacy. We have chosen to host our primary databases and user data on secure servers located in Frankfurt, Germany (EU) to ensure maximum protection under European standards.

2. Information We Collect

A. Personal Data You Provide to Us We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, when you participate in activities on the Services, or otherwise when you contact us. - Identity Data: Name, username, or similar identifier. - Contact Data: Email address (used for waitlist, login, and communication). - Profile Data: Your password, preferences, feedback, and survey responses. B. Sensitive Personal Data (Health Data) When you use our Mobile App or Web Platform to track workouts, body metrics (weight, height, body fat %), nutrition logs, or progress photos, we process data concerning your health ("Health Data"). - Legal Basis: We process this data ONLY based on your explicit consent (Article 9(2)(a) GDPR), which you provide when you start using the tracking features. You can withdraw this consent at any time by deleting your account or data. C. Information Automatically Collected When you visit our Site or App, our servers automatically collect certain technical information, including: - Log and Usage Data: IP address, browser type, device settings, operating system, and crash data. - Cookies and Tracking Technologies: We may use cookies (like Google Analytics 4 and Meta Pixel) to access or store information. Specific details are set out in our Cookie Policy: /en/cookie-policy

3. How We Use Your Information

We use the information we collect or receive: - To provide the Service: To create your account, track your fitness progress, and deliver coaching content. - To manage the Waitlist: To send you updates about our launch and grant you access when ready. - To send administrative information: Changes to our terms, conditions, and policies. - To protect our Services: For fraud monitoring and prevention. - For Marketing (with your consent): To send you promotional emails via Mailchimp. You can opt-out at any time.

4. How We Share Your Information

We do not sell your personal information. We share information with the following third-party vendors who perform services for us (Data Processors): Provider | Service | Location of Data | Safeguards Supabase | Database & Authentication | Frankfurt, Germany (EU) | DPA + SCCs Mailchimp | Email Marketing (Waitlist) | United States | DPA + SCCs Vercel | Web Hosting (Frontend) | Global / US | DPA + SCCs Google / Meta | Analytics & Ads | United States | Consent-based

5. Data Storage and International Transfers

Primary Storage Location: We store all user data (including Health Data) on secure servers located in Frankfurt, Germany (EU), provided by our partner Supabase. We have specifically selected this region to ensure that your personal data remains within the European Economic Area (EEA) to the maximum extent possible. Legal Framework for US Transfers: Although our servers are in the EU, Just Jimmy LLC is a company incorporated in the United States. Therefore, we may access your data from the US for technical support, maintenance, or legal purposes. To ensure your data remains protected during such access, we rely on: - Standard Contractual Clauses (SCCs): We have signed Data Processing Agreements (DPAs) with our vendors that include the European Commission's Standard Contractual Clauses.

6. Security of Your Data

We use administrative, technical, and physical security measures to protect your personal information. - Encryption: Data is encrypted in transit (SSL/TLS) and at rest. - Access Control: We utilize Row Level Security (RLS) within our database (Supabase) to ensure strict access control, meaning each user can only access their own data. - Server Security: Our data is stored in ISO 27001 certified data centers.

7. Your Data Protection Rights (GDPR & CCPA)

Depending on your location, you may have the following rights: 1. The right to access: Request copies of your personal data. 2. The right to rectification: Request that we correct any information you believe is inaccurate. 3. The right to erasure ("Right to be forgotten"): Request that we erase your personal data (e.g., delete your account). 4. The right to restrict processing: Request that we restrict the processing of your personal data. 5. The right to withdraw consent: You can unsubscribe from our emails or withdraw consent for health data processing at any time. To exercise these rights, please contact us at: hello@jimmycoach.com.

8. Data Retention

We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy policy (e.g., until you delete your account), unless a longer retention period is required by law.

9. Updates to This Policy

We may update this privacy policy from time to time. The updated version will be indicated by an updated "Revised" date and will be effective as soon as it is accessible.

10. Contact Us

If you have questions or comments about this policy, you may contact us at: Just Jimmy LLC 800 North King Street, Suite 304 Wilmington, DE 19801 US Email: legal@jimmycoach.com