Privacy Policy

Last updated: July, 15th 2022

This Privacy Policy explains what personal data is collected when you use the UPNDO mobile app (the “APPLICATION”) and the services provided through it (together with the App, the “SERVICE”), how such personal data will be used and shared.

First and foremost, we at UPNDO want to get you moving, healthy and having a huge positive impact in our global community.

We are in the business of corporate wellness and social impact, this means that in no case we sell your data to third parties!

UPNDO follows the strictest interpretation of the GDPR guidelines and legislation.

Lets go to the details of our UPNDO privacy policy:

By using the service, you promise us that:

  1. you have read, understood, and agreed to this privacy policy, and
  2. you are over 18 years of age (or between the ages of 13 and 17 and using the site and service with parental or legal guardian consent and supervision and have had your parent or guardian read and agree to this privacy policy for you). If you do not agree, or are unable to make this promise, you must not use the service. In such case, you must:
  • contact us by email to and request deletion of your account and data; and
  • delete the App from your devices.

Changes to this Privacy Policy:

We may modify this Privacy Policy from time to time. In case material changes are made, you will be notified through our Service or by other available means and will have the opportunity to review your consent to our Privacy Policy. By continuing to access or use the Service after those changes become effective, you agree to be bound by the revised Privacy Policy.

Data you give us:

You provide information about yourself when you sign up for and/or use the Service. For example: name, gender, data on physical characteristics (including height and weight), fitness activity data, email address.

Providing these data is not compulsory. But app usage will be much cooler if you do, you will enjoy a much better service!

Data provided by third parties:

Service usage relies on the connection between the App and your local Health app (either Apple Health Kit for iOS users, or Google Fit for Android users). So, when you connect UPNDO to your Health app, we will be able to collect information on your daily physical activity (e.g. Steps, Type of Activity, Duration of the Activity).

When you connect your Apple Health or Google Fit to the service there is certain data that you allow us to read. Examples of such data include Cycling duration, Flights Climbed, Steps, Type of workout.

There are other types of data we collect automatically:

  • Device data: We collect data from your mobile device. Examples of such data include: type, name and model of a device, operating system.
  • Usage data: We record how you interact with our Service. For example, we log your taps on certain areas of the interface, the features, and content you interact with, how long you are in the application and the UPNDO points you earn and the donations you make.

For what purposes do we process your personal data?

  1. To provide our Service:
    • This includes enabling you to use the Service in a seamless manner and preventing or addressing Service errors or technical issues.
    • To host personal data and enable our APPLICATION to operate and be distributed we use Amazon Web Services, which is a hosting and backend service.
    • To monitor infrastructure and the App’s performance, we use Crashlytics, which is a monitoring service provided by Google.
    • We use Firebase Performance Monitoring and Firebase Crash Reporting, which are monitoring services provided by Google. To learn more, please visit Google’s Privacy policy and Privacy and Security in Firebase.
  2. To customize your experience:
    • We process your personal data to adjust the content of the Service and make offers tailored to your personal preferences.
  3. To manage your account and provide you with customer support:
    • We process your personal data to respond to your requests for technical support, Service information or to any other communication you initiate. This includes accessing your account to address technical support requests. For this purpose, we may send you, for example, notifications or emails about the performance of our Service, security, donation transactions, notices regarding our Terms and Conditions of Use or this Privacy Policy.
  4. To communicate with you regarding your use of our Service:
    • We communicate with you, for example, by email and push notifications. These may include reminders and messages encouraging you to be active and, or other information about the App. As a result, you may, for example, receive a push notification every day at a particular time reminding you to move more.
    • The services that we use for this purpose may collect data concerning the date and time when the message was viewed by our App’s users, as well as when they interacted with it, such as by clicking on links included in the message.
  5. To research and analyze your use of the Service:
    • This helps us to better understand our business, analyze our operations, maintain, improve, innovate, plan, design, and develop the App and new products.
    • We use Firebase Analytics, which is an analytics service provided by Google. In order to understand Google’s use of data, consult Google’s partner policy.
  6. To send you marketing communications:
    • We process your personal data for our marketing campaigns. We may add your email address to our marketing list. As a result, you may receive information about our services, such as for example, new challenges and suggested NPO’s according to your social causes. If you do not want to receive marketing emails from us, you can unsubscribe following instructions in the footer of the marketing emails.
  7. To enforce our Terms and Conditions of Use and to prevent and combat fraud:
    • We use personal data to enforce our agreements and contractual commitments, to detect, prevent, and combat fraud. As a result of such processing, we may share your information with others, including law enforcement agencies (in particular, if a dispute arises in connection with our Terms and Conditions of Use).
  8. To comply with legal obligations:
    • We may process, use, or share your data when the law requires it, in particular, if a law enforcement agency requests your data by available legal means.

How can you exercise your privacy rights?

To be in control of your personal data, you have the following rights:

  • Accessing / reviewing / updating / correcting your personal data. You may review, edit, or change the personal data that you had previously provided to us in the profile section of the APPLICATION.
  • You may also request a copy of your personal data collected during your use of the App at
  • Deleting your personal data. You can request erasure of your personal data by sending us an email to you request deletion of your personal data, we will use reasonable efforts to honor your request. In some cases, we may be legally required to keep some of the data for a certain time; in such event, we will fulfill your request after we have complied with our obligations.
  • Objecting to or restricting the use of your personal data. You can ask us to stop using all or some of your personal data or limit our use thereof by requesting its erasure as described above or sending a request to

Additional information for EEA-based users. If you are based in the EEA, you have the following rights in addition to the above:

  • The right to lodge a complaint with supervisory authority: We would love you to contact us directly, so we can address your concerns. Nevertheless, you have the right to lodge a complaint with a competent data protection supervisory authority, in particular in the EU Member State where you reside, work or where the alleged infringement has taken place.
  • The right to data portability. If you wish to receive your personal data in a machine-readable format, you can do so by requesting a copy of your personal data as described above (or send respective request at The data will be made available to you in the .json file format.

Our EU Representative: As we do not have an establishment in the European Union (“EU”), we have appointed a representative based in Portugal, who you may address if you are located in the EU to raise any issues or queries you may have relating to our processing of your Personal Data and/or this Privacy Policy more generally. Our EU representative is: Upndo, Inc mailbox Oeiras Business Center, Gabinete 4, Rua António Variações N.º 5, 2740-315 Porto Salvo, Portugal. Our EU representative can be contacted directly by emailing them at the following address:

International data transfers:

UPNDO does business globally. We may transfer personal data to countries other than the country in which the data was originally collected, in order to provide the Service set forth in the Terms and Conditions of Use and for purposes indicated in this Privacy Policy. If these countries do not have the same data protection laws as the country in which you initially provided the information, we deploy special safeguards.

In particular, if we transfer personal data originating from the EEA to countries with not adequate level of data protection, we use one of the following legal bases: (i) Standard Contractual Clauses approved by the European Commission (details available here), or (ii) the EU-U.S. Privacy Shield Framework (details available here), or (iii) the European Commission adequacy decisions about certain countries (details available here).


I hereby confirm that I have read and understood this Privacy Policy. By submitting data to UPNDO or its agent(s) or by using UPNDO’s website, application or service, I voluntarily and expressly consent the collection, use, sharing, processing and retention of my data according to the terms set forward in this Privacy Policy.

Contact Us:



If you have any questions about this Privacy Policy, please contact us.