Skip to content
BeyondYou
MyChartMyChart Login

Deletion Policy

Effective Date: February 21, 2026

1. Introduction

Beyond-You.net is committed to data sovereignty and user privacy. This policy outlines the procedures for the permanent erasure of user data from our platform, ensuring compliance with UK GDPR and international security standards. As we transition our platform to a holistic Ecosystem, this policy applies to all legacy and current interfaces.

2. Scope of Application

This policy governs the deletion of data across all Beyond-You.net products:

  • Web Platform
  • Client App (Currently labeled in-app as "Patient App")
  • Specialist App (Currently labeled in-app as "Provider App")
  • Manager App (For partner coaching businesses and administrators)

3. Account Deletion Procedure

Users maintain the "Right to be Forgotten" and may initiate account deletion at any time through the following steps:

  1. Login: Access your account via the Web Platform or mobile App.
  2. Settings: Navigate to the 'More' menu and select 'Profile'.
  3. Request Deletion: Click the 'Delete Account' button.
  4. Confirmation: Confirm the action.

Note: Upon confirmation, your account is immediately deactivated. Access to coaching history, wellbeing notes, and professional profiles will be revoked.

4. Data Erasure Timeline & Technical Process

Beyond-You.net follows a tiered deletion process to ensure data is removed securely:

  • Active Databases: Personal identifiers (Name, Email, Phone, Address) and Wellbeing Data are erased from active production databases within 24 hours of the request.
  • Anonymization for Innovation: In line with our roadmap for Wellbeing Technology, session metadata may be retained in a strictly anonymized format. Once anonymized, this data cannot be linked back to any individual and is used solely for the development of our AI-powered tools within the Ecosystem.
  • Backup Systems: For disaster recovery purposes, encrypted fragments of data may persist in our backup systems for up to 30 days. After this period, they are automatically overwritten and permanently destroyed.

5. Standards and Compliance

  • UK GDPR: We fulfill all "Right to Erasure" requests within the statutory 30-day window.
  • Security Rigor: Although we operate as a wellbeing platform, we apply high-level data destruction protocols (inspired by HIPAA standards) to ensure that sensitive conversations and personal reflections are unrecoverable once deleted.

6. Exceptions to Immediate Deletion

Under certain legal obligations, Beyond-You.net may be required to retain specific data points:

  • Financial Records: Transactional data and invoices must be retained for 6 years to comply with UK HMRC tax regulations.
  • Legal Disputes: Data relevant to ongoing legal proceedings or regulatory investigations will be preserved until the matter is resolved.
  • Safety Logs: Critical safety logs related to crisis prevention may be retained as required by our duty of care protocols.

7. Contact for Data Requests

If you are unable to access your account or wish to submit a manual deletion request, please contact our Data Protection Lead:

  • Email: support@beyond-you.net
  • Response Time: We acknowledge all manual requests within 72 hours.