Skip to main content
email    phone

Tonic And Me App Privacy Policy

Effective Date: 10 August 2025

Your privacy is important to us. This Privacy Policy explains how Tonic Refreshing Lifestyle Management Ltd t/as Tonic Wellbeing (“we”, “our”, or “us”) collects, uses, shares, and protects your information when you use the Tonic and Me app (“the app”).

1. What is Tonic And Me?

Tonic And Me is a health and wellness companion app that offers its subscribers unlimited access to a growing library of health, wellbeing and lifestyle guidance and support.

Our unique and innovative approach utilises intuitive digital technology, blended with personalised health data and metrics delivered by the Tonic Team through a range of health check and wellbeing services, both online and in-person.

A team of experts – clinicians, coaches, trainers, and therapists, who are passionate about delivering support that makes a difference, are available to you. (Fees may apply).

The Tonic and Me app allows you to monitor your health data in confidence, and to establish, improve, and maintain healthy lifestyle behaviours.

2. How Can I Use The Tonic And Me App?

Using the Tonic And Me mobile app requires a subscription to a Tonic And Me programme. This can be achieved in two ways –
  1. Through a corporate workplace agreement if your employer subscribes to a Tonic And Me workplace wellbeing programme
  2. Through an individual Tonic Solo subscription available from www.tonicsolo.co.uk

As part of the enrolment process you will set up your individual Tonic And Me account. Your account allows you to review, analyse and evaluate your health data and other information entered into your Tonic And Me profile by you, or by a Tonic Practitioner following an online or in-person health check.

We also provide useful information, insights and general recommendations that are provided inside the Wellbeing Hub. All content is provided as information only, and we strongly recommend you seek medical advice from your GP or a medical practitioner before undertaking any exercise, dietary or overall lifestyle changes.

3. When You First Use the App

Upon first launch, you will be shown this Privacy Policy and asked to accept it before proceeding. A copy is always available in the app settings and on our website.

4. How to Access This Policy

  • In-App Access: You can find this policy anytime by following the “Privacy & Data” links throughout the app.
  • External access: This Privacy Policy is available at: www.choosetonic.co.uk/app-privacy-policy/.

5. How We Collect Your Personal Data

We collect your personal data directly from you when you sign up for the Tonic And Me app and engage with us through Tonic And Me Products and Services. When you create your Tonic And Me account and set up your profile with us, we will ask you to provide your full name, age, gender and date of birth.

When you engage with any online or in-person Product or Service from Tonic And Me, including but not limited to, health checks, at work and at home blood tests, workplace reward days, webinars, workshops and one-to-one sessions, we will record data within your personal profile to allow you to review, evaluate and action any recommendations made. This data is not shared with any third parties, including your employer if you are subscribed through a corporate workplace programme.

Within the Tonic And Me app, we also provide open text fields for you to enter information within your personal profile. This information may be accessed and reviewed by a Tonic Practitioner, please only enter information that relates to your own use of the app.

6. What Data We Collect and Why

We use your Personal Data for several purposes depending on how you engage with us. These purposes are:
  1. To fulfil your order for the Tonic And Me mobile app
  2. For your use of any Tonic And Me workplace programme (if applicable)
  3. To fulfil any Products or Services you sign up for through the Tonic And Me app.
  4. To manage and send direct marketing communications that we feel are relevant to you
  5. For product research and service development purposes
  6. To prevent fraud and misuse of the Tonic And Me platform and to protect our or a third party’s rights

We only collect the minimum data necessary to ensure accuracy when providing our services.

This can include:

  • Name and Email: For login, personalisation, and customer support.
  • Age and Gender: To tailor wellbeing content and support.
  • Physical Health Data: Including information collected and measured through Health Checks, with options for at-work or in-home Blood Tests. This data may include your height, weight, blood pressure, waist circumference, hip circumference, BMI, body composition (fat, hydration etc.), lipid profile, glucose level, and bone mass.
  • Lifestyle Health Data: Including information collected when you register for and attend our Services or submit a self-assessment form related to activity, nutrition, sleep, relaxation, and stress. This data may include sleep patterns, alcohol, tobacco and vape consumption, or statements about your mental health and general lifestyle.
  • General Wellness Data: Your responses to quizzes, surveys, and wellbeing preferences.
Purpose: To personalise your experience, provide wellbeing recommendations, monitor progress, and improve our services.

7. Where Your Data Is Stored

All user data is securely stored using Google Firebase, a cloud-based platform hosted on Google Cloud infrastructure. We specifically use data centres located in the Europe West (London) region to ensure compliance with both UK data protection laws (including the UK GDPR and Data Protection Act 2018) and EU regulations (such as the EU GDPR).

Firebase provides industry-leading security features, including encryption of data both at rest and in transit. Your data is stored in a secure, scalable environment, and access is strictly limited to authorised personnel in accordance with our internal security protocols.

We do not transfer your data outside of the UK or EU without appropriate safeguards in place, and we do not share your data with third parties unless required by law or explicitly stated in this policy.

8. When Does Tonic And Me Share Your Personal Data with Suppliers?

We share your Personal Data with third parties who provide, maintain, host, support and facilitate your use of Tonic And Me Products and Services. We consider these parties Suppliers and the extent to which we share data with them is limited to providing our Services.

Our list of Suppliers that we use is:

  • Microsoft Inc.
  • Google Inc.
  • NDM Business Hub Limited
  • MediCheck
We share Personal Data with Suppliers for these reasons:
  • Because the Supplier is assisting with the provision of the Tonic And Me online platform to you as our supplier and such sharing of data is necessary to perform the services.
  • Because the Supplier provides an external service that allows us to communicate effectively with you. In this scenario we only share the data required to perform these tasks.

9. Data Security

We take the security of your data seriously and implement a range of technical and organisational measures to protect it from unauthorised access, loss, or misuse. Our systems are built on Google Firebase, which leverages the robust security infrastructure of Google Cloud. Key security features include:
  • Encryption in Transit: All data transmitted between your device, and our servers is encrypted using TLS (Transport Layer Security). This ensures that your information remains private and secure while in motion.
  • Encryption at Rest: Data stored in our systems is encrypted using AES-256, one of the strongest encryption standards available. This protects your data even if physical storage devices are compromised.
  • Service Infrastructure: Our backend services are hosted in Google Cloud’s Europe West (London) data centres, which are designed with multiple layers of security, including physical access controls, intrusion detection systems, and 24/7 monitoring. Google Cloud is certified under numerous internationally recognized standards, including ISO/IEC 27001, SOC 2, and more.
We regularly review and update our security practices to stay aligned with evolving threats and industry best practices.

10. User Rights Under Data Protection Laws

You have the right to:
  • Access your personal data and request a copy of all data we hold about you in the app
  • Rectify inaccuracies by submitting a request to support@tonicandme.co.uk
  • Request partial or complete data deletion from the app of all information we hold about you by submitting a request to support@tonicandme.co.uk
  • Request that we do not process your personal data for the purpose of automated decision making, including for profiling or processing purposes.
  • Object to the processing of your personal data within the app and for aggregated data reporting purposes
  • Object to the use of your data for marketing purposes
To exercise any of these rights, contact: support@tonicandme.co.uk. We will respond to your request within 7 days of receipt and once we have verified your request will action your request no later than 21 days from the time of verification.

11. Consent and Updates

If the purpose of data collection changes, we will update this policy and ask for your renewed consent within the app. You can withdraw your consent at any time.

12. Opt-Out Options

The processing of essential login data cannot be opted out of and is needed to provide the basic functionality within the app. Additional data that you provide when engaging in our products and services cannot be opted out of but are only required if you choose to engage in these services.

You may choose to opt out of the following communication methods at any time:

  • Push Notifications – You have the option to turn off push notifications for all categories (such as wellbeing tips, reminders, or app updates). To do so, go to the settings section of the app on your device and toggle your notification preferences.
  • Marketing Communications – If you wish to opt out of any email communications, including promotional material or newsletters, you can do so by clicking the “unsubscribe” link at the bottom of any email we send.

13. Children’s Privacy

You can only use Tonic And Me if you are over 18 years old. We do not knowingly collect or use any Personal Data of children, and we do not knowingly allow children to use the Tonic And Me app.
If you become aware of a child using the app and submitting data, please contact us immediately at support@tonicandme.co.uk

14. Third-Party Links

This app may include links to third-party websites. Once you leave our app, their policies apply. Please review them before sharing personal data.

15. Data Sharing Preferences

We do not provide an option to share your personal health data from within the Tonic And Me app with third-party applications or platforms.

16. Breach Management

We take the privacy and security of your personal information very seriously. As part of our commitment to safeguarding your data, we adhere to the principles outlined by the Information Commissioner’s Office (ICO) and comply with relevant data protection laws.

In the Event of a Data Breach

In the unlikely event of a data breach that compromises your personal information, we will take immediate steps to investigate the breach, mitigate any potential harm, and notify affected users promptly. We will also work closely with the ICO, and any other relevant authorities as required by law.
  • Notification of a Data Breach: If your personal data has been compromised, we will notify you without undue delay, within 72 hours of discovering the breach, in compliance with GDPR requirements.
  • Steps We Take: We have implemented technical and organisational measures to protect your data from unauthorised access, use, or disclosure. In the case of a breach, we will take swift actions to prevent further risks and inform you of what steps you can take to protect yourself.

We are committed to maintaining the highest standards of data security and protecting your privacy.

For any questions or concerns regarding data security or breaches, please contact us at support@tonicandme.co.uk

17. Data Retention and Destruction

All data collected for service accuracy purposes will be securely stored and used solely to improve the service experience. We do not share your personal information with third parties for marketing or other unrelated purposes.

Your data is only kept as long as necessary. When no longer needed, it is securely deleted from all systems.

You may choose at any time to delete your account from the User Profile page within the Tonic And Me app, or additionally you may request your account is deleted by emailing us at support@tonicandme.co.uk. We may take necessary investigations to confirm your request is valid and once completed your data will be removed entirely from our systems. We may retain minimal data to ensure your request has been actioned.

18: Contact Us

If you have any questions or concerns about your data, please contact us at:
  • Email: support@tonicandme.co.uk
  • Post: Tonic Refreshing Lifestyle Management Ltd, Denise Coates Foundation Building [IC6], Keele University, Keele, Staffordshire, ST5 5NS
This policy may be updated periodically. Please check the app or our website for the latest version.

The Tonic And Me App

Find Out More

Tonic's workplace wellbeing app offers unlimited access to a library of health, wellbeing and lifestyle guidance and support.

We know that supporting engagement consistently leads to a more productive, healthier and resilient workforce. Therefore, our unique and innovative approach utilises intuitive digital technology, blended with personalised on-site services delivered by the Tonic team.

Scan the code, click or tap to download the Tonic And Me app