— LEGAL
Privacy Policy
Momentus Technologies Limited
GLIDE™ — Privacy & Data Policy
Momentus Technologies Limited · www.myglide.ai
Last updated: 25 May 2026 · Effective: 25 May 2026
This document is also available in plain-text, large-print, or audio format on request — please email privacy@myglide.ai.
Your privacy matters to us. Glide handles personal data about your wellbeing and attention — and we take that responsibility seriously. This policy explains exactly what we collect, why, who we share it with, and your rights. We’ve written it in plain English, with a short summary at the top of each section. Questions? Email privacy@myglide.ai.
- Who is responsible for your data?
- What information do we collect?
- Why do we use your data — and what’s our legal basis?
- Your wellbeing and performance data (special category data)
- Who do we share your data with?
- Advertising, analytics, and tracking
- International data transfers
- How long do we keep your data?
- How do we keep your data safe?
- Your privacy rights
- Authorised agents and appeals
- Children’s privacy (under 16)
- Cookies
- Changes to this policy
- Additional rights by location
- How to contact us
1. Who is responsible for your data?
The short version Momentus Technologies Limited is the data controller — meaning we decide how and why your data is used. We’re a UK company regulated by the Information Commissioner’s Office (ICO).
Momentus Technologies Limited (“Momentus”, “we”, “us”, “our”) is the data controller for all personal information collected through the Glide app and website. This means we’re legally responsible for how your data is used.
Company No: 14192201 · Registered in England and Wales
Registered office: 35 Ballards Lane, London N3 1XW
VAT No: 424651310
ICO registration number: ZB867906
Privacy contact:privacy@myglide.ai
If you’re not satisfied with how we handle your data, you have the right to complain to a data protection regulator. In the UK that’s the Information Commissioner’s Office (ICO):
ICO website:www.ico.org.uk · Helpline: 0303 123 1113
For EU/EEA users, your country’s data protection authority contact details are listed in section 15. For California users, section 15 gives details of the CPPA.
Our EU Representative
As a UK company offering services to EU residents, we are required under Article 27 of EU GDPR to appoint a representative in the EU. Our EU representative is:
[EU REPRESENTATIVE — APPOINTMENT PENDING.]
2. What information do we collect?
The short version We collect four types of information: what you give us directly, what we collect automatically when you use Glide, what we infer from that data, and what we receive from other sources. Everything is listed below.
A. Information you give us directly
When you register, subscribe, use the app, or contact us, you may provide:
Account details: your name, email address, date of birth (to verify you’re 16+), and password.
Payment information: processed securely by our payment provider. We never store your full card number on our own systems.
Wellbeing and performance data: stress levels, focus scores, mood logs, sleep reflections, personal goals, and any other information you choose to enter into the app. This is entirely voluntary.
Communications: messages you send to our support team, survey responses, and feedback you provide.
Profile preferences: language settings, notification preferences, and personal goals within the app.
If you access Glide through an employer, school, or partner: we may also receive basic eligibility information from that organisation.
B. Information we collect automatically
When you use our website or app, we automatically collect:
Usage information: features and content you use, sessions you complete, screens you visit, and how long you spend in the app.
Transactional information: records of subscription purchases including product, price, and date.
Log and technical data: IP address, browser type and version, app version, device type, operating system, access times and dates.
Device information: hardware model, operating system, device identifiers, and mobile network information.
Communication records: if you contact us by email, chat, or phone, we may keep a record of that communication.
Cookie data: please see section 13 and our Cookie Policy at www.myglide.ai/cookie-policy
C. Information we infer or generate
Based on how you use Glide, we may generate:
A unique user ID associated with your account.
An approximate location based on your IP address (not precise GPS location — we never use precise location tracking).
Usage patterns and preferences inferred from your activity, used to personalise your experience.
We do not infer or predict medical conditions, mental health diagnoses, or clinical health status from any data you provide. Wellbeing data you share is used only to power your Glide experience.
D. Information we receive from other sources
We may also receive information from:
App stores (Apple App Store, Google Play): basic transaction details when you purchase through their platforms.
Social media platforms: if you sign in using a social media account (e.g. Sign in with Apple or Google), we receive basic profile information according to your privacy settings on that service.
Health apps: with your explicit permission, we may receive data from your device’s health platform (such as Apple HealthKit or Google Health Connect). We only use this for the purpose you enabled the integration for and don’t infer clinical health information from it.
Partner organisations: if your Glide access is provided through an employer or institution, we may receive confirmation of your eligibility from them.
3. Why do we use your data — and what’s our legal basis?
The short version We only use your data when we have a proper legal reason to. The table below explains every purpose clearly — including the legal basis for each one. We never use your data for anything not listed here.
UK GDPR and EU GDPR require us to identify a lawful basis for each way we process your personal data. Here is every purpose for which we use your data, and the specific legal basis we rely on:
| Why we use your data | Data used | Legal basis |
|---|---|---|
| Providing the Glide service | Account data, subscription data, performance and wellbeing data you enter | Contract — necessary to provide the service you’ve signed up for |
| Processing your subscription payment | Payment details, billing information | Contract — necessary to process the transaction |
| Sending account and service emails | Email address, account activity | Contract — necessary to manage your account relationship |
| Improving the app and fixing bugs | Usage data, technical logs, device data | Legitimate interests — improving Glide for all users |
| Monitoring usage and analysing trends | Usage data, anonymised analytics | Legitimate interests — understanding how Glide is used |
| Security, fraud prevention and safety | IP address, log data, account activity | Legitimate interests — protecting Glide and our users |
| Personalising your Glide experience | Usage patterns, preferences, performance data | Contract + Legitimate interests (or Consent where required) |
| Marketing emails about Glide (optional) | Email address | Consent — we only send marketing where you’ve opted in |
| Advertising on third-party platforms (optional) | Anonymised identifiers where consented | Consent (or Legitimate interests where law permits) |
| Complying with legal obligations | Relevant data as required | Legal obligation — e.g. tax records, regulatory compliance |
| Processing your wellbeing and performance data | Stress levels, focus scores, goals, mood logs | Explicit consent — you give this when you first use these features |
Where we rely on ‘legitimate interests’, we’ve carefully considered whether our interest is outweighed by your rights. You can object to this processing — see section 10.
Where we rely on ‘consent’, you can withdraw it at any time. Withdrawing consent won’t affect anything we did before you withdrew it.
4. Your wellbeing and performance data
The short version Data you enter about your stress, focus, mood, and performance may be classified as sensitive ‘special category’ data under data protection law. We treat it with the highest care and we never sell it.
We do not sell your wellbeing or performance data. Ever. This is an absolute rule with no exceptions.
Some data you enter into Glide — such as stress levels, focus scores, mood ratings, sleep reflections, and performance goals — may be classified as ‘special category’ data under UK GDPR (Article 9) and EU GDPR. This type of data receives the strongest legal protections available.
What this means in practice
We only process this data with your explicit consent, given when you first use these features in the app.
You can withdraw consent at any time through your account settings. If you do, we’ll stop processing this data and can delete it on request.
We use this data only to provide the Glide features you’ve chosen to use — not for clinical or diagnostic purposes.
We don’t share this data with third parties for commercial purposes.
We don’t use this data to make automated decisions that significantly affect you.
We apply additional security measures to this data — including stronger encryption standards, restricted access permissions for our team, and enhanced audit logging — over and above our standard protections.
If you integrate Glide with a third-party health app (like Apple HealthKit), data received from that app is subject to the same strict protections.
5. Who do we share your data with?
The short version We share data only where necessary. All third-party suppliers are contractually bound to protect your data. We never sell your personal data.
We do not sell your personal data to any third party. We never have and we never will.
Service providers
We work with carefully selected third-party companies who help us run Glide, including:
Payment processors (e.g. Stripe) — to handle subscription payments securely.
Cloud hosting and infrastructure providers — to store and deliver app and account data.
Analytics providers — to understand how the app is used (data is anonymised or pseudonymised where possible).
Email service providers — to send you account and service emails.
Customer support tools — to help our team respond to your queries.
Fraud prevention and security providers — to keep your account and our platform safe.
All service providers are bound by contracts requiring them to protect your data, use it only for the specific purpose we’ve engaged them for, and comply with applicable data protection law.
Professional advisers
We may share information with our accountants, auditors, legal advisers, and other professional advisers where necessary, subject to appropriate confidentiality obligations.
Employer or institutional partners
If your Glide subscription was provided through your employer, school, or another organisation, we may tell them you’ve activated the subscription. We won’t share your personal wellbeing or performance data with them without your consent.
Legal requirements
We may disclose your information if required by law, court order, or a regulatory authority, or where we reasonably believe disclosure is necessary to prevent fraud, crime, or to protect user safety.
Business transfers
If Momentus Technologies Limited is involved in a merger, acquisition, or sale of all or part of our business, your information may be transferred as part of that transaction. We’ll notify you before any such transfer and ensure your data continues to be protected.
6. Advertising, analytics, and tracking
The short version We may use your data to show relevant ads about Glide on other platforms and measure our own marketing. You can opt out at any time. We never use your wellbeing or performance data for advertising.
We use analytics tools to understand how people use Glide and improve the app. We may also run advertising campaigns on other platforms to reach people who might benefit from Glide.
What this involves
We and our advertising partners may use cookies, device identifiers, and similar technologies to:
Measure how many people visit our website or download our app after seeing an ad.
Show ads about Glide to people on other platforms who may be interested.
Understand how our website and app are used so we can improve them.
What we never do
We never use your wellbeing or performance data (stress scores, focus data, mood logs, etc.) for advertising. We never allow third-party advertisers to target you based on your Glide usage data. We don’t knowingly allow advertising targeted at users under 16.
How to opt out
Cookie-based tracking: use our Cookie Preferences Manager (Cookie Settings link in our website footer).
Mobile app — iOS: Settings → Privacy & Security → Tracking → disable for Glide.
Mobile app — Android: Settings → Google → Ads → Opt out of Ads Personalisation.
Marketing emails: click ‘unsubscribe’ in any email, or email privacy@myglide.ai.
Interest-based advertising: visit youronlinechoices.com (UK/EU) or optout.aboutads.info (US).
7. International data transfers
The short version We try to keep your data in the UK and EEA. Where any of our suppliers transfer data elsewhere, we make sure proper legal safeguards are in place.
We are based in the United Kingdom and aim to store and process your data within the UK and EEA wherever possible. Our primary cloud infrastructure is hosted in the UK and the European Union.
Some of our third-party service providers may transfer and process personal data in countries outside the UK and EEA — most commonly the United States, where some of our analytics, customer support, and email service providers are based. Where this happens, we ensure appropriate safeguards are in place, including:
UK International Data Transfer Agreements (IDTAs) — the UK’s mechanism for lawful transfers post-Brexit.
EU Standard Contractual Clauses (SCCs) — approved by the European Commission.
Adequacy decisions — where the receiving country provides an adequate level of data protection.
You can request a copy of the specific safeguards we use for any international transfer by emailing privacy@myglide.ai.
8. How long do we keep your data?
The short version We keep your data only as long as we need it. The table below gives specific timeframes for every type of data we hold.
| Type of data | How long we keep it | Why |
|---|---|---|
| Account and profile data | While your account is active, plus 2 years after closure | To allow reactivation and resolve queries |
| Wellbeing and performance data | While your account is active; deleted within 30 days of closure or on your request | This is your personal data — we delete it promptly |
| Payment and billing records | 7 years from the transaction date | Required by HMRC and accounting law |
| Legal correspondence and complaints | 6 years from resolution | To comply with legal limitation periods |
| Marketing consent records | Until you withdraw consent plus 2 years | To demonstrate PECR compliance |
| Technical logs and analytics | Up to 26 months | For security monitoring and service improvement |
| Customer support records | 3 years from last interaction | To provide consistent support and resolve disputes |
Backup retention
When you request deletion of your data, your active records are removed promptly from our live systems. Encrypted backups of our systems may retain copies of deleted data for up to 90 days before secure purging — these backups are not used for any other purpose, and the data is not restored or accessed except to recover from a major system failure affecting all users.
When we delete data, we do so securely. We may retain anonymised or aggregated data (from which you cannot be identified) for statistical purposes.
9. How do we keep your data safe?
The short version We use industry-standard security measures to protect your data. If we ever became aware of a breach that put your data at risk, we’d notify you and the ICO as required by law.
We apply appropriate technical and organisational measures to protect your data, including:
Encryption: all data transmitted between your device and our servers is encrypted using TLS/SSL. Sensitive data is also encrypted at rest.
Access controls: only authorised staff have access to personal data, and only to the extent necessary for their role.
Security testing: we carry out regular security reviews and testing.
Incident response: we have a security incident response process. If a data breach occurs that poses a risk to your rights, we’d notify you and the ICO as required by law.
Vendor security: all third-party service providers who handle personal data must maintain appropriate security standards.
If you become aware of any security concern relating to your Glide account, please contact privacy@myglide.ai immediately and we will respond as a priority.
10. Your privacy rights
The short version You have meaningful rights over your personal data. Exercising them is free and straightforward — just email privacy@myglide.ai. We’ll respond within one calendar month.
| Your right | What it means | How to use it |
|---|---|---|
| Right to know | Ask us what personal data we hold and how we use it | Email privacy@myglide.ai |
| Right of access | Get a copy of the personal data we hold about you | Email privacy@myglide.ai |
| Right to rectification | Ask us to correct any inaccurate or incomplete data | Update in account settings, or email us |
| Right to erasure | Ask us to delete your personal data in certain circumstances | Email privacy@myglide.ai |
| Right to portability | Receive your data in a machine-readable format | Email privacy@myglide.ai |
| Right to restrict processing | Ask us to limit how we use your data | Email privacy@myglide.ai |
| Right to object | Object to processing based on legitimate interests, or to direct marketing | Email us or click unsubscribe |
| Right to withdraw consent | Withdraw consent at any time without affecting past processing | In app settings or email us |
We’ll respond to all requests within one calendar month. We won’t charge you except in exceptional circumstances. We may need to verify your identity before processing your request to protect your data.
Opting out of targeted advertising
You can opt out of the use of your data for targeted advertising at any time. See section 6 for details.
11. Authorised agents and appeals
The short version You can ask someone else to exercise your privacy rights on your behalf. If we decline a request, you can appeal.
Authorised agents
You may designate an authorised agent to submit privacy rights requests on your behalf. Agents must contact us at privacy@myglide.ai and provide proof of their authorisation. We may also verify your identity directly with you to protect your data.
Appeals
If we decline your privacy request, we’ll explain why. You can appeal by emailing privacy@myglide.ai with the subject line “Privacy Request Appeal”. We’ll review and respond within 30 days. If you’re still not satisfied, you can complain to your local data protection regulator (see section 15). US users may also contact the attorney general in their state.
12. Children’s privacy
The short version Glide is for users aged 16 and over. We don’t knowingly collect data from anyone under 16. If you’re a parent and think your child has registered, please tell us and we’ll delete their data immediately.
Glide is designed for users aged 16 and over. We don’t knowingly collect personal data from anyone under 16. Our registration process requires users to confirm their age.
If you’re a parent or guardian and believe your child under 16 has created a Glide account, please contact us immediately at privacy@myglide.ai with the subject line “Child Account — Please Delete”. We’ll close the account and delete all associated data promptly.
Where users aged 16 or 17 use Glide with parental consent (as required by our Terms of Service), the parent or guardian who gave consent may exercise privacy rights on the young person’s behalf.
For US users: we do not knowingly collect personal information from children under 13 in compliance with COPPA. If we become aware that a child under 13 has provided personal information, we’ll delete it immediately and notify the parent or guardian where possible.
For users in other countries with different age thresholds for online services (some jurisdictions set this lower or higher than 16): the 16+ rule applies universally for Glide registration. Where local law gives parents or guardians of older minors specific rights, those rights apply alongside this policy.
13. Cookies
The short version Our website uses cookies. Our full Cookie Policy explains exactly which ones, why, and how to control them. You can change your cookie preferences at any time using the Cookie Settings link in our footer.
Our website (www.myglide.ai) uses cookies and similar tracking technologies to make the site work, understand how it’s used, and (where you’ve consented) to support our advertising.
When you first visit our website, you’ll see a cookie banner where you can choose which types of cookies to allow. You can change your preferences at any time using the Cookie Settings link in the footer of our website.
Our full Cookie Policy — listing every cookie we use, its purpose, and how long it lasts — is at www.myglide.ai/cookies.
The Glide mobile app doesn’t use browser cookies, but does use equivalent technologies (device identifiers and analytics SDKs) to support app functionality and analytics, as described in section 2B above.
14. Changes to this policy
The short version We’ll let you know if this policy changes in a meaningful way. The date at the top always shows when it was last updated.
We may update this Privacy & Data Policy from time to time — for example, to reflect legal changes, new features in Glide, or feedback from users or regulators.
When we make significant changes, we’ll notify you by email and/or display a notice in the app or on our website before the changes take effect. Continued use of Glide after changes take effect means you accept the updated policy.
15. Additional rights by location
The short version Some countries give you additional privacy rights. Find your location below to see what extra rights you have, and how to use them.
Wherever you are in the world, the protections in this policy and the rights in section 10 apply to you. The following subsections set out additional country-specific or region-specific rights.
15.1 — Users in the EEA, Switzerland, and UK (GDPR)
If you’re in the EU, EEA, Switzerland, or UK, additional GDPR protections apply — including the right to complain to your local data regulator.
Momentus Technologies Limited is established in the United Kingdom and is subject to UK GDPR and the Data Protection Act 2018. We also comply with EU GDPR for users in the EEA and Swiss data protection law for users in Switzerland.
Additional rights under GDPR:
Right to object: where we rely on legitimate interests, you can object to that processing. We’ll stop unless we can demonstrate compelling legitimate grounds.
Right to withdraw consent: for any processing based on your consent, you can withdraw at any time through your account settings or by emailing privacy@myglide.ai.
Right to lodge a complaint: with your national data protection authority (see below).
Data protection authority contact details:
| Territory | Authority | Contact |
|---|---|---|
| United Kingdom | Information Commissioner’s Office (ICO) | www.ico.org.uk · 0303 123 1113 |
| EU member states | Your national DPA | edpb.europa.eu/about-edpb/board/members |
| Switzerland | Federal Data Protection Commissioner (FDPIC) | www.edoeb.admin.ch |
15.2 — California residents (CCPA / CPRA)
If you live in California, you have extra rights under the CCPA and CPRA. The most important ones are listed here, including the right to know, delete, correct, and opt out of the sale or sharing of your data.
This subsection provides additional disclosures required by the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA).
Categories of personal information we collect (California):
| Category | Examples | Collected? |
|---|---|---|
| Identifiers | Name, email address, IP address, device ID | Yes |
| Commercial information | Subscription history, billing records | Yes |
| Internet / network activity | App usage, log data | Yes |
| Approximate geolocation | Derived from IP address only | Yes |
| Sensitive: health / performance data | Wellbeing and performance data you voluntarily enter | Yes — explicit consent required |
| Inferences | Usage preferences from your activity | Yes |
| Financial information (full card details) | Card number, CVV | No — not stored by us |
Your California rights:
In addition to the rights in section 10, California residents have the right to:
Know: request disclosure of categories and specific pieces of personal information we hold.
Delete: request deletion of your personal information (subject to limited exceptions).
Correct: request correction of inaccurate personal information.
Opt out of sale or sharing: we do not sell your personal information. We may share limited anonymised or pseudonymised identifiers with advertising platforms (e.g. Google, Meta) for measurement and re-targeting where you have consented. California residents have the right to opt out of this sharing at any time — email privacy@myglide.ai with the subject line “California Opt-Out Request”.
Limit use of sensitive personal information: we only use your wellbeing data to provide Glide. We don’t use it for secondary purposes that you have the right to limit.
Non-discrimination: we’ll never treat you differently because you exercised your California privacy rights.
To submit a California privacy request: email privacy@myglide.ai with the subject line “California Privacy Request”. We’ll acknowledge within 10 business days and respond within 45 days (extendable by 45 days with notice). You can designate an authorised agent to submit requests on your behalf.
For further guidance or to raise concerns as a California resident: California Privacy Protection Agency at cppa.ca.gov.
15.3 — Users in other countries
We take privacy seriously for all users worldwide. Here’s a summary of your rights if you’re in Canada, Australia, Brazil, India, or other countries.
The protections in this policy and the rights in section 10 apply to you wherever you live. The table below summarises additional country-specific rights:
| Country | Key law | Your rights / how to complain |
|---|---|---|
| Canada | PIPEDA; Quebec Law 25 | Access, correction, withdrawal of consent. Complaints: priv.gc.ca |
| Australia | Privacy Act 1988 (APPs) | Access, correction, complaints. Contact: oaic.gov.au |
| Brazil | LGPD (Lei 13.709/2018) | Access, correction, deletion, portability, withdrawal of consent. Contact: gov.br/anpd |
| India | DPDPA 2023 | Access, correction, erasure, grievance redressal. Contact: privacy@myglide.ai |
| Singapore | PDPA 2012 | Access, correction, withdrawal of consent. Contact: privacy@myglide.ai |
| South Korea | PIPA | Access, correction, deletion, withdrawal of consent. Contact: privacy@myglide.ai |
| New Zealand | Privacy Act 2020 | Access, correction, complaints. Contact: privacy.org.nz |
| US states (other than CA) | Virginia VCDPA; Colorado CPA; Connecticut CTDPA; Texas TDPSA; others | Access, correct, delete, opt out of sale. Email: privacy@myglide.ai |
If your country isn’t listed, the rights in section 10 still apply. Email privacy@myglide.ai with any privacy request and we’ll respond in accordance with the law that applies to you.
16. How to contact us
The short version We’ve kept this simple. Three addresses cover everything.
What you need
All privacy matters — subject access, deletion, California requests, security concerns, child account concerns
Contact
What you need
Other matters (general support, billing, accessibility, content concerns)
Contact
support@myglide.ai (see our Terms of Service)
What you need
Legal, press, partnerships, business enquiries
Contact
hello@myglide.ai (see our Terms of Service)
We aim to respond to privacy enquiries within 5 working days and to formal UK GDPR data rights requests within one calendar month, as required by law.
When you write to privacy@myglide.ai, please tell us in the subject line what kind of request you’re making — for example, “Subject Access Request”, “Deletion Request”, “California Privacy Request”, “Child Account — Please Delete”, or “Security Concern”. This helps us route your request quickly.
Momentus Technologies Limited
Company No: 14192201 · Registered in England and Wales
Registered office: 35 Ballards Lane, London N3 1XW
VAT No: 424651310
Website: www.myglide.ai
Glide™ is a trademark of Momentus Technologies Limited.
© 2026 Momentus Technologies Limited. All rights reserved.