Privacy
Privacy Policy

Your data.
Your rules.

Version 2.0.0 January 15, 2026 GDPR Compliant Terms of Service →
🚫
No data sellingWe never sell your information
🔐
Encrypted storageHealth data encrypted at rest & in transit
🎛️
Full controlAccess, edit, or delete anytime
🌍
Global complianceGDPR & CCPA aligned
Scroll
01

Information We Collect

We only collect what's necessary to give you a great fitness experience.

👤Account Info

Name, email address, profile photo

🏋️Fitness Data

Height, weight, age, goals

📈Health Metrics

Measurements, progress tracking

🥗Nutrition Data

Food logs, calorie intake

🎙️Voice Input

Audio recorded locally to log food via voice; text sent to Google Gemini AI for parsing

📷Camera / Barcode

Camera used for barcode scanning to look up food products; no images are stored or transmitted

📱Device Info

OS, identifiers, usage data

🔒
Sensitive data is encrypted at rest and in transit. Health data, biometrics, and progress photos are stored using encrypted, access-controlled Firebase infrastructure. Your data is never used for advertising.
02

How We Use Your Information

Every piece of data collected serves a specific purpose for you.

1
Deliver the Service

Personalized fitness tracking, custom meal plans, and progress monitoring.

2
Improve the App

Analyze anonymized usage to enhance features and build new functionality.

3
Communicate With You

App updates, support, and optional tips you can turn off anytime.

4
Keep You Safe

Detect fraud, prevent unauthorized access, and ensure legal compliance.

Legal Basis

✓ Consent ✓ Contract Performance ✓ Legal Obligation ✓ Legitimate Interest
03

Data Security & Protection

Enterprise-grade security protecting every byte of your health data.

🔐
Encrypted Storage

Data encrypted at rest and in transit via Firebase

🏛️
Secure Storage

Encrypted, access-controlled infrastructure

🔑
Secure Auth

Google Sign-In with OAuth 2.0 — no passwords stored

🛡️
HTTPS Only

All network traffic enforced over TLS

📋
GDPR + CCPA

Full international compliance

🔍
Minimization

We collect only what is necessary

04

Data Sharing & Third Parties

🚫
We never sell your data. Not to advertisers. Not to data brokers. Not ever. Your health information is not a product.

Limited Sharing Only

WhoWhyWhat
Firebase / GoogleCloud storage & authAccount data, health data
Google Gemini AIAI food parsing (voice & text)Food descriptions you provide
USDA FoodData CentralNutrition lookupFood name or barcode
Open Food FactsBarcode product lookupBarcode number scanned
wger.deExercise databaseNo personal data sent
Law EnforcementLegal requirementAs required
05

Your Rights & Choices

You own your data. Here's how to exercise that ownership.

👁️Access

Request a full copy of your data

✏️Correct

Fix any inaccurate information

🗑️Delete

Permanently erase your account

📦Export

Download in portable format

Restrict

Limit certain processing

🙋Object

Opt out of specific uses

💬
How to exercise your rights: Use In-App Settings, or email khemirislim04@gmail.com. We respond within 30 days. Identity verification may be required.
06

Data Retention

Active accounts

Data retained for the full duration of your account

Deleted accounts

Fully removed within 30 days of deletion request

Legal requirements

Some records kept as required by applicable law

Analytics data

Anonymized data retained for up to 24 months maximum

07

Children's Privacy

👶
Minimum age: 13+. The app is not intended for children under 13. We do not knowingly collect data from children under 13, and delete it immediately if discovered. If you believe your child has created an account, contact us at khemirislim04@gmail.com.
  • Date of birth is collected at signup to calculate fitness metrics
  • Minimal data collection enforced for all users
  • Parents can request deletion of a child's account by contacting us
  • Only age-appropriate educational content for minor users
08

International Data Transfers

Your data is protected by the same standards no matter where you are.

  • Data Centers — Secure US and EU facilities with physical security
  • Standard Clauses — EU Standard Contractual Clauses for all transfers
  • Adequacy Decisions — Full GDPR adequacy framework compliance
  • Local Compliance — Regional laws in all countries we operate
  • Equal Protection — Same security standards everywhere
09

Policy Updates

  • Material changes — 30-day advance notice before anything major
  • Minor updates — Posted in-app and on our website immediately
  • Email notifications — Sent for all significant policy changes
  • Continued use — Constitutes acceptance of updated terms

Version History

v2.0.0Jan 2026Enhanced data protection details
v1.5.0Oct 2025International transfer information
v1.0.0Jun 2025Initial privacy policy
10

Contact Information

We're real people who read every message. Reach out anytime.

📧
Privacy Inquirieskhemirislim04@gmail.com48hr response
🛡️
Data Requestskhemirislim04@gmail.comAccess, correction, deletion
🔒
Security Issueskhemirislim04@gmail.comVulnerability reports
⚖️
Legal & Compliancekhemirislim04@gmail.comRegulatory inquiries
✅ GDPR
✅ CCPA
← Home Terms of Service →