← Back to Home

Privacy Policy

Effective Date: December 23, 2025

1. Introduction & Scope

This Privacy Policy describes how we collect, use, and protect your information when you use our mobile application ("the App"). We are committed to protecting your privacy and being transparent about our data practices.

This policy applies to all users of the App. By using the App, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

Data Collection Categories (Apple App Store Requirements):

• Data Linked to You: All account information, profile data, fitness and health data, content you create, and images you upload are linked to your user account. This includes: email, name, height, date of birth, gender, workouts, recipes, weight entries, progress photos, fitness goals, grocery lists, and workout completion statistics.
• Data Used to Track You: We do not use your data to track you across other apps or websites. We do not share your data with third parties for tracking purposes. The only tracking we perform is:
  • Affiliate referral attribution (if you sign up through an affiliate link) - this is used only to attribute signups to the correct affiliate and is not used for cross-app or cross-website tracking
  • Subscription management services (for managing your subscription status) - this is not used for tracking purposes
  • As defined by Apple, this data is not used for tracking purposes and does not involve linking user data with third-party data for advertising or measurement.
• Data Not Linked to You: Technical data such as IP addresses and error logs may be collected automatically by our service providers for security and functionality purposes. This data is not linked to your user account unless you are signed in, and is retained only for security and debugging purposes (up to 90 days).

2.1 Information You Provide

Account Information:

• Email address (required for account creation)
• Name (optional, may be provided during sign-up or profile setup)

Profile Information:

• Height (in inches)
• Date of birth
• Gender (optional, provided during onboarding)

Fitness and Health Data:

• Workout routines, exercises, sets, and repetitions
• Recipe information, ingredients, and cooking instructions
• Weight tracking entries
• Progress photos (front, side, and back views)
• Fitness goals and target dates
• Grocery lists and shopping items
• Workout completion dates and history
• Custom exercises you create
• Favorite exercises you save

Content You Create:

• Workout folders and organization
• Recipe folders and organization
• Notes and descriptions for workouts and recipes
• Workout and recipe images you upload or capture
• Progress photo metadata (date, weight, notes)

Onboarding Information:

• Fitness goals and preferences
• Workout organization preferences
• Workout sources (where you find workouts)
• Referral source (if you signed up through an affiliate link)

2.2 Information Collected Automatically

Device Information:

• Device type and model (collected by our service providers for app functionality)
• Operating system version (collected by our service providers for app functionality)
• App version (collected by our service providers for app functionality)
• Device identifiers generated by the operating system for authentication and app functionality (such as identifiers used by authentication providers)

Technical Information:

• IP address (collected by our service providers for security and functionality)
• Network connection type (collected by our service providers for app functionality)
• Error logs and crash reports (collected by our service providers for app improvement)

Usage Information:

• Workout completion dates and statistics (stored in your account for progress tracking)
• App functionality data (necessary for the App to operate, such as which workouts you've completed)

2.3 Information from Social Media Platforms

When you import content from social media platforms (such as Instagram):

• We may temporarily download videos you provide for processing
• We extract workout or recipe information using AI services
• We save video thumbnails as workout or recipe images
• We store the source URL of the social media post
• We do NOT store the original videos permanently (they are deleted shortly after processing and not retained longer than necessary to provide the feature)
• We do NOT access your social media account credentials
• We do NOT access your social media account or any content you haven't explicitly shared with us

2.4 Information from Third-Party Services

Authentication Providers:

When you sign in using third-party authentication services (such as Apple Sign In or Google Sign In):

• Email address
• Name (if provided by the authentication provider)
• Unique identifier from the authentication provider

Exercise Data Services:

• When you browse exercises in the App, we may fetch exercise information from third-party content APIs to provide you with exercise details and instructions. This data is fetched on-demand and not stored permanently.

3. How We Use Information

We use the information we collect to:

Provide the Service:

• Create and manage your account
• Store and sync your workouts, recipes, and data across your devices
• Process and extract information from images and videos you provide
• Provide AI-powered features for workout and recipe extraction
• Enable subscription management and access to premium features
• Display exercise information and instructions

Improve the Service:

• Review limited, account-linked usage data necessary to operate and improve core app functionality (such as workout completion records)
• Fix bugs and errors
• Develop new features
• Optimize app performance

Communication:

• Send you service-related notifications (if enabled)
• Respond to your support requests
• Send important updates about the App
• Send marketing communications only with your explicit consent

Legal Compliance:

• Comply with legal obligations
• Enforce our Terms of Service
• Protect our rights and prevent fraud

4. How We Share Information

4.1 Service Providers

We share information with third-party service providers who help us operate the App. All service providers are contractually required to protect your information and process data only on our behalf. We use the following categories of service providers:

Cloud Hosting and Database Services:

• Database storage and management services (e.g., PostgreSQL-based cloud databases)
• User authentication services
• File storage for images and photos (workout images, recipe images, progress photos, ingredient images)
• All data is stored securely with encryption and protected by access control policies

AI and Machine Learning Services:

• Video transcription services (for extracting workout information from videos)
• Image analysis and OCR services (for extracting text and information from images and videos)
• Content you submit for processing is sent to AI service providers according to their privacy policies
• We do not intentionally use your content to train third-party AI models

Authentication Providers:

• Third-party authentication services (e.g., Apple Sign In, Google Sign In)
• Data is processed according to the authentication provider's privacy policy

Payment Processing Services:

• Payment processing for subscriptions (handled entirely by app store platforms such as Apple App Store or Google Play Store)
• Data is processed according to the payment processor's privacy policy

Subscription Management Services:

• Subscription management and entitlement verification
• Subscription data is processed according to the service provider's privacy policy
• Payments are handled by app store platforms, not directly by subscription management services or us

Content and Data Services:

• Exercise data and information services (fetched on-demand when you browse exercises)
• No personal information is shared with these services

4.2 Affiliate Program

If you sign up through an affiliate link:

• We track the referral source (affiliate code) to attribute signups to the correct affiliate
• We may share aggregated referral statistics with affiliates (no personal information is shared - only counts and conversion rates)
• Affiliate codes are stored locally on your device for up to 90 days for attribution purposes
• When you click an affiliate link (if you visit our website), we may collect your IP address and user agent for attribution purposes only (this data is not linked to your user account until you sign up)

4.3 Legal Requirements

We may disclose your information if required by:

• Law or legal process
• Government requests
• Court orders
• To protect our rights, property, or safety, or that of our users

4.4 Business Transfers

If we are involved in a merger, acquisition, or sale of assets:

• Your information may be transferred as part of that transaction
• We will notify you of any such change in ownership or control of your personal information

4.5 We Do NOT Sell Your Data

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

5. Data Retention

Account Data:

• We retain your account information and profile data for as long as your account is active
• If you delete your account, we will delete your personal information within 30 days, except where we are required to retain it for legal purposes

Content Data:

• Workouts, recipes, progress photos, weight entries, and other content you create are retained until you delete them or delete your account
• Deleted content is permanently removed from our systems within 30 days

Technical Data:

• Error logs and crash reports are retained for up to 90 days for debugging purposes
• IP addresses collected for affiliate tracking are retained for up to 90 days

Backup Data:

• Data in backups may be retained for up to 90 days after deletion for disaster recovery purposes
• Backup data is not actively accessed and is automatically purged on a rolling basis

6. User Rights and Choices

6.1 Access and Correction

You can access and update most of your information directly in the App:

• Update your profile information (name, height, date of birth, gender)
• View, edit, or delete your workouts, recipes, and other content
• View or delete your progress photos and weight entries

6.2 Account Deletion

You can delete your account at any time through the App settings. When you delete your account:

• All your personal information and content will be deleted
• This action cannot be undone
• Some information may be retained for legal compliance purposes

6.3 Data Export

You can request a copy of your data by contacting us at the email address provided below.

6.4 California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

• Know what personal information we collect, use, and disclose
• Request deletion of your personal information
• Opt-out of the sale of personal information (we do not sell personal information)
• Non-discrimination for exercising your privacy rights

To exercise these rights, please contact us at the email address provided below.

Categories of Personal Information We Collect (CCPA):

• Identifiers (email, name, unique identifiers)
• Personal characteristics (height, date of birth, gender)
• Health information (fitness data, weight entries, progress photos)
• Commercial information (subscription status)
• Internet activity (limited to workout completion records and app functionality data)
• Geolocation data: We do not collect any location data

Categories of Third Parties We Share With:

• Service providers (cloud hosting, AI services, authentication providers, subscription management services)
• Payment processors (app store platforms - for subscription payments only)

6.5 European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the right to:

• Access your personal data
• Rectify inaccurate personal data
• Erase your personal data ("right to be forgotten")
• Restrict processing of your personal data
• Data portability (receive your data in a structured format)
• Object to processing of your personal data
• Withdraw consent at any time (where processing is based on consent)

Legal Basis for Processing (GDPR):

• Contract performance (providing the App service)
• Legitimate interests (improving the App, preventing fraud)
• Consent (for marketing communications, where applicable)
• Legal obligation (compliance with laws)

To exercise these rights, please contact us at the email address provided below.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

Security Measures:

• All data is encrypted in transit using TLS/SSL
• Data stored with our cloud hosting providers is encrypted at rest
• Access control policies ensure users can only access their own data
• Authentication is handled by secure third-party authentication providers
• Access to your data is restricted to authorized personnel only

Limitations:

• While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure
• We cannot guarantee absolute security, but we work to protect your information to the best of our ability

Data Breach:

• In the event of a data breach that may affect your personal information, we will investigate immediately and notify affected users as required by applicable law

8. Children's Privacy

The App is not intended for children under the age of 13 (or the minimum age required by local law). We do not knowingly collect personal information from children under 13 (or the applicable minimum age). If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we learn that we have collected personal information from a child under 13, we will delete that information promptly.

For users between 13 and 18, we recommend that parents or guardians review and approve their use of the App, as it collects health and fitness data (workout information, weight entries, and progress photos).

9. International Users

Data Location:

• Your data is stored on servers operated by our cloud hosting service providers
• Data may be stored in the United States or other countries where our service providers operate
• By using the App, you consent to the transfer of your information to these locations

International Transfers:

• If you are located outside the United States, your information may be transferred to and processed in the United States
• We ensure appropriate safeguards are in place for international data transfers

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated policy in the App
• Updating the "Effective Date" at the top of this policy
• Sending an email notification (for material changes)
• Displaying a notice in the App

Your continued use of the App after changes are posted constitutes acceptance of the updated policy. We encourage you to review this policy periodically.

11. Contact Information

We are the data controller for the personal information processed under this Privacy Policy.

If you have questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us at:

Email: support@fitlike.app

Data Protection Inquiries:

• For GDPR-related inquiries, please use the email address above with "GDPR" in the subject line.
• For CCPA-related inquiries, please use the email address above with "CCPA" in the subject line.