Skip to main content

Privacy Policy

How we collect, use, and protect your personal information

Last updated: 10/24/2025

Information We Collect

Account Information

  • Email address (required for account creation and login)
  • Username (optional, for personalization)
  • Full name (optional, for personalization)
  • Password (encrypted and securely stored)

Profile Information

  • Age, gender, height, weight (optional, for personalized recommendations)
  • Fitness goals and preferences
  • Preferred units (metric/imperial)
  • Weekly workout goals

Workout Data

  • Workout templates you create
  • Exercise logs and progress tracking
  • Sets, reps, weights, and durations
  • Workout completion times and ratings
  • Notes and personal comments

Usage Information

  • Pages visited and features used
  • Session duration and login/logout times
  • Device information (browser type, operating system)
  • IP address (for security and analytics)

How We Use Your Information

To Provide Our Services

  • Create and manage your account
  • Store and track your workout data
  • Provide personalized exercise recommendations
  • Generate progress reports and analytics

To Improve Our Services

  • Analyze usage patterns to improve user experience
  • Identify and fix technical issues
  • Develop new features based on user needs

For Security

  • Prevent fraud and unauthorized access
  • Monitor for suspicious activity
  • Comply with legal obligations

Information Sharing

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

Service Providers

We use trusted third-party services to help us operate our platform:

  • Supabase - Database and authentication services
  • Vercel - Website hosting and deployment

Legal Requirements

We may disclose your information if required by law or to protect our rights and safety.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction.

Data Security

We implement industry-standard security measures to protect your personal information:

  • All data is encrypted in transit using HTTPS
  • Passwords are hashed and salted using secure algorithms
  • Database access is restricted and monitored
  • Regular security audits and updates
  • Automatic session timeout for inactive users

Your Rights

You have the following rights regarding your personal information:

  • Access - View your personal data through the application
  • Update - Modify your profile information at any time
  • Delete - Delete individual workouts and data, or request account deletion via email
  • Opt-out - Stop receiving communications from us

Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain your login session
  • Remember your preferences and settings
  • Store your cookie consent decision
  • Improve user experience

Analytics and Tracking

Currently, we do not use third-party analytics or tracking services. If we add analytics in the future, they will only be loaded with your explicit consent through our cookie consent banner. All consent decisions are logged for compliance purposes.

You can control cookie settings through your browser preferences. However, disabling certain cookies may affect the functionality of our website.

Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this policy:

  • Account Data: Retained while your account is active
  • Workout Data: Retained while your account is active, can be deleted individually
  • Usage Data: Currently not collected for analytics purposes
  • Audit Logs: Limited to workout operations and consent decisions, retained by Vercel for up to 30 days
  • Cookie Consent: Stored in your browser and logged to Vercel for up to 30 days

Analytics Notice:

Currently, we do not use third-party analytics services. If we add analytics in the future, they will only be loaded with your explicit consent, and retention periods will be updated accordingly.

Account Deletion:

You can request account deletion at any time by contacting us at buildmyworkout.fit@gmail.com. Please include your username or email address for verification. We will process your request and permanently remove all your data from our servers. This action cannot be undone.

International Data Transfers

Your personal information is primarily stored and processed in the United States. We use service providers that comply with applicable data protection standards:

  • Data is primarily stored in the United States
  • We use service providers that comply with data protection standards
  • Appropriate security measures are in place for data protection
  • We comply with applicable US data protection laws and regulations

Your Rights (California Users)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Request information about personal data collected
  • Right to Delete: Request deletion of personal data
  • Right to Opt-Out: Opt out of the sale of personal data (we do not sell data)
  • Right to Non-Discrimination: Not be discriminated against for exercising rights

To exercise these rights, please contact us at buildmyworkout.fit@gmail.com.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws:

  • We will notify you of material changes via email or website notice
  • The "Last updated" date at the top will be revised
  • Continued use of our services after changes constitutes acceptance
  • You may contact us if you have questions about any changes

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

buildmyworkout.fit@gmail.com