Privacy Policy

StrengthSync ("SS", "we", "us") is a fitness and wellness app for logging workouts, cardio sessions, nutrition, and personal health metrics, with AI-assisted features such as a coach chat and food parser. This Privacy Policy explains what we collect, how we collect it, why, who we share it with, how long we keep it, and the choices you have. It applies to your use of the StrengthSync app and our website.

What we never do. We do not sell your personal data. We do not share your data with third-party advertising networks. We do not use any data for cross-app or cross-website tracking. We do not use your data to train AI models.

StrengthSync is not a HIPAA covered entity and the app is not a medical device. See our Terms of Service, Section 9, for the health and medical disclaimer.

StrengthSync collects only the data you explicitly enter into the app, authorize us to read, or that is generated as a necessary part of running the service:

• Account information: email address, username.
• Body profile: height, weight, age, biological sex, activity level.
• Workout data: exercises, sets, reps, weight, RPE.
• Cardio session data: type, duration, distance, heart rate, steps, floors, sweat rate.
• Nutrition data: food entries, calorie and macro information, optional notes.
• Health metrics: resting heart rate, HRV, body fat percentage, blood pressure readings, lactate readings, VO2 max estimates, HRmax history.
• Sensitive health context: family-history flags (such as type-2 diabetes, cardiovascular disease, myocardial infarction under age 60) and medication flags (such as statins, beta blockers). These fields are optional and used only to refine general fitness calculations — see Section 9.
• HealthKit data, only if you grant permission: heart rate, HRV, sleep, weight, steps, workouts, and related Apple Health metrics.
• Coach chat and AI prompts: messages you type into the coach chat or food parser (see Section 10).
• Purchase history: subscription tier and renewal status via the App Store and RevenueCat.
• Usage data: product-interaction events such as screens viewed, taps, and features used, captured via PostHog.
• Diagnostics: crash logs (Apple-provided) and performance logs (Vercel and Supabase).
• Device and request metadata: IP address, country, user-agent string, and similar technical metadata observed by our hosting and edge layer (Vercel).

We do not collect contacts, photos, audio recordings, browsing history outside the app, search history outside the app, or any data from other apps on your device. Precise location is only collected during GPS-tracked fitness tests (see Section 4).

We collect information through three paths:

• Direct input. You provide information when you create an account, complete your body profile, log a workout, log food, type into the coach chat, or use any other feature that asks for input.
• Device permissions you grant. Apple HealthKit, Location Services, and push-notification permissions are off by default. We read data from those sources only when you grant the relevant permission, and you can revoke any of them at any time in iOS Settings.
• Automatic technical collection. When you use the app, our hosting layer (Vercel) automatically observes request metadata (IP address, country, user-agent) for hosting and edge routing. Our product analytics provider (PostHog) records interaction events tied to your user ID. Our rate-limit layer (Upstash) records counters keyed by a hashed user ID for abuse prevention.

When you run a GPS-tracked fitness test (such as the 1.5-mile Cooper test), StrengthSync uses your device's location to measure distance and pace. Location samples are processed on-device and only the aggregated test result (total distance and duration) is stored in our database. Raw GPS tracks are not sent to our servers or retained after the test session ends.

You can revoke location access at any time from iOS Settings → Privacy → Location Services → StrengthSync.

Your data is used exclusively to provide and improve the StrengthSync service:

• Display your workout history, progress charts, and analytics.
• Calculate personalized physiology estimates (BMR, TDEE, EER, VO2 max, macros, etc.).
• Generate strength-balance analysis and workout recommendations.
• Power AI-assisted features such as coach chat and food parsing (see Section 10).
• Authenticate you, secure your account, prevent fraud and abuse, and enforce our Terms.
• Measure aggregate product usage to plan, debug, and improve features (Section 7).
• Process subscription payments and entitlements via Apple StoreKit and RevenueCat.

We do not use your data to train AI models. We do not build advertising profiles from your data. We do not sell or rent your data to third parties for marketing.

Your data is stored using Supabase (hosted on Amazon Web Services infrastructure in the United States). Access to your data is enforced with row-level security policies in the database, so only your authenticated account can read or write rows associated with your user ID. All data is transmitted over HTTPS/TLS. Passwords are hashed by Supabase Auth and are never visible to us or stored in plaintext.

We do not store payment card information. All in-app purchases are processed by Apple via StoreKit; subscription state is relayed to us via RevenueCat without exposing card details.

No system is perfectly secure. While we apply commercially reasonable safeguards, we cannot guarantee absolute security.

Breach notification. If we confirm a data breach involving your personal information, we will notify affected users by email within seventy-two (72) hours of confirmation, in addition to any notifications required under applicable law. The notification will describe the nature of the breach, the categories of data involved, the steps we have taken in response, and the steps we recommend you take. We maintain encrypted daily database backups via our infrastructure provider with a target recovery-point objective of twenty-four (24) hours and a commercially reasonable best-effort recovery-time objective.

StrengthSync relies on the following third-party services. Each receives only the subset of data needed for its function, and each is bound by its own privacy policy and terms.

• Supabase — Authentication and database storage (US, on AWS).
• Vercel — Web application hosting and edge routing. Receives request metadata (IP address, country, user-agent).
• Anthropic (Claude API) — Powers coach chat, food parsing, and other AI-assisted features. See Section 10.
• Groq — Used for select low-latency AI inference paths under the same scope as Anthropic. See Section 10.
• RevenueCat — Manages subscription state and links App Store purchase events to your StrengthSync user ID. Receives purchase events, subscription tier, and your StrengthSync user identifier. Does not receive your health, workout, or nutrition data.
• Apple StoreKit — Processes in-app purchases. StrengthSync never sees your payment card information.
• Apple HealthKit — When you authorize HealthKit access, we read heart rate, HRV, sleep, weight, steps, workouts, and related metrics. HealthKit data stays on your device unless we explicitly read a value to display or store it; values we store are stored only in your Supabase account and never shared with any third party. Revoke any time in iOS Settings → Privacy & Security → Health → StrengthSync.
• Upstash — Rate-limit counters keyed by route ID and a hashed user ID. Used to prevent abuse. Does not receive your personal content.
• PostHog — Product analytics. Receives interaction events (screens, taps, feature usage) tied to your user ID. Used to understand how features are used and improve the product. Not used for advertising or cross-app tracking.
• USDA FoodData Central API — Food nutrition data lookup. Only the food query string (e.g. "chicken breast") is sent. No personal data.
• Open Food Facts API — Barcode-based food lookup. Only the scanned barcode is sent. No personal data.

StrengthSync does not use any data for "tracking" purposes as defined by Apple's App Tracking Transparency framework. Specifically: we do not link your data to third-party data for targeted advertising or advertising measurement; we do not share your data with a data broker; we do not use the IDFA; and we do not display third-party advertising in the app.

The app provides optional fields for family-history flags (e.g., family history of type-2 diabetes, cardiovascular disease, or myocardial infarction under age 60) and medication flags (e.g., statin, beta blocker). These fields are optional and exist solely to refine general fitness calculations such as cardiovascular-risk-aware educational content and training-load suggestions.

StrengthSync does not interpret these fields as a clinical assessment. We do not diagnose conditions, recommend medications, or provide medical advice. See Terms of Service Section 9.

Information you enter into these fields is treated with the same row-level-security protections as the rest of your account data and is sent to AI providers only when it is relevant to the specific prompt you are running (see Section 10).

When you use the coach chat or food parser, we send the text of your message to an AI provider (Anthropic or Groq) to generate a response. Along with the message text, we send minimal context needed to produce a useful response — typically a summary of your recent activity (up to the prior 7 days), and, when relevant to the prompt, a subset of your body profile or sensitive-health-context flags described in Section 9.

We strip your account email and your name before sending. Where we need to associate a request with your account for rate-limit or safety purposes, we send your StrengthSync user UUID — an opaque random identifier issued by our authentication provider that cannot be reversed into your name, email, or any external identifier.

Sensitive health context is sent only when relevant. The sensitive-health-context fields described in Section 9 (family-history and medication flags) are sent to AI providers only when the specific prompt you are running requires them — for example, when you explicitly ask about training or nutrition adjustments given a medication or family-history factor. These fields are not included automatically with every AI request.

Per Anthropic's current commercial API terms, Anthropic does not train its models on customer API inputs or outputs. Groq operates under similar commercial-API terms. We do not authorize either provider to train on your inputs.

Providers may log requests on their side for a limited period for safety, abuse-prevention, and operational purposes per their own privacy policies. We do not control how long those provider-side logs are retained. See each provider's privacy policy for details.

StrengthSync operates alongside sibling products under the same LLC. Inter-product data sharing is opt-in only and requires your explicit acceptance of a per-flow consent prompt.

• Periodize (live). Periodize is a coach-bridge product. If you accept a coach invitation by email and join the coach's roster, the inviting coach gains read-only access to the subset of your data needed to coach you: logged workouts, workout sets, body metrics, and cardio sessions. The exact scope is governed by the consent scope you accept at invite time (currently "strength-only" or "all"). Coaches do not receive your nutrition entries, AI chat messages, or the sensitive-health-context fields described in Section 9 unless your consent scope explicitly includes them. You may leave a coach's roster at any time from in-app settings; this ends future data flow to that coach. Data the coach has already viewed cannot be recalled.
• Metacor (planned, not live). Metacor will be a cardiometabolic education tier offered by the same LLC. If and when Metacor launches and you enroll, the relevant cardiometabolic context (lipid panel inputs, blood pressure, family history, medications) will flow to Metacor to power that tier. You will be presented with an explicit consent prompt before any data flows, and you will be able to revoke the sharing at any time from in-app settings. Metacor is not yet available; no StrengthSync data flows to it today.

No data flows to a Periodize coach or to Metacor unless and until you opt in via the per-flow consent prompt.

StrengthSync retains your account data — body profile, workouts, cardio sessions, nutrition entries, health metrics, HealthKit data we have read, AI chat history, and purchase events — for as long as your account is active, so that your progress charts and history remain available to you.

You can delete your account and all associated data at any time from inside the app (Settings → Account → Delete Account) or by emailing support@strengthsync.net. Upon a deletion request, your account data is permanently removed from our active databases within thirty (30) days. Encrypted backups containing historical snapshots may persist for up to an additional ninety (90) days before they are overwritten in the normal backup rotation, after which no copy of your data remains.

Unconverted-trial purge. If you start a paid subscription via a free trial and the trial concludes without converting to paid (for example, the trial ends without a successful charge, or you cancel before conversion), we retain your account data for thirty (30) days after the trial-end date and then automatically purge it from our active databases (with the same backup-rotation tail described above). We send a reminder email at fourteen (14) days post-trial-end so you can reactivate or export your data before purge. Reactivating during the 30-day window restores your account; reactivating after purge requires creating a new account.

Data sent to Anthropic, Groq, RevenueCat, PostHog, Vercel, Upstash, or other third-party services is governed by each provider's own retention policy. We do not control how long those providers retain transaction logs on their side. See each provider's privacy policy for details.

Regardless of where you live, we honor the following rights on a non-territorial basis:

• Access. Most of your data is visible to you in the app. To request a structured export of all data associated with your account, email privacy@strengthsync.net.
• Correction. Edit your body profile, logged workouts, nutrition entries, and other personal data directly in the app.
• Deletion. Delete your account in-app (Settings → Account → Delete Account) or by email. See Section 12.
• Portability. Request a portable copy of your data by emailing privacy@strengthsync.net.
• Withdraw consent for optional integrations. Revoke HealthKit, Location, or push-notification access at any time in iOS Settings. Disable AI-assisted features in-app where exposed as a setting.
• Opt out of inter-product sharing. Decline or later revoke any Periodize or Metacor sharing prompt (see Section 11).
• Non-discrimination. We will not discriminate against you for exercising any of these rights.

StrengthSync is not currently offered to users in the EU, EEA, United Kingdom, Brazil, China, or South Korea. Account creation from those jurisdictions is not supported; if we identify an account that appears to be located in or operated from one of these jurisdictions, we may suspend the account pending dedicated regional compliance work. The rights above are honored for users in jurisdictions where the app is available, including CCPA (California), VCDPA (Virginia), CPA (Colorado), CTDPA (Connecticut), and similar U.S. state privacy frameworks.

StrengthSync is not intended for users under 18, and accounts may only be created by individuals who are 18 or older. We do not knowingly collect personal information from users under 18. If we learn that we have collected personal information from a user under 18, we will delete that account and the associated data. Parents or legal guardians who believe their child has provided us information may contact privacy@strengthsync.net.

Apple requires every app on the App Store to publish a Privacy Nutrition Label describing the categories of data collected and how that data is used. StrengthSync's Privacy Nutrition Label is visible on the App Store product page for the app. The categories declared there correspond to the data types and purposes described in this Privacy Policy, including: Contact Info (email), Identifiers (user ID), Health & Fitness, Sensitive Info, Usage Data, Diagnostics, Purchases, and User Content (coach chat messages).

StrengthSync does not declare any data under Apple's "Used to Track You" category — see Section 8.

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page and bump the internal Privacy Policy version. Material changes will trigger an in-app re-consent prompt on your next authenticated app open; minor changes will be posted here without a separate notice.

Privacy questions, data-access requests, deletion requests, or portability requests:

privacy@strengthsync.net

General support:

support@strengthsync.net