Privacy Policy

MyFitnessCal

Last Updated: April 8, 2026

This Privacy Policy describes how MyFitnessCal (“we,” “our,” or “us”) collects, uses, discloses, and protects personal information when you access or use our mobile application, website, and related services (collectively, the “Service”).

By using MyFitnessCal, you acknowledge that you have read and understood this Privacy Policy.

1. Interpretation & Definitions

For the purposes of this Privacy Policy:

• “Account” means a unique account created to access the Service.

• “Personal Data” means any information that identifies or relates to an identifiable individual.

• “Wellness Data” means non-medical data related to fitness, nutrition, and general wellbeing.

• “User Content” means any data, logs, inputs, or materials submitted through the Service.

• “AI Output” means informational insights or responses generated by automated systems based on User Content.

• “Service” refers to the MyFitnessCal application and related offerings.

2. Scope & Global Applicability

This Privacy Policy applies to users worldwide and is intended to comply with applicable data protection laws, including but not limited to:

• General Data Protection Regulation (GDPR)

• UK GDPR

• California Consumer Privacy Act (CCPA/CPRA)

• Other applicable international privacy laws

Where local law provides additional rights, those rights apply.

3. Eligibility & Children’s Privacy

MyFitnessCal is not intended for children under the age of 13.

• Users must be at least 13 years old to use the Service.

• We do not knowingly collect Personal Data from children under 13.

• If such data is identified, it will be deleted promptly.

Parents or guardians may contact us regarding potential data removal.

4. Information We Collect

4.1 Information You Provide

• Account details (email address, username)

• Profile preferences and goals

• Wellness and fitness logs (steps, calories, water intake, exercise, fasting)

• Chat messages typed by the user in the wellness chatbot

• Customer support communications

4.2 Wellness & Health-Related Data

MyFitnessCal processes general wellness data only.
This includes activity, nutrition, hydration, and fasting records.

Important clarifications:

• Heart rate and blood pressure data, if displayed from connected devices, are shown in real time only.

• Such data is not stored, retained, or processed by MyFitnessCal servers.

• The Service does not provide medical advice, diagnosis, or treatment.

None of the health data described in this section — including heart rate, calories, sleep, blood oxygen, or any other HealthKit metric displayed in the app — is transmitted to our backend servers, shared with any third party, or sent to our AI chatbot under any circumstances.

4.3 AI Chatbot

• Our app includes a wellness chatbot that provides general fitness suggestions such as workout tips and goal advice. The chatbot is powered by OpenAI, Inc API. The chatbot receives only two types of information: the fitness goal the user selected during onboarding (for example, "Build Muscle" or "Lose Weight") and the text messages the user types in the chat. Both of these are plain text voluntarily entered by the user.

• The chatbot does not receive any HealthKit data. It does not receive steps, heart rate, sleep, calories, blood oxygen, or any other health metric displayed in the app. There is no connection between the health dashboard and the chatbot. Health data never leaves the device except where explicitly described in Section 4.2.

4.4 Automatically Collected Data

• Device identifiers and technical data

• Usage statistics and diagnostics

• Log files

• Push notification tokens

5. Cookies & Tracking Technologies (Web Users)

If you access MyFitnessCal via a website, we may use cookies or similar technologies to:

• Enable essential site functionality

• Analyze usage patterns

• Improve performance

You may control cookie preferences through browser settings.

6. How We Use Information

We use collected data to:

• Provide and operate the Service

• Maintain user accounts

• Generate progress insights and summaries

• Send notifications and service-related communications

• Process subscriptions and in-app purchases

• Improve security, performance, and reliability

• Comply with legal obligations

7. Legal Basis for Processing (GDPR)

We process Personal Data under the following bases:

• User consent

• Performance of a contract

• Legitimate interests (service improvement, security)

• Legal obligations

Users may withdraw consent where applicable.

8. User Content License

By submitting User Content, you grant MyFitnessCal a limited, non-exclusive, royalty-free license to store, process, display, and analyze such content solely for the purpose of operating and improving the Service.

This license terminates upon deletion of your account, subject to legal retention obligations.

9. Subscriptions & Payments

• Payments are processed through Apple App Store and Google Play.

• We do not store full payment card details.

• Transaction records may be retained for accounting and legal compliance.

10. Data Storage & Security

• Data is stored using MongoDB and Microsoft Azure infrastructure.

• Reasonable administrative, technical, and organizational safeguards are implemented.

• No system is completely secure; use is at your own risk.

11. Data Retention

• Data is retained while your account remains active

• You may request deletion at any time

• Some data may be retained where legally required

12. Data Sharing & Disclosure

We do not sell Personal Data.

• We share data only in the following specific and limited circumstances:

  OpenAI, Inc. (AI Service Provider) — The text messages a user types in the chat and their self-declared fitness goal from onboarding are sent to OpenAI API. for the purpose of generating wellness suggestions. No HealthKit data, no health metrics, and no personally identifiable health information is included in these requests. OpenAI's privacy policy is available at openai.com/policies/row-privacy-policy/.

• Cloud Infrastructure — User account data and step count history are stored using MongoDB and Microsoft Azure solely to operate the Service and preserve the user's personal history within the app.

• Push Notification Services — Device tokens are used to deliver in-app notifications.

• Legal Authorities — Data may be disclosed where required by applicable law.

  
  

  No other sharing takes place. Health data displayed in the app is read from HealthKit for display purposes only and is not transmitted to any server or third party, with the sole exception of step count which is stored in our own backend for the user's personal step history as described in Section 4.2.

  
  

13. International Data Transfers

Your data may be processed outside your country of residence.
Appropriate safeguards are applied for cross-border transfers.

14. Your Privacy Rights

Depending on your jurisdiction, you may have rights to:

• Access your data

• Correct inaccuracies

• Request deletion

• Restrict or object to processing

• Data portability

• Withdraw consent

Requests can be submitted via the contact details below.

15. Marketing Communications

You may receive service-related messages and optional communications.
You may opt out of non-essential communications at any time through settings or unsubscribe mechanisms.

16. Third-Party Links

The Service may contain links to third-party websites or services.
We are not responsible for their privacy practices.

17. Changes to This Policy

We may update this Privacy Policy periodically.
Updates take effect when posted with a revised “Last Updated” date.

18. Contact Information

MyFitnessCal
Email: support@myfitnesscal.com
Operating Globally