Privacy Policy

1. Introduction

This Privacy Policy ("Policy") explains how Fitness Coach AI ("we," "us," "our," or "Company") collects, uses, processes, and protects information when you access our Application ("Application" or "Service").

Key Principle: This Application does not require user registration or account creation. We do not collect personal information. We collect only limited technical data necessary to operate the Service.

By using the Application, you acknowledge that you have read and understood this Privacy Policy and consent to our data practices as described herein.

If you do not agree with this Policy, you should immediately cease using the Application.

2. Scope and Applicability

This Privacy Policy applies to:

• All web-based versions of the Application
• All ChatGPT integrations of the Application
• All associated services, features, and functionality
• All devices and browsers accessing the Application

Out of Scope: This Policy does not apply to third-party websites, applications, or services linked from our Application. We are not responsible for the privacy practices of third parties, including OpenAI and ChatGPT.

3. Information We Do Not Collect

This Application does not collect personal information, including:

• Names or email addresses
• Phone numbers or postal addresses
• Date of birth or age
• Payment or financial information
• Social Security numbers or identification documents
• Health, genetic, or biometric information
• Workout history or fitness data
• Photographs, video, or audio recordings
• User accounts or login credentials
• Employment or education information
• Race, ethnicity, religion, or sexual orientation
• Precise geolocation data (GPS coordinates)

Important: If personal information is accidentally collected due to technical error, it will be immediately deleted and not used for any purpose.

4. Technical Data We Collect

We collect limited technical data to operate the Application and provide improved service. This data does not identify you as an individual.

Information automatically collected includes:

• IP Address - for service operation, security, regional service delivery (anonymized after 24 months)
• Device Type - to optimize user interface and functionality
• Operating System - to ensure compatibility and performance
• Browser Type and Version - to debug issues and optimize compatibility
• Pages/Features Accessed - to understand which features are most useful
• Time and Date - to analyze usage patterns and peak times
• Duration of Session - to monitor session length and engagement
• General Location - country/region level only for regional services
• Error Logs - to debug and fix technical issues

5. Data Storage and ChatGPT

ChatGPT Integration: The Application runs inside ChatGPT, a third-party service operated by OpenAI. All conversations and workout plans happen within ChatGPT.

Important: We do not store your workout data, exercise history, or any content from your ChatGPT conversations. Your data stays in your ChatGPT account and is subject to OpenAI's privacy policy.

For information about how OpenAI handles your data within ChatGPT, please review OpenAI's Privacy Policy at openai.com/privacy.

6. Local Storage on Your Device

The Application may store information locally on your device using browser storage technologies, including:

• Application settings and preferences you configure
• Theme preferences (light/dark mode)
• Session identifiers
• Cached content for faster loading
• Your language preferences

Important: All data stored locally on your device:

• Is not transmitted to our servers
• Remains entirely under your control
• Can be deleted by clearing your browser cache, cookies, or local storage
• Is not accessible to us after you close the Application

7. How We Use Technical Data

We use Technical Data to:

• Maintain service operation and ensure the Application functions correctly
• Diagnose technical issues and resolve problems or crashes
• Monitor system performance and track load times
• Prevent fraud and abuse by detecting malicious activity
• Enhance security and protect against threats
• Improve user experience based on usage patterns
• Analyze which features are most useful to users
• Comply with legal requirements

We do NOT use Technical Data for:

• Creating individual user profiles
• Sending personalized marketing communications
• Tracking you across different websites
• Making automated decisions that affect you
• Selling your data to third parties

8. Cookies and Tracking Technologies

We may use essential cookies for basic functionality and analytics cookies to understand usage patterns.

Types of cookies we use:

• Essential Cookies: Required for the Application to function (session IDs, security tokens)
• Analytics Cookies: Help us understand how users interact with the Application
• Preference Cookies: Remember your settings (theme, language)

You can control cookies through your browser settings. Disabling certain cookies may affect Application functionality.

9. Data Retention and Deletion

Technical data retention periods:

• IP Addresses: Up to 24 months, then anonymized
• Device/Browser Information: Up to 24 months
• Usage Logs: Up to 24 months
• Error/Crash Logs: Up to 6 months
• Session IDs/Cookies: Session-based or up to 24 months
• Analytics Data (Aggregated): Up to 36 months

After retention periods expire, data is permanently deleted or anonymized beyond recognition.

10. Data Sharing and Third Parties

We do NOT sell, rent, or share Technical Data with third parties for marketing purposes.

We may share Technical Data only in limited circumstances:

• Service Providers: Third-party vendors who help operate the Application (hosting, analytics, security)
• Legal Compliance: When required by law or to protect our rights
• Business Transfers: In the event of a merger, acquisition, or asset sale

11. Security Measures

We implement reasonable technical measures to protect Technical Data:

• HTTPS/TLS encryption for all data transmission
• Encrypted storage of Technical Data
• Restricted access to storage systems
• Regular security audits and vulnerability assessments
• Incident response procedures
• Compliance with industry security standards

Important: No security system is completely impenetrable. We cannot guarantee absolute protection against all cyberattacks. You acknowledge and accept this risk when using the Application.

12. Children and Minors

This Application is not directed to children under 13 years of age. We do not knowingly collect data from children under 13.

Children should not use the Application without parental supervision. We comply with the Children's Online Privacy Protection Act (COPPA).

If we discover that we have inadvertently collected information from a child under 13, we will immediately delete it.

13. Your Rights (GDPR/CCPA)

Depending on your location, you may have the following rights:

• Right to Access: Request what Technical Data we hold about you
• Right to Correction: Correct inaccurate or incomplete data
• Right to Deletion: Request deletion of your data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to certain types of processing
• Right to Non-Discrimination: Equal service regardless of privacy choices
• Right to Withdraw Consent: Withdraw consent for data processing

Important Limitation: Because we don't maintain user accounts, we cannot identify and delete data specific to you. You can delete local data by clearing your browser cache.

14. International Data Transfers

Technical Data may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from your jurisdiction.

When we transfer data internationally, we ensure appropriate safeguards are in place, including standard contractual clauses approved by relevant authorities.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons.

Material changes will be communicated by posting the updated Policy on this page with a new "Last Updated" date. We encourage you to review this Policy periodically.

16. Contact Information

For questions, concerns, or to exercise your privacy rights, please contact us through the ChatGPT interface or visit our website.

Response Time: We aim to respond within 5-7 business days for general inquiries and within 30 days for data subject requests.

17. Acknowledgment

By using the Application, you acknowledge:

• You have read and understood this Privacy Policy
• You understand we collect only Technical Data, not personal information
• You consent to data collection and use as described
• You understand local storage and its implications
• You understand your data in ChatGPT is governed by OpenAI's policies
• You understand no personal information is collected or stored by us