YOUR DATA, YOUR CONTROL

Privacy First

We built Gainz to track gains, not you. Your workout data is encrypted, protected, and never sold.

The Short Version

We collect only what's needed to run the app. We encrypt everything. We never sell your data. You can export or delete anytime. That's it.

1. What We Collect

Account Data

Email: To create your account and send important updates
Name: Optional, for personalization

Workout Data

Exercises, sets, reps, weights: To track your progress
Body measurements: Optional, if you choose to track

Device Data

Device type, OS version: To fix bugs and improve the app
Crash reports: Anonymous data to fix issues

What We Don't Collect

We do not use advertising SDKs, ad networks, or tracking identifiers (such as IDFA) for advertising purposes.

2. Your Rights

Export

Download your data anytime in JSON or CSV

Delete

Request full account deletion anytime

Access

See exactly what data we have about you

Opt Out

Control marketing and analytics preferences

These rights apply to all users. EU residents have additional rights under GDPR. California residents have additional rights under CCPA.

3. Apple Health Integration

Gainz integrates with Apple Health (HealthKit) to read and write fitness data including workouts, weight, body fat, heart rate, HRV, resting heart rate, sleep, steps, and active calories. This data is used solely to track your fitness progress and recovery within the app.

Gainz does not sell, share, or use your Health data for advertising or marketing
Health data is stored locally on your device and optionally synced to your Gainz account for cross-device access
You can disconnect Apple Health at any time in Settings
Apple Health integration is optional and only available on iPhone

4. Security

Your workout data is encrypted using AES-256 at rest and TLS 1.3 in transit. We use industry-standard security practices and never store passwords in plain text.

5. Third Parties

We use the following third-party services to operate Gainz:

Supabase: Secure cloud data storage and user authentication
RevenueCat: Subscription management and payment processing — we never see your card details
Sentry: Crash reporting and error monitoring — no personal health data is included in crash reports
PostHog: Anonymized product analytics to improve the app

All data is stored locally on your device first (offline-first architecture) with optional sync. We do not sell or share your data with any third party for advertising or marketing purposes.

6. Data Retention

Workout and profile data is retained as long as your account is active
Deleted workouts are soft-deleted and permanently purged after 30 days
Upon account deletion, all personal data is permanently removed within 30 days
Anonymized analytics data may be retained for product improvement

7. Children's Privacy

Gainz is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

Questions about your data?

We read every message and respond as soon as we can.

You can also email us directly at support@gainz-pro.com.