Privacy Policy

Last updated: 2026-06-10

Fitrox is an AI strength-training app. This policy explains what we collect, why we collect it, and how you can control your data. Questions can be sent to privacy@fitrox.co.

What We Collect

• Account information: name, email, phone number, login provider, and password hash when you use email login.
• Training profile: goals, experience level, weekly schedule, equipment, body-focus areas, and injury or limitation flags you choose to provide.
• Workout data: generated sessions, completed sets, weight, reps, RPE, personal records, estimated 1RM, fatigue, and recovery scores.
• Progress photos: body photos you choose to upload, together with the capture date, pose, an optional note, and an optional body-weight reading. Uploading photos is entirely optional. See Progress Photos below for how they are stored.
• Body measurements: height, body weight, and the units you log them in, captured during onboarding and whenever you update your body metrics in the app.
• Health data from wearables: only if you grant permission, such as sleep, heart rate, HRV, body weight, or readiness data from Apple Health, Health Connect, or similar services. You can revoke this access at any time and Fitrox stops syncing.
• Device and app data: push notification tokens, app version, source app id, crash diagnostics, and basic usage events.
• Payments: subscription status and entitlement events from app-store or payment providers. We do not store full card details.

How We Use Data

• Generate and adapt workouts to your goals, recovery, and available equipment.
• Track progress, PRs, volume, fatigue, and recovery.
• Show your progress photos back to you, including side-by-side comparisons you request in the app.
• Sync wearable or Health Connect data when you explicitly grant access.
• Provide account support, subscription access, notifications, security, and abuse prevention.
• Improve Fitrox using aggregate diagnostics and performance data.

Progress Photos

• Private by default. Progress photos are stored in private object storage with no public access. They are never published to a public URL or CDN path.
• Expiring links only. The app displays your photos through short-lived signed links that expire within hours. A photo link cannot be reused after it expires, and there is no permanent public address for your photos.
• Only you can see them. Photos are tied to your account and served only to you when you are signed in. We do not use progress photos for marketing, model training, or anything other than showing them back to you in the app.
• Deleted with your account. Deleting a photo in the app removes the stored image file, not just the database entry. Deleting your account permanently removes all of your progress photos and their stored image files. See Delete Your Account.

AI Coaching

Fitrox may send relevant training context and your coach-chat messages to backend-hosted AI services so the app can produce coaching responses. We do not place API keys in the mobile app, and we avoid sending more personal context than needed for the coaching task. Progress photos are not sent to AI services.

Sharing

We share data only with service providers needed to operate Fitrox, such as hosting, analytics, crash reporting, push notifications, payments, and AI inference providers. We do not sell personal data.

Your Choices

• You can edit training profile, equipment, and wearable permissions in the app.
• You can revoke Health Connect permissions from Android settings.
• You can request export or deletion by emailing privacy@fitrox.co.
• You can delete your account and data directly from the app, or by email. See Delete Your Account for the full steps, what is removed, what is retained, and the timeframe.