Privacy Policy
This Privacy Policy describes how LowLift Fitness ("LowLift," "we," "us") collects, uses, and protects information when you use the LowLift Fitness mobile application (the "App"). By using the App, you agree to the practices described below.
1. Information we collect
Account information. When you create an account, we collect your email address and a password (stored as a salted hash — we never see your plaintext password). We use this to authenticate you and to send you transactional emails (such as account confirmation).
Session activity. When you start and complete workout sessions in the App, we record:
- Which curated session you started (e.g. "Full Body Activation")
- When you started and ended each session
- Which movements you completed or did not complete (used to improve the session library)
- Whether the session was completed or abandoned
We do not collect any health or fitness measurements, biometric data, location data, photos, contacts, or device identifiers beyond what is necessary to operate the App.
2. How we use information
We use the information we collect to:
- Authenticate you and maintain your session
- Provide and operate the App's core features (session playback, progress tracking, streaks)
- Improve the content library (identifying which movements users find difficult or abandon most often)
- Respond to support requests
We do not sell your information, share it with advertisers, or use it for cross-app tracking.
3. Third-party services
To operate the App, we use the following service providers. These providers process data on our behalf under their own privacy policies:
- Supabase, Inc. — authentication, database, and backend infrastructure. See supabase.com/privacy.
- Resend — sends transactional emails (account confirmation, etc.). See resend.com/legal/privacy-policy.
- Apple Inc. — distributes the App via the App Store; receives crash/performance reports if you've opted into sharing them with developers. See apple.com/legal/privacy.
4. Data retention
We retain your account information and session history for as long as your account is active. If you delete your account (see Section 6), we permanently delete your account and all associated session history from our systems within 30 days. Backups containing your data are overwritten on a rolling basis and are fully purged within 90 days.
5. Your rights
Depending on your jurisdiction (including residents of the EU/UK under GDPR and California residents under CCPA), you may have the right to:
- Access the personal information we hold about you
- Correct inaccurate information
- Delete your account and associated data
- Export your data in a portable format
- Object to or restrict certain processing
You can exercise the deletion right directly in the App (Account → "Delete account"). For any other request, email us at the address below and we will respond within 30 days.
6. Account deletion
You can delete your account at any time from within the App:
- Open the App and sign in.
- Tap the account icon (top right of the Dashboard).
- Tap Delete account and confirm.
This permanently and irreversibly deletes your account, your email, and all session history from our production systems. Backups are purged as described in Section 4.
7. Children's privacy
LowLift Fitness is not directed to children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect information from children under 13. If you believe a child has provided us with personal information, please email us and we will delete it.
8. Security
We use industry-standard practices to protect your information, including encryption in transit (TLS) and at rest (via Supabase's managed Postgres). No system is perfectly secure; if we become aware of a breach that affects your personal information, we will notify you in accordance with applicable law.
9. Changes to this policy
We may update this policy from time to time. If we make material changes, we will notify you in the App and update the "Last updated" date above. Continued use of the App after changes means you accept the updated policy.
10. Contact
Questions about this policy or your data? Email taylor@lowliftfitness.com.