Privacy Policy

Last updated: 2025-09-07 12:03:19.248599+00:00

1. Information We Collect

Personal Information

  • Account Information: Username, email address, password (encrypted)
  • Profile Information: Fitness goals, experience level, preferences
  • Workout Data: Generated workout programs, exercise preferences, training history
  • Usage Information: How you interact with our service, features used, time spent

Automatically Collected Information

  • Technical Data: IP address, browser type, device information
  • Analytics Data: Page views, click patterns, session duration
  • Cookies: Essential cookies for login, preference cookies, analytics cookies

2. How We Use Your Information

  • Service Provision: Generate personalized workout programs using AI
  • Account Management: Create and maintain your account, authentication
  • Communication: Send service updates, support responses, important notices
  • Improvement: Analyze usage patterns to improve our AI algorithms
  • Legal Compliance: Meet legal obligations and protect our rights

3. Third-Party Services

We use the following third-party services that may process your data:

  • OpenAI: Your workout preferences are sent to OpenAI's API to generate personalized workouts. OpenAI's privacy policy applies to this processing.
  • MongoDB Atlas: Secure cloud database hosting for your account and workout data
  • Amazon Web Services (AWS): Cloud hosting and infrastructure services
  • Payment Processors: If you purchase premium features, payment data is processed by secure payment providers

4. Data Sharing and Disclosure

We do not sell your personal information. We may share data only in these limited circumstances:

  • Service Providers: With trusted third parties who help operate our service
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In case of merger, acquisition, or sale of assets
  • Consent: When you explicitly consent to sharing

5. Data Security

  • Encryption: Data in transit and at rest is encrypted
  • Access Controls: Limited access to personal data on a need-to-know basis
  • Regular Audits: Security practices are regularly reviewed and updated
  • Secure Infrastructure: Hosted on enterprise-grade cloud platforms

6. Your Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your personal data
  • Portability: Export your data in a machine-readable format
  • Objection: Object to certain types of data processing
  • Restriction: Request restriction of data processing

7. Data Retention

  • Active Accounts: Data retained while your account is active
  • Inactive Accounts: Deleted after 3 years of inactivity
  • Deleted Accounts: Data purged within 30 days of account deletion
  • Legal Requirements: Some data may be retained longer for legal compliance
  • Analytics Data: Anonymized after 2 years

8. International Data Transfers

Your data may be processed in countries other than your residence. We ensure adequate protection through:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions by relevant data protection authorities
  • Other legally recognized transfer mechanisms

9. Children's Privacy

Our service is not intended for users under 18 years of age. We do not knowingly collect personal information from children under 18. If you become aware that a child has provided us with personal information, please contact us immediately.

10. Cookies and Tracking

We use cookies and similar technologies to:

  • Essential: Enable core functionality like login sessions
  • Analytics: Understand how our service is used (with your consent)
  • Preferences: Remember your settings and preferences

You can manage cookie preferences through our cookie banner or browser settings.

11. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Sending an email notification to registered users
  • Displaying a prominent notice on our service

12. Contact Us

If you have questions about this privacy policy or your personal data, please contact us:

  • Email: macromindhelp@gmail.com
  • Address: [Your Business Address]
  • Data Protection Officer: macromindhelp@gmail.com

13. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Consent: For marketing communications and non-essential cookies
  • Contract: To provide our workout generation service
  • Legitimate Interest: For service improvement and fraud prevention
  • Legal Obligation: For compliance with applicable laws
Questions about your data? You can exercise your data rights or ask questions by contacting us at macromindhelp@gmail.com