Privacy Policy

01Information We Collect

We collect information you provide directly and information generated through your use of the app.

Account & Identity

• Name and email address (via Clerk authentication)
• Profile photo (if provided via your SSO provider)
• Authentication tokens and session identifiers

Health & Body Data

• Body weight, height, age, sex, and body fat percentage
• Waist circumference measurements
• Weekly check-in scores: recovery, energy, hunger (1–10 scales)
• Training and nutrition adherence self-assessments
• Progress photos (stored encrypted; optional)
• Workout logs: exercises, sets, reps, and estimated 1-rep maxes
• Daily nutrition logs: calories, protein, carbohydrates, and fat

Goals & Preferences

• Fitness goal (bulk, cut, or body recomposition)
• Training experience level and days per week
• Timeline and target weight

Billing Information

• Subscription plan and billing status
• Stripe customer ID (payment details are held exclusively by Stripe and never stored on our servers)

Usage Data

• Pages and features accessed within the app
• Check-in frequency and engagement patterns
• Browser type, device type, and IP address (collected by infrastructure providers)

02How We Use Your Information

• Generate and update your personalised training and nutrition plan
• Produce weekly AI coach summaries based on your check-in data
• Compute readiness, glycogen, and fatigue scores displayed on your dashboard
• Track your progress over time and surface trends
• Process payments and manage your subscription via Stripe
• Send transactional emails (e.g. trial reminders, billing receipts) — no marketing without consent
• Improve the accuracy of our AI plan-adjustment algorithms
• Maintain security, investigate abuse, and comply with legal obligations

We do not sell your personal data or health information to third parties. We do not use your data to serve behavioural advertising.

03AI Processing & Third-Party Models

RecoveryIQuses Anthropic's Claude API to generate coach summaries and plan adjustments. When you submit a weekly check-in, a subset of your data (weight, scores, adherence, and your optional notes) is sent to Anthropic's API to produce a personalised summary.

Anthropic processes this data according to their Privacy Policy. We do not send your name, email, or payment information to Anthropic. Data sent to Anthropic is not used to train their models under the default API terms.

04Third-Party Services

We use the following sub-processors to operate RecoveryIQ:

05Health & Sensitive Data

RecoveryIQ collects body composition and biometric data that may be considered sensitive health information. We treat this data with additional care:

• Health data is encrypted at rest in our Supabase database
• Progress photos are stored in access-controlled private storage buckets
• Health data is never shared with advertisers, data brokers, or analytics platforms
• Employees and contractors with access to production data are bound by confidentiality obligations

RecoveryIQ is not a medical service. Information provided by our AI coach is for informational and educational purposes only and does not constitute medical advice. Always consult a qualified healthcare professional before making significant changes to your diet or training programme.

06Data Retention

• Account and health data is retained for as long as your account is active
• If you delete your account, your data is permanently deleted within 30 days
• Billing records may be retained for up to 7 years to comply with financial regulations
• Anonymised, aggregated usage statistics may be retained indefinitely

07Your Rights

Depending on your location, you may have the following rights regarding your data:

• Access — request a copy of the personal data we hold about you
• Correction — request that inaccurate data be corrected
• Deletion — request that your account and associated data be deleted
• Portability — request your data in a machine-readable format
• Objection — object to certain types of processing
• Withdrawal of consent — withdraw consent where processing is based on consent

To exercise any of these rights, email us at privacy@RecoveryIQ.app. We will respond within 30 days.

08Cookies & Local Storage

We use cookies and browser local storage only where necessary to operate the service:

• Authentication session cookies (set by Clerk) — required to keep you signed in
• Preference storage — remembers UI settings locally in your browser

We do not use tracking pixels, third-party analytics cookies, or advertising cookies.

09Children's Privacy

RecoveryIQ is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a minor, please contact us immediately and we will delete it.

10Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by displaying a prominent notice in the app before the changes take effect. The “Effective date” at the top of this page indicates when this version was last updated. Continued use of RecoveryIQ after changes constitutes acceptance of the revised policy.

11Contact Us

If you have questions or concerns about this Privacy Policy or how we handle your data, please contact: