EVEX Privacy Policy

Introduction

EVEX ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.

Please read this privacy policy carefully. By using EVEX, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Account Information

When you create an account using Sign in with Apple, we may collect:

• Apple User ID: A unique identifier provided by Apple
• Email Address: Optional, only if you choose to share it with Apple Sign-In
• Name: Optional, only if you choose to share it with Apple Sign-In
• Display Name: A name you choose to display in the app
• Avatar: An emoji you select to represent your profile

Fitness Profile Information

During onboarding and app usage, you may provide:

• Fitness Goals: Your primary fitness objectives (e.g., build muscle, lose fat)
• Experience Level: Your workout experience (beginner to advanced)
• Training Preferences: Workout frequency, duration, and equipment access
• Focus Areas: Body areas you want to target (e.g., chest, back, legs)
• Body Metrics: Height, weight, and age (if provided)
• Gender: Optional demographic information

Workout Data

When you use the app, we collect:

• Workout Sessions: Exercises performed, sets, reps, weight used, and duration
• Workout History: A record of your completed workouts
• Workout Templates: Custom routines you create
• Rest Timer Settings: Your preferred rest intervals
• Notes: Any notes you add to exercises or workouts

AI Chat Data

When you interact with our AI fitness assistant:

• Chat Messages: Your questions and requests to the AI
• AI Responses: Generated workout recommendations and advice
• Context Data: Your fitness profile and recent workout history may be shared with the AI to provide personalized recommendations

Important: Chat conversations are processed in real-time and are not permanently stored on our servers.

Device and Usage Information

We automatically collect:

• Device Type: iPhone model and iOS version
• App Usage: Features used and interaction patterns
• Error Logs: Crash reports and performance data

How We Use Your Information

We use your information to:

• Provide Our Services: Create and manage your account, track workouts, and store your fitness data
• Personalize Your Experience: Generate AI-powered workout recommendations based on your goals and history
• Improve Our App: Analyze usage patterns to enhance features and fix issues
• Communicate With You: Send important updates about your account or the app
• Ensure Security: Protect against unauthorized access and maintain data integrity

Third-Party Services

We use the following third-party services to operate EVEX:

Supabase (Data Storage)

• Purpose: Securely stores your account, profile, and workout data
• Data Shared: All user data listed above
• Security: Data is encrypted at rest and in transit
• Location: Cloud infrastructure with enterprise-grade security

OpenAI (AI Features)

• Purpose: Powers our AI fitness assistant for chat and workout generation
• Data Shared: Chat messages, fitness profile, and recent workout history
• Data Retention: OpenAI may retain API data for up to 30 days for abuse detection
• Training: OpenAI does NOT use API data to train their models
• Security: Data is encrypted in transit (TLS 1.2+) and at rest (AES-256)

Apple (Authentication)

• Purpose: Provides secure Sign in with Apple authentication
• Data Shared: Only the identity token for verification
• Data Retained by Us: Apple User ID, and optionally your email and name if you choose to share them

Data Security

We implement industry-standard security measures:

• Encryption: All data is encrypted in transit using HTTPS/TLS
• Secure Storage: Sensitive tokens are stored in iOS Keychain
• Access Control: Database access is restricted using Row-Level Security (RLS)
• Authentication: Secure JWT-based authentication with automatic token refresh

Data Retention

• Account Data: Retained while your account is active
• Workout History: Stored indefinitely until you delete your account
• Chat Messages: Processed in real-time, not permanently stored
• Deleted Accounts: Data is removed within 30 days of account deletion

Your Rights and Choices

You have the right to:

Access Your Data

View your workout history, profile information, and settings within the app.

Delete Your Account

Delete your account and all associated data from Settings > Evex Account > Delete Account.

Control Data Sharing

• Choose what information to share during Apple Sign-In
• Opt out of sharing optional profile information

Export Your Data

Request a copy of your data by contacting us at the email below.

Children's Privacy

EVEX is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

• Know what personal information we collect
• Request deletion of your personal information
• Opt out of the sale of personal information (Note: We do not sell personal information)
• Non-discrimination for exercising your privacy rights

International Users (GDPR)

If you are in the European Economic Area, you have additional rights:

• Legal Basis: We process data based on your consent and legitimate interests
• Data Portability: Request your data in a portable format
• Right to Erasure: Request deletion of your personal data
• Right to Rectification: Correct inaccurate personal data

What We Do NOT Do

To be clear about our practices:

• We do NOT sell your personal information
• We do NOT use your data for advertising
• We do NOT share health data with third parties for marketing purposes
• We do NOT store data in iCloud
• We do NOT access Apple HealthKit data (as of this version)

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Updating the "Last Updated" date at the top of this policy
• Providing notice within the app for significant changes

Your continued use of EVEX after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or your data, please contact us:

Email: privacy@evex.fit

Summary