Last updated July 10, 2026
Privacy Policy
This Privacy Policy describes how LiftAi (“LiftAi,” “we,” “us”) collects, uses, and protects information when you use the LiftAi mobile application and related services (the “Services”). We built the Services for serious lifters, and we treat your training and health data with the same seriousness.
By using the Services, you agree to the practices described here. If you do not agree, please do not use the Services.
1. Information We Collect
Account Information
When you create a LiftAi account, we collect your email address and a unique account identifier. You may optionally provide a display name. You can sign up using email and password or Sign in with Apple. Authentication is performed by our authentication provider; if you use email and password, your password is salted and hashed by the provider, and we do not have access to its plaintext form. If you use Sign in with Apple, we never see your Apple credential.
Workout & Fitness Data
When you use the Services, we collect what we call Workout Data: workout sessions, exercises, sets, reps, weights, durations, rest periods, personal records, custom workout templates, effort ratings, notes, and progress metrics derived from this activity.
Profile & Body Data
You may choose to provide your training experience level, goals, training frequency, available equipment, body weight, height, age, biological sex, and weight unit preference. This information is used to personalize the experience and improve coaching relevance.
Apple Health Data
If you grant LiftAi permission through Apple's Health app, we may read selected health metrics, including body composition, resting heart rate, heart rate variability, VO2 Max, daily activity, and date of birth. We may also write completed workouts back to Apple Health. We process Apple Health Data in accordance with Apple's HealthKit guidelines. See Apple Health Integration below for the full statement.
Subscription & Billing Information
LiftAi Pro is billed exclusively through the Apple App Store. Apple processes all payments and stores all payment information. We receive only an entitlement status (active or inactive) and a subscription identifier. We do not see, store, or process your credit card or Apple ID payment details.
AI Coaching Inputs
When you enable and use AI features, we process the messages, meal descriptions, and photos you submit, along with relevant training, nutrition, profile, and connected Apple Health context. Photos used only for AI analysis are processed to generate a response. If you choose to save a meal photo with a nutrition entry, that photo is stored privately in your LiftAi account.
Device & Usage Information
Release and TestFlight builds automatically collect limited technical information needed to operate the Services, including device model, operating system and app versions, IP address, crash data, performance data, stack traces, error details, and related diagnostics used to identify bugs and improve reliability.
2. Apple Health Integration
Apple Health integration is optional. The Services function without it.
When you grant Apple Health permissions:
- We access only the specific data types you authorize through iOS.
- We use Apple Health Data solely to power features you have enabled (such as readiness signals for the AI coach, body-metric tracking, and writing completed workouts back to Activity).
- Selected current metrics and derived values are encrypted in transit and stored in your LiftAi account for sync and app functionality.
- Health metrics are sent to third-party AI providers only after you separately enable AI data sharing, and only when needed for an AI request you make.
- We do not sell Apple Health Data, share it with advertisers, or use it for advertising or marketing.
- We do not use Apple Health Data to derive information used outside the Services.
- You can revoke any Apple Health permission at any time in iPhone Settings > Privacy & Security > Health > LiftAi.
3. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve the Services.
- Generate AI coaching responses, training plans, and progress analysis tailored to your data.
- Process and manage your subscription entitlement.
- Personalize the experience based on your goals, equipment, and training history.
- Detect, investigate, and prevent fraud, abuse, and security incidents.
- Comply with legal obligations and enforce our Terms of Service.
- Communicate with you about service-related matters (such as critical updates or support replies).
4. AI Coaching Features
AI features are optional and require explicit permission in the app. They generate responses by sending your request through a LiftAi Supabase Edge Function to OpenRouter and a third-party AI model provider. Current model routes may include Google Gemini or DeepSeek.
What we send to these providers:
- The text of your message and, where applicable, an attached photo.
- Relevant training context (such as recent exercises, weights, reps, and goals).
- If you have connected Apple Health, the health and fitness metrics that inform coaching — which may include heart rate variability, resting heart rate, VO2 Max, body composition (body-fat percentage and lean body mass), sleep duration and stages, and a derived training-readiness signal. This data is used to personalize coaching recommendations and is not used for advertising.
What we do not send:
- Your name, email, or account identifiers.
- Payment information.
LiftAi requests OpenRouter's zero-data-retention routing and excludes model endpoints that collect prompts for training. OpenRouter and the selected model provider still receive the request transiently to generate a response and may process limited request metadata for security, billing, and service operation under their terms. AI outputs may be inaccurate, incomplete, or out of date. See our Terms of Service for the full disclaimer.
5. How We Share Information
We do not sell your personal information. We share information only in the following circumstances:
- Service Providers. Supabase provides authentication, database sync, private storage, and Edge Functions; OpenRouter and its model providers provide transient AI inference; RevenueCat manages subscription entitlement; and Sentry processes crash and performance diagnostics.
- Apple. Subscription billing, push notifications, and Apple Health data flow through Apple's services. Apple's privacy practices govern its handling of that data.
- Legal & Safety. We may disclose information if required by law, valid legal process, or to protect the rights, property, or safety of LiftAi, our users, or the public.
- Business Transfers. If LiftAi is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you and provide choices where required by law.
- With Your Consent. We may share information for any other purpose with your explicit consent.
6. Data Retention
We retain your information for as long as your account is active. When you delete your account, we delete your account data within 30 days, except where retention is required by law (for example, financial records associated with subscriptions). Backup copies may persist for a limited additional period through ordinary backup-rotation cycles before being overwritten.
Diagnostic and aggregated usage data may be retained in de-identified form to support security, reliability, and product improvement.
7. Security
We implement administrative, technical, and physical safeguards designed to protect your information, including encryption in transit (TLS) and at rest, role-based access controls, and isolated tenant boundaries that ensure each user can only access their own records. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.
8. Your Rights and Choices
You have the following rights with respect to your information, available directly through the app:
- Access & portability. View your training history, profile, and nutrition data within the app. Request an export by emailing privacy@liftai.club.
- Correction. Edit your profile, training data, and entries directly in the app.
- Deletion. Permanently delete your account and associated data through Profile > Delete Account. This action cannot be undone.
- Apple Health controls. Manage Apple Health permissions in iPhone Settings > Privacy & Security > Health.
- AI controls. Disable new third-party AI processing at any time in Profile > Connections > AI data sharing.
- Notifications. Manage push and email notifications in iOS Settings or in-app preferences.
Depending on where you live, you may have additional rights described below.
9. Notice for the EEA, UK, and Switzerland (GDPR)
If you are located in the European Economic Area, the United Kingdom, or Switzerland, the General Data Protection Regulation (or applicable equivalent) provides certain rights:
- Right to access, rectify, erase, restrict, or object to processing of your personal data.
- Right to data portability.
- Right to withdraw consent where processing is based on consent.
- Right to lodge a complaint with your local data protection supervisory authority.
Our legal bases for processing are: performance of a contract (delivering the Services you signed up for), legitimate interests (operating, securing, and improving the Services), consent (where you have granted it, such as Apple Health permissions), and compliance with legal obligations.
For requests, contact privacy@liftai.club.
10. Notice for U.S. State Residents
Residents of California, Colorado, Connecticut, Virginia, Utah, and other states with comprehensive privacy laws have rights to know what information we collect, request access or deletion, correct inaccurate information, and opt out of sale or sharing for cross-context behavioral advertising. LiftAi does not sell personal information and does not share personal information for cross-context behavioral advertising.
To exercise your rights, contact privacy@liftai.club. We do not discriminate against users who exercise their privacy rights.
11. Children's Privacy
The Services are not directed to children under 13 (or under 16 in the EEA), and we do not knowingly collect information from such children. If we learn that we have collected information from a child without verifiable parental consent, we will delete it. If you believe a child has provided us with personal information, contact privacy@liftai.club.
12. International Data Transfers
The Services are operated from the United States. If you access the Services from outside the U.S., your information may be transferred to, processed, and stored in the United States or other jurisdictions. Where required, we rely on appropriate transfer mechanisms such as Standard Contractual Clauses to safeguard cross-border transfers.
13. Changes to This Policy
We may update this Privacy Policy from time to time. The “Last updated” date at the top reflects the most recent revision. For material changes, we will provide reasonable notice through the app or by email before the change takes effect. Your continued use of the Services after the effective date constitutes acceptance of the updated policy.
14. Contact
For privacy questions, requests, or concerns, contact us at privacy@liftai.club.