BodyMetric is an AI-powered fitness planning app. This policy explains how we handle your data when you use the app.
Account data (if you sign in): Your email address, chosen display name, and authentication credentials. If you use Google or Apple Sign-In, we receive a unique identifier from those providers plus the basic profile info they return (typically email and name). Passwords are never stored by BodyMetric — they are handled directly by Google Firebase Authentication in hashed form.
Profile data: Age range, sex, height, current weight, goal weight, activity level, fitness goals, and dietary preferences you enter during setup.
Workout data: Sets, reps, weights logged, exercise completion, session duration, rest timers, and RPE (Rate of Perceived Exertion) ratings you submit after workouts.
Body photos: Photos you choose to upload for AI body composition analysis. Your photo is (a) transmitted to our AI provider (Anthropic) for the initial analysis, and (b) if you are signed in, stored in your Firebase user document so it can re-display on any device where you log in. Photos are never used for advertising, ML model training, or shared with anyone outside those two services.
Usage data: Workout streaks, completed week counts, weight history entries you log, food and water entries, and step count data.
What we do not collect: precise/GPS location, payment or credit card information, your device contact list, advertising identifiers (IDFA), browsing history outside the app, audio recordings, or social media data.
All data you provide is used exclusively to: generate your personalised AI fitness plan; adapt your plan based on your workout history and RPE feedback; track your progress over time; and display your fitness metrics within the app.
We do not sell, rent, or share your personal data with advertisers or third-party marketing companies.
On your device: Your workout logs, plan details, body weight history, food and water entries, streaks, and step data are stored on your device using browser storage (localStorage). This local copy is the primary source for everything you see in the app.
In the cloud (if you sign in): If you create a BodyMetric account or sign in with Google or Apple, a copy of your profile, fitness plan, weight history, email, display name, body scan photo, and calorie targets is synced to our cloud database so the same data appears when you log in on another device. Cloud sync is only active when you are signed in — guest users are stored exclusively on device.
Where the cloud database runs: Account authentication and cloud data storage are provided by Google Firebase (Firebase Authentication + Cloud Firestore). Your cloud-synced data is stored on Google Cloud servers and encrypted in transit (HTTPS) and at rest. See firebase.google.com/support/privacy for details on Firebase data practices.
What is NOT synced to the cloud: Individual workout session logs (set-by-set weights and reps), food and water entries, step count data, RPE ratings, and completed workout flags remain exclusively on your device — these are not transmitted to the cloud database. Body scan photos are synced as part of your profile so they display on other devices, but are never used for any purpose other than re-rendering your scan result.
Three third-party services process your data:
(1) Google Firebase (Authentication + Cloud Firestore): When you create an account, sign in, or are signed in while using the app, Firebase handles your login credentials (email, hashed password, or federated identity via Google/Apple Sign-In) and stores your cloud-synced data (profile, plan, weight history, photo, display name, calorie targets). Firebase is a Google service. See firebase.google.com/support/privacy and policies.google.com/privacy.
(2) AI fitness plan generation (Anthropic): When you complete a body scan to generate your plan, your photo and profile data (age range, sex, height, weight, goals, activity level) are sent to Anthropic (Claude API) over an encrypted HTTPS connection. Anthropic processes this data to generate your personalised plan.
(3) Body composition analysis (Anthropic): Body scan photos you submit for AI analysis are transmitted to Anthropic in the same request. Anthropic does not retain the photo or profile data for its own purposes beyond the immediate request. See anthropic.com/privacy for details.
No advertisers or marketing companies: We do not use advertising networks, analytics trackers, or marketing SDKs. Your data is never shared with companies outside the three services listed above.
Apple Hide My Email: If you use Apple's Hide My Email feature when signing in, we receive a randomized relay address (e.g. abc@privaterelay.appleid.com). Apple forwards email sent to this address to your real address; we never see your actual email. You may disable email relay in your Apple ID settings at any time.
Do Not Track signals: BodyMetric does not use third-party analytics or advertising trackers, so Do Not Track (DNT) signals are inherently honored. We do not track users across other websites or apps.
Depending on where you live, you may have the following rights regarding your personal data:
Access: All your data is accessible directly within the app at any time.
Export / Portability: Download everything via Settings → Export My Data as a CSV file.
Correction: You can update or correct your profile information at any time via Settings.
Delete: Remove all data via Settings → Sign Out (clears local data) or Delete Account (removes your cloud-synced data in addition to signing out). Clearing your browser storage also removes the local copy permanently, and you can request full cloud deletion at any time by emailing privacy@bodymetric.ai.
Object / Restrict: You can stop cloud processing at any time by signing out (which also clears the local copy) or by deleting your account. Guest users can stop processing simply by clearing browser storage or uninstalling the app.
Supervisory authority (EU/UK users): If you are located in the European Economic Area or UK, you have the right to lodge a complaint with your local data protection authority if you believe your data rights have not been respected.
California residents (CCPA): We do not sell your personal information. You have the right to know what data we collect, request deletion, and opt out of any sale — though no sale occurs. Contact privacy@bodymetric.ai to exercise any rights.
Non-discrimination (CCPA): We will not deny you services, charge different prices, or provide a different level or quality of service because you exercised any of your privacy rights.
BodyMetric handles the following categories of fitness and health-related data you provide: body weight and weight history, height, body composition estimates, fitness goals, workout logs (sets, reps, weights, session duration), and step count data.
Body scan photos are (a) transmitted to Anthropic for the AI analysis that generates your plan (see Section 4), and (b) if you are signed in, stored in your Firebase cloud document so your scan photo re-displays on any device where you log in. Photos are never used for advertising, training AI models, or any purpose other than producing and displaying your plan.
Cloud-synced health data (profile, plan, weight history, calorie targets) is stored on Google Firebase servers with HTTPS encryption in transit and encryption at rest. It is not used for advertising and not shared with third parties except as described in Section 4.
Device-only health data (individual workout set logs, food and water entries, step data, RPE ratings) is never transmitted to any server and stays on your device.
This data is sensitive. We recommend not sharing your exported data with untrusted parties. You can export or permanently delete your health data at any time via Settings.
Lawful basis (EU/UK users): We process your personal data on the basis of your consent (provided when you set up your profile and begin using the app) and our legitimate interest in providing the fitness planning service you have requested.
International data transfers (EU/UK users): Your data may be processed and stored on Google Cloud servers in the United States or other jurisdictions. Where data is transferred outside the EEA/UK, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission. Google Firebase operates under these SCCs for cross-border data transfers — see firebase.google.com/support/privacy. Anthropic transfers are governed by its data processing terms — see anthropic.com/privacy.
Retention: Local data persists until you clear it via Settings → Delete Account, clear your browser storage, or uninstall the app. If you are signed in, cloud-synced data (profile, plan, weight history, photo, display name) is retained in your Firebase user document until you delete your account, at which point the cloud document is removed. Body scan photos transmitted to Anthropic for AI analysis are not retained by Anthropic beyond the immediate processing request.
BodyMetric is intended for users aged 18 and over and is not directed to minors. We do not knowingly collect personal information from anyone under 18 (or under 13, per the Children’s Online Privacy Protection Act). If you become aware that a minor has provided us with personal information, please contact us at privacy@bodymetric.ai and we will delete it promptly.
Your data is protected in three ways: browser storage on your device, Firebase cloud storage with HTTPS encryption in transit and encryption at rest, and encrypted HTTPS transmission to Anthropic during AI analysis. In the unlikely event of a security incident affecting data stored in Firebase or transmitted to Anthropic, we will notify affected users via in-app notice and (for signed-in users) email, as promptly as reasonably practicable and in accordance with applicable law.
We may update this policy as the app evolves. Material changes will be noted within the app. Continued use after an update constitutes acceptance.
Privacy questions: privacy@bodymetric.ai