Legal

Privacy Policy

Last updated: March 25, 2026

1. Information We Collect

When you use Apex, we collect the following information:

  • Account information: Name, email address, username, bio, and profile picture provided during sign-up or added later.
  • Fitness data: Workout logs, exercise history, step counts, and gym check-in records.
  • Health data: Step count, walking/running distance, and calories burned synced from Apple Health (iOS) or Google Health Connect (Android), with your explicit permission.
  • Location data: Approximate location used for gym check-in verification via geofencing and for providing relevant gym search results, with your explicit permission.
  • Profile picture: Optionally uploaded from your camera or photo library, stored securely on our servers.
  • Device information: Device type, operating system, app version, device timezone, and platform for troubleshooting and functionality purposes.
  • Push notification token: A device token used to deliver push notifications, with your permission.
  • Usage analytics: How you interact with the app, collected through PostHog analytics to help us improve the app experience.
  • Error and crash data: Technical information such as stack traces, device type, operating system version, and app state at the time of a crash, collected through Sentry to identify and fix bugs. No personal data is included in crash reports beyond your user ID.

2. How We Use Your Information

  • To provide and maintain the Apex app experience.
  • To track your workouts, streaks, and progress.
  • To verify gym check-ins using geofencing.
  • To sync health data from Apple Health or Google Health Connect.
  • To send push notifications, including gym proximity alerts, step goal achievements, friend request updates, and nudges from friends.
  • To enable social features such as friend connections.
  • To analyze usage patterns and improve app functionality, design, and user experience.
  • To identify and fix technical issues and bugs.

3. Social Features & Data Visible to Other Users

Apex includes social features that allow you to connect with friends. When you add a friend, the following information is visible to them:

  • Your username, bio, and profile picture.
  • Your gym name.
  • Your current streaks and weekly progress (check-in count, step goal completion).
  • Your workout split commitment and step goal days commitment.

Friend requests and friendships are stored in our database. You can remove friends at any time.

4. Data Storage & Security

Your data is stored securely using Supabase (hosted on AWS) with row-level security policies. Authentication is handled by Clerk, a trusted third-party authentication provider. We implement the following security measures:

  • Encrypted connections (HTTPS/TLS) for all data transmission.
  • Secure storage practices with row-level security policies.
  • Authentication tokens stored in your device's secure keychain.
  • Limited access to personal data by authorized personnel only.

Certain data is also stored locally on your device, including cached workout data, health metrics, and gym information.

However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

5. Data Sharing

We do not sell your personal data. We share data only with the following service providers necessary to operate the app:

  • Clerk — authentication services.
  • Supabase — database and backend services.
  • Google Places API — gym search functionality.
  • Google Maps Static API — gym map image generation.
  • Expo Push Notification Service — push notification delivery (routes to Apple APNs and Google FCM).
  • PostHog — product analytics and usage tracking to improve the app experience.
  • Sentry — error tracking and crash reporting to identify and fix technical issues.

6. Health & Location Data

Health data from Apple Health (iOS) or Google Health Connect (Android) is accessed only with your explicit permission and is used solely within the app to track your step goals, distance, and calories burned. We do not share health data with third parties.

Location data is used for gym check-in verification. When geofencing is enabled, your device monitors your proximity to your selected gym in the background to send you a notification upon arrival. No GPS coordinates from background monitoring are stored. Your approximate location is also sent to Google Places API when searching for gyms to provide relevant results.

7. Background Processing

When geofencing is enabled, your device continuously monitors your proximity to your selected gym in the background using OS-level location services. This is used solely to notify you when you arrive at your gym.

On iOS, health data may sync in the background via Apple HealthKit's background delivery to keep your step progress up to date.

8. Data Retention

We retain your personal data for as long as your account is active. You can permanently delete your account at any time from within the app by navigating to Settings > Delete Account.

When you delete your account, the following data is immediately and permanently removed from our servers:

  • Account information (name, email, username, bio, profile picture).
  • All fitness data (workouts, exercises, sets, workout history).
  • Streaks, weekly progress, and goal change history.
  • Gym selection and check-in records.
  • Friends, friend requests, and nudge history.
  • Push notification tokens and streak evaluation logs.

No personal data is retained after account deletion.

Analytics data collected by third-party providers (PostHog, Sentry) is retained according to their respective policies. Data stored locally on your device remains until you uninstall the app or clear app data.

You may also contact us at the.apexfitnessapp@gmail.com for data-related requests.

9. Children's Privacy

Apex is not intended for children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately and we will delete it promptly.

10. Your Rights

Depending on your location, you have the right to:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Delete your account and all associated data directly from the app via Settings > Delete Account.
  • Portability: Request your data in a portable format.
  • Withdraw consent: Withdraw consent for data processing at any time.
  • Revoke health or location data permissions at any time.
  • Opt out of analytics and optional data collection.

To exercise these rights, you can use the in-app account management features or contact us at the email address provided below.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the updated Privacy Policy in the app.
  • Updating the “Last updated” date at the top of this page.

Your continued use of the app after changes become effective constitutes acceptance of the revised policy.

12. Cookies

The Apex mobile app does not use cookies. Our third-party analytics provider (PostHog) and error tracking provider (Sentry) may use similar technologies for their respective purposes. You can control these through your device settings.

13. Contact Us

If you have questions about this Privacy Policy, contact us at: the.apexfitnessapp@gmail.com