Privacy Policy
Last updated: April 5, 2026
LiftSenseAI is operated by AccuWealth Holding Oy ("we", "our", or "us"). We are the data controller responsible for your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use the LiftSenseAI mobile application ("App").
By using LiftSenseAI, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use the App.
1. Information We Collect
We collect the following categories of information to provide and improve the App:
- Account information — your name, email address, and hashed password (or Google account details if using OAuth sign-in)
- Profile data — display name, weight, height, fitness goals, and unit preferences (kg/lbs)
- Body measurements — weight, body fat percentage, chest, waist, and arm measurements
- Workout data — exercises performed, sets, reps, weights lifted, session timestamps, rest times, workout templates, and personal records
- AI conversation logs — messages you exchange with the AI trainer feature, including chat history, generated workout plans, and progression analysis
- Usage data — AI usage counts (messages per month, plans generated), feature usage patterns
- Purchase history — subscription status and purchase records (managed by RevenueCat)
- Device information — device type, operating system version, and app version for diagnostics
- Analytics data — anonymised usage events to help us improve the App (via PostHog)
Important: Health-Related Data
Body measurements such as weight, body fat percentage, chest, waist, and arm measurements are considered health-related data under GDPR Article 9 and similar regulations. We collect this data only with your explicit consent, which you provide when you voluntarily enter these measurements in the App. You may choose not to enter body measurements and still use all other App features.
2. How We Use Your Information
Your information is used to:
- Provide and operate the App's core workout tracking features
- Save and sync your workout history, templates, and progress
- Power AI features — your workout history, goals, and body measurements are sent to our AI provider to generate personalised training plans, coaching advice, and progression analysis
- Manage your subscription and Pro tier access
- Improve App performance, fix bugs, and develop new features
- Respond to your support requests
- Comply with legal obligations
3. Legal Basis for Processing (GDPR)
We process your personal data under the following legal bases:
- Contract performance (Article 6(1)(b)) — processing necessary to provide the App's services to you
- Explicit consent (Article 9(2)(a)) — for health-related data such as body measurements, which you voluntarily provide
- Legitimate interest (Article 6(1)(f)) — for analytics and App improvement, where our interest does not override your rights
- Legal obligation (Article 6(1)(c)) — where required by law
4. Third-Party Services
LiftSenseAI uses the following third-party services to operate. Each is governed by their own privacy policies:
- Supabase (database and authentication) — your data is stored on Supabase servers in the EU (Ireland). Supabase provides encrypted storage and secure authentication services.
- Anthropic (AI features) — when you use AI chat, workout planner, or progression analysis, your messages and relevant workout context are sent to Anthropic's Claude API for processing. Anthropic processes this data in the United States. Anthropic does not use your conversations to train their models.
- RevenueCat (subscription management) — manages your subscription status across iOS and Android. Processes purchase receipts and subscription status in the United States.
- PostHog (analytics) — collects anonymised usage events to help us understand how features are used. No personally identifiable information is sent to PostHog.
- ExerciseDB / RapidAPI (exercise library) — provides exercise data and animated demonstrations. No personal data is shared with this service.
- Apple App Store / Google Play Store — app distribution and in-app purchase processing, governed by Apple's and Google's privacy policies.
- Expo / EAS — app build and distribution infrastructure.
5. International Data Transfers
Your data is primarily stored in the EU (Supabase, Ireland). However, some data is transferred to the United States when processed by Anthropic (AI features), RevenueCat (subscriptions), and PostHog (analytics). These transfers are protected by Standard Contractual Clauses (SCCs) and other appropriate safeguards as required by GDPR.
6. Data Retention
We retain your data for as long as your account is active or as needed to provide the App's services. Specifically:
- Account and profile data — retained while your account is active
- Workout data and body measurements — retained while your account is active
- AI conversation logs — retained while your account is active to provide conversation history
- Analytics data — anonymised and retained for up to 24 months
When you delete your account, all personal data is permanently removed from our systems. See "Account Deletion" below.
7. Account Deletion
You can permanently delete your account and all associated data directly within the App. Go to Profile > type DELETE > tap "Delete Account & All Data". This will immediately and permanently delete:
- Your profile and account credentials
- All workout sessions, sets, and templates
- All body measurements
- All AI conversation logs and usage records
This action cannot be undone. You may also request account deletion by emailing us at hello@liftsenseai.app.
8. Your Rights
Under GDPR and applicable data protection laws, you have the right to:
- Access — request a copy of the personal data we hold about you
- Rectification — request correction of inaccurate data
- Erasure — request deletion of your data (see Account Deletion above)
- Restriction — request that we limit how we process your data
- Portability — receive your data in a structured, machine-readable format
- Objection — object to processing based on legitimate interest
- Withdraw consent — withdraw consent for health data processing at any time (by deleting your measurements or your account)
To exercise any of these rights, contact us at hello@liftsenseai.app. We will respond within 30 days.
You also have the right to lodge a complaint with your local data protection supervisory authority.
9. Children's Privacy
LiftSenseAI is not intended for users under the age of 16. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.
10. Security
We take appropriate technical and organisational measures to protect your information, including:
- Encryption in transit (TLS/SSL) for all data transfers
- Encryption at rest for database storage (Supabase PostgreSQL)
- JWT-based authentication with 5-minute token expiry
- Row-Level Security (RLS) policies ensuring users can only access their own data
- Rate limiting on API endpoints
- Server-side storage of all third-party API keys
No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the "Last updated" date at the top of this page and, where appropriate, through an in-app notification. Continued use of the App after changes constitutes acceptance of the updated policy.