Dietsync
Dietsync

PRIVACY POLICY

Privacy Policy for Dietsync Fitness App

Effective Date: November 26, 2025]

Data Controller: DIETSYNC LTD

Contact: info@diet-sync.com

1. Introduction

Dietsync LTD ("we," "us," or "our") respects your privacy. This Privacy Policy describes how we collect, use, and protect your personal health data when you use our mobile application and services. We are based in Cyprus and operate in compliance with the General Data Protection Regulation (GDPR).

2. Data We Collect

We collect the following types of data to provide you with fitness insights:

  • Account Information: Name, email address, and age (to calculate fitness metrics).

  • Health Data (via Apple HealthKit): Step count, active energy burned, exercise minutes, and heart rate. We only read this data with your explicit permission.

  • Performance Data (Garmin / Whoop via API): Recovery scores, sleep performance, and day strain. We only access this data if you choose to connect your Whoop or Garmin account.

3. How We Use Your Data

We use your data solely to provide the app’s core functionality:

  • To visualize your daily activity and recovery trends.

  • To calculate custom fitness goals based on your history.

  • To sync your progress across your devices.

We do NOT use your health data for advertising.

4. Apple HealthKit Specific Privacy

In strict compliance with Apple’s App Store Review Guidelines:

  1. No Advertising: We do not use information gained through the HealthKit framework for advertising or similar services.

  2. No Data Sales: We do not sell information gained through HealthKit to advertising platforms, data brokers, or information resellers.

  3. Usage: We will not disclose any information gained through HealthKit to a third party without your express permission, except as required by law.

5. Partner Data Specific Privacy

If you connect your Whoop or Garmin account:

  • We access your data using a secure OAuth 2.0 token.

  • We store this data securely to display your history within our app.

  • We do not share your data with third-party parties.

6. Data Storage and Security

Your data is stored securely using [Supabase / Your Cloud Provider], located in servers within the [EU/US]. We implement industry-standard encryption (HTTPS/TLS) to protect your data during transmission.

7. Your Rights (GDPR)

Under the GDPR, you have the right to:

  • Access: View the personal data we hold about you.

  • Rectification: Correct inaccurate data.

  • Deletion: Request the permanent deletion of your account and all associated data. You can do this directly within the app settings via the "Delete Account" button.

  • Portability: Request a copy of your data in a machine-readable format.

To exercise these rights, please contact us at info@diet-sync.com.

8. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any significant changes through the app.