Privacy Policy

Effective date: April 12, 2026

ProgressPilot (“we”, “us”, “the app”) is operated as a sole proprietorship (toiminimi) based in Finland. This Privacy Policy explains what data we collect, how we use it, and your rights under the General Data Protection Regulation (GDPR).

The short version: ProgressPilot is local-first. Your workout data stays on your device and your personal iCloud account. We don't run analytics, don't serve ads, and don't track your behavior.

1. Data We Collect

1.1 Account Data

When you sign in with Apple or Google, we use Firebase Authentication to create a unique account identifier (Auth UID). This UID is used to authenticate AI requests and manage your subscription. We do not store your name, email address, or profile photo on our servers.

• What: Firebase Auth UID, authentication provider (Apple or Google)
• Where stored: Firebase Authentication (Google Cloud infrastructure)
• Retention: Until you delete your account

1.2 Workout Data

All training data you enter — sessions, exercises, sets, reps, weights, Performance Index scores, personal records, weekly programs, and your profile (goals, equipment, fitness level, injury notes) — is stored on your device using Apple's SwiftData framework.

If iCloud is enabled on your device, this data syncs to your personal iCloud account via Apple CloudKit. This sync is between your own devices through your own Apple ID. We do not have access to your iCloud data.

• What: Training sessions, sets, reps, weights, PI scores, personal records, weekly programs, user profile
• Where stored: On your device (SwiftData) + your iCloud account (CloudKit), if enabled
• Sent to our servers: No

1.3 AI Training Prompts

When you use AI features (program generation, daily targets, exercise swap, progression advice, coaching summaries), the app sends a structured prompt containing training metrics to generate personalized coaching responses.

• What is sent: Exercise names, sets, reps, weights, PI scores, weekly schedule, equipment type, training goal
• What is NOT sent: Your name, email, age, location, photos, or any personally identifiable information
• How: Sent via encrypted HTTPS to our Cloudflare Worker proxy, which forwards the prompt to the OpenAI API
• Retention: Not stored by our proxy. OpenAI processes the prompt under their API Data Usage Policy, which states that API inputs are not used for model training

1.4 Subscription Data

Your subscription is managed through RevenueCat. We check your subscription status to determine whether you have access to premium features.

• What: Subscription status (active, expired, trial), subscription tier (monthly/annual), expiration date
• Where stored: RevenueCat servers, linked by your Firebase Auth UID (not your name or email)

1.5 Health Data (Apple HealthKit)

HealthKit access is entirely opt-in and requires your explicit permission via iOS settings.

• What we read: Body weight measurements and cardio workouts (running, cycling, swimming, walking, hiking, rowing, stair climbing)
• What we write: Completed strength training workouts with duration and estimated calories burned
• Where stored: On your device, within Apple Health. HealthKit data never leaves your device — it is not sent to any server, including ours
• Revocation: You can revoke HealthKit permissions at any time in iOS Settings > Privacy & Security > Health

1.6 Push Notifications

If you enable notifications, the app schedules local notifications for workout reminders, streak alerts, and weekly digests. All notifications are generated on-device. We do not operate a server-side push notification system.

2. Data We Do NOT Collect

• No analytics (Firebase Analytics is explicitly disabled)
• No ad tracking or advertising identifiers
• No crash reporting or telemetry
• No location data
• No third-party SDKs that collect behavioral data
• No cookies on this website
• No App Tracking Transparency prompt (because we don't track)

3. Third-Party Services

We use the following third-party services in clearly defined roles:

• Firebase Authentication (Google) — account sign-in only. Privacy Policy
• OpenAI API — AI prompt processing only, via our proxy. Privacy Policy
• RevenueCat — subscription management only. Privacy Policy
• Apple CloudKit / iCloud — user-controlled device sync. Privacy Policy
• Cloudflare — hosting and AI proxy infrastructure. Privacy Policy

4. International Data Transfers

ProgressPilot is operated from Finland (EU). Some third-party services process data outside the EU:

• Firebase Authentication and OpenAI process data in the United States under Standard Contractual Clauses (SCCs) as approved by the European Commission
• RevenueCat processes subscription data in the United States under Standard Contractual Clauses
• Your workout data remains on your device and in your personal iCloud account (Apple infrastructure), subject to Apple's data processing terms

5. Your Rights (GDPR)

As a user in the European Economic Area, you have the following rights:

• Right of access: Request a copy of the data we hold about you
• Right to rectification: Correct any inaccurate personal data
• Right to erasure: Delete your account and all associated data
• Right to data portability: Export your training data via CSV export (available to premium subscribers in Settings)
• Right to restriction of processing: Request that we limit how we use your data
• Right to object: Object to the processing of your data
• Right to withdraw consent: Revoke HealthKit access or notification permissions at any time via iOS Settings

To exercise any of these rights, contact us at support@progresspilot.app.

You also have the right to lodge a complaint with the Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto), Finland's supervisory authority: tietosuoja.fi.

6. Data Retention

• Workout data: Stored on your device indefinitely until you delete it or delete your account
• Firebase Auth: Retained until you request account deletion
• RevenueCat: Subscription history retained per RevenueCat's policy for accounting and legal purposes
• AI prompts: Not retained by our proxy. Subject to OpenAI's API data retention policy (30 days for abuse monitoring)

7. Children's Privacy

ProgressPilot is not directed at children under 16 years of age. We do not knowingly collect personal data from children. If you believe a child has provided data to us, please contact us and we will delete it promptly.

8. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via an in-app notice and update the effective date at the top of this page.

9. Contact

For privacy inquiries or to exercise your GDPR rights:

Email: support@progresspilot.app