Privacy Policy

Last Updated: February 2026

Raze – Training & Nutrition ("Raze," "we," "us," or "our") is a workout tracking and meal planning application operated by Aligned Systems LLC. Your privacy is extremely important to us. This Privacy Policy explains what information we collect, how it is used, how it is shared, and your rights regarding your data.

1. Information We Collect

Account Data

• Email address and optional display name (via Google or Apple sign-in).
• Unique user identifier generated by our authentication provider.

Workout & Training Data

• Exercises, sets, reps, weights, rest times, and equipment selections.
• Set types (normal, warm-up, dropset, failure).
• Workout routines, programs, and scheduled workouts.
• Per-exercise notes entered during workout logging.
• Post-workout reviews: star rating, RPE (rate of perceived exertion), mood, energy level, and free-text notes.
• Training goals and AI training rules (persistent preferences you set for the AI coach).
• Personal records.

Nutrition & Meal Data

• Daily meal logs: food descriptions, portion sizes, and AI-estimated or user-entered calories and macronutrients (protein, carbs, fat).
• Saved meals library.
• AI-generated meal plans and optimization results.
• Nutrition AI analysis history.
• Day type selections (normal, cheat day, bad day) and associated notes.
• Rest day overrides and planned events (calendar banking).

Nutrition Profile

• Physical data: age, weight, height, gender, body fat percentage, and activity level.
• Goals: weight goal (e.g., fat loss, muscle gain, maintenance), target calories, and target macros.
• Dietary information: dietary restrictions, allergies, cuisine preferences, preferred and disliked foods, cooking skill level.
• Preferences: meals per day, meal naming convention, measurement unit preference (oz/grams), cheat day adjustment strategy, meal variety preference.
• Cardio information: type, frequency, duration, and intensity.
• AI nutrition rules (persistent preferences you set for the AI).

Subscription Data

• Subscription status and entitlement information via Apple and RevenueCat. We do not store or have access to your payment details, credit card numbers, or billing address.

App Settings

• Theme, accent color, weight unit preferences, and notification settings.

Analytics & Diagnostics

• Firebase Analytics: We collect anonymized usage events to understand how features are used and improve the app. Events include: workout started, workout completed, routine created, subscription purchased, personal record achieved, and exercise added. We also record aggregated user properties such as subscription status, workout count, preferred theme, and preferred unit. Analytics data collection is disabled in development builds.
• Firebase Crashlytics: We collect crash reports and error logs to identify and fix bugs. Crash reports may include your user identifier, device model, operating system version, error stack traces, and contextual information about the action that triggered the error. This data is used solely for stability improvements.

Notifications

• If you enable notifications, we schedule local on-device notifications (e.g., workout completion reminders). We do not send push notifications from a remote server, and notification tokens are not transmitted to or stored on our servers.

2. How We Use Your Information

• Core Functionality: To provide workout tracking, meal logging, nutrition calculations, calendar features, and progress analytics.
• AI-Powered Features: To generate workout splits, analyze workout performance, estimate meal nutrition, generate meal plans, optimize meals, and review nutrition targets. When you use these features, relevant data (such as your workout history, meals, nutrition profile, and any notes or rules you provide) is sent to a third-party AI service for processing (see Section 5).
• Personalization: To adjust daily calorie and macro targets based on your profile, workout schedule, and preferences.
• Data Sync: To synchronize your data across devices via cloud storage.
• Analytics: To understand feature usage patterns and improve the app experience.
• Diagnostics: To identify, diagnose, and fix crashes and errors.

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data on the following legal bases:

• Contract Performance: Processing necessary to provide the service you signed up for (account data, workout data, meal data, subscription management).
• Legitimate Interest: Analytics and crash reporting to maintain and improve the app, and to ensure security.
• Consent: Where required, such as for optional AI-powered features where you actively choose to submit data for AI processing. You may withdraw consent at any time by ceasing to use those features.

4. What We Do Not Collect

Raze does not collect advertising identifiers (IDFA), precise location data, microphone audio recordings, camera or photo library content, contacts, HealthKit or Health Connect data, browsing history, or any biometric data.

5. Third-Party Services

• Firebase (Google): Authentication, cloud data storage (Firestore), Analytics, Crashlytics, and hosting of Cloud Functions that power AI features. Data is processed in accordance with the Firebase Privacy Policy.
• Google Gemini AI: When you use AI-powered features (workout analysis, split generation, meal nutrition estimation, meal plan generation, meal optimization, and nutrition target review), your relevant data is sent to Google's Gemini AI models via secure Cloud Functions for processing. All user inputs are sanitized before transmission. Data sent to Gemini is used solely to generate a response and is not used by Google to train AI models. Google's data handling is governed by the Google Privacy Policy and Gemini API Terms.
• RevenueCat: Subscription status management only. RevenueCat receives your anonymous user identifier and subscription status. It does not receive your workout, meal, or nutrition data. See the RevenueCat Privacy Policy.
• Apple App Store: Payment processing for subscriptions. We do not have access to your payment information.

6. International Data Transfers

Your data may be transferred to and processed in countries other than your own, including the United States, where our third-party service providers (Firebase, Google Cloud, RevenueCat) operate servers. These transfers are necessary to provide the service. Where required by law, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) or the service provider's compliance with applicable data protection frameworks.

7. Data Storage & Security

Your data is stored locally on your device (via encrypted local storage) and synced to Google Firebase (Firestore) for cloud backup and cross-device access. Data is transmitted over encrypted connections (TLS/SSL). Access to your data in Firestore is restricted to your authenticated account via security rules. While we take reasonable measures to protect your data, no method of electronic storage or transmission is 100% secure, and we cannot guarantee absolute security.

8. Data Retention

Your data is retained for as long as your account is active. You may delete individual meals, workouts, saved items, or AI history at any time within the app. Analytics and crash data is retained according to Firebase's default retention periods (typically 14 months for Analytics, 90 days for Crashlytics). Full account deletion removes all associated personal data (see Section 9).

9. Data Deletion

You may delete your account at any time inside the app (Settings → Account → Delete Account). Deletion begins immediately and completes within up to 30 days, including removal from backups. This removes all workout data, meal data, nutrition profile, saved meals, AI history, training goals, personal records, and any other data associated with your account from our systems.

10. Your Rights

All Users

• Access & Deletion: You can view all your data within the app and delete your account at any time.
• Correction: You can update or correct your profile, meals, workouts, and settings at any time within the app.

European Economic Area, UK & Switzerland (GDPR)

If you are located in the EEA, UK, or Switzerland, you have the following additional rights under the General Data Protection Regulation:

• Right of Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of inaccurate data.
• Right to Erasure: Request deletion of your data (also available via in-app account deletion).
• Right to Data Portability: Request your data in a structured, machine-readable format.
• Right to Restrict Processing: Request that we limit how we use your data.
• Right to Object: Object to processing based on legitimate interests.
• Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.
• Right to Lodge a Complaint: You have the right to file a complaint with your local data protection supervisory authority.

To exercise any of these rights, contact us at razeworkoutlogger@gmail.com. We will respond within 30 days.

California Residents (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act and California Privacy Rights Act:

• Right to Know: Request the categories and specific pieces of personal information we have collected about you.
• Right to Delete: Request deletion of your personal information.
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising. We do not use sensitive personal information for purposes other than providing the service.

To exercise any of these rights, contact us at razeworkoutlogger@gmail.com. We will verify your identity and respond within 45 days.

11. Children's Privacy

Raze is not directed at children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately so we can delete it.

12. Data Breach Notification

In the event of a data breach that affects your personal information, we will notify affected users via email and/or in-app notification without undue delay, and no later than 72 hours after becoming aware of the breach where required by applicable law. We will also notify the relevant supervisory authorities as required.

13. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last Updated" date at the top reflects the most recent revision. We will notify users of material changes via email or in-app notification. Continued use of the app after changes constitutes acceptance of the updated policy.

14. Contact

For privacy questions, data requests, or support, contact:
Aligned Systems LLC
razeworkoutlogger@gmail.com