1. What we collect
Account data: your email, name, and the things you tell us when you sign up. We do not require a real name.
Training data: every set you log, your bodyweight if you choose to share it, and any notes you attach to a session.
Device data: device type, OS version, and crash reports. We do not collect contacts, location, or anything from other apps.
2. How we use it
To run the product: progression calculations, sync, history.
To send you transactional emails (receipts, security alerts) and — only if you opt in — marketing email.
To improve the app: anonymised aggregate usage statistics. Never sold, never shared with third parties.
3. What we do not do
We do not sell your data. Ever.
We do not share your training history with advertisers, brokers, or insurers.
We do not use your data to train AI models without explicit, separate consent.
4. Your rights under GDPR
GDPREU/UK residents have GDPR rights: access, rectification, erasure, restriction, portability, objection. Email privacy@progressor.app to exercise any of them.
Export your data at any time from Settings → Data → Export. JSON or CSV.
Delete your account at any time from Settings → Account → Delete. 30-day cooling-off period. After that, all PII is anonymised; aggregate data may persist.
Lodge a complaint with your supervisory authority (e.g. the ICO in the UK) if you believe we have mishandled your data.
5. Data storage
Account and training data are stored on Supabase (PostgreSQL) in EU-region servers.
Backups are encrypted at rest and retained for 30 days.
We use Cloudflare for DNS and CDN. They do not see your training data.
7. Changes to this policy
We will email you 30 days before any material change takes effect. Continued use after that constitutes acceptance.
Email privacy@progressor.app with any legal or data-related questions.
Also see Terms & Conditions · Cookies Policy.