RephiqHome

Rephiq Privacy Policy

Effective Date: April 6, 2026

Last Updated: April 6, 2026

Rephiq ("we", "our", "us") operates the Rephiq mobile application (the "App"). This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use the App.

By using Rephiq, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the App.

1. Information We Collect

1.1 Account Information

When you create an account, we collect the information provided by your authentication provider:

  • Google Sign-In: Your name and email address as associated with your Google account.
  • Sign in with Apple: Your name (if provided) and email address (which may be a private relay address if you choose to hide your email).

1.2 Profile Information

During onboarding and profile setup, you may provide:

  • First name and last name
  • Date of birth
  • Gender
  • Height and weight
  • Fitness goal, experience level, and training preferences
  • Available equipment and workout location
  • Preferred workout duration and training days per week

1.3 Social Profile Information

If you use our social features, you may additionally provide:

  • Display name and username
  • Profile photo (avatar)
  • Bio
  • Instagram and X (Twitter) handles
  • Preferred workout types
  • Public/private profile preference

1.4 Workout and Exercise Data

When you use the App to log workouts, we collect:

  • Exercise names, sets, repetitions, weights, and rest times
  • Workout duration, start and end times
  • Workout templates and training programmes
  • Personal records and strength milestones
  • Rate of perceived exertion (RPE)

1.5 Body Measurements and Progress Photos

You may optionally record:

  • Body weight measurements over time
  • Progress photos (front, side, back), including the date each photo was taken

1.6 Health Platform Data

With your explicit permission, the App integrates with Apple HealthKit (iOS) and Health Connect (Android) to write the following data:

  • Completed strength training workout sessions (duration and estimated calories burned)
  • Body weight measurements

We do not read data from your health platform. Data is only written with your opt-in consent, and you can revoke this permission at any time in the App's settings or your device's health settings.

1.7 Social Interaction Data

When you use social features, we collect:

  • Follow relationships (who you follow and who follows you)
  • Shared workout posts, including captions
  • Likes and comments on posts
  • Abuse and content reports

1.8 Purchase Information

If you subscribe to Rephiq Pro, we use RevenueCat to manage in-app purchases. We store:

  • Your premium subscription status
  • A unique purchase identifier linked to your account

We do not store or have access to your payment card details, billing address, or other financial information. All payment processing is handled by Apple (App Store), Google (Google Play), and RevenueCat.

1.9 Usage and Analytics Data

We automatically collect anonymised usage data to improve the App:

  • Feature usage events (e.g., workout started, workout completed, template created)
  • Screen views
  • App performance and error data (crash reports and stack traces)

This data does not include personally identifiable information. We do not track your activity outside of the Rephiq app.

1.10 Device and Technical Data

We collect limited technical data necessary for the App to function:

  • Device type and operating system version
  • App version
  • Timezone (for scheduling local notifications)

We do not collect device identifiers, IP addresses (beyond what is automatically logged by our infrastructure providers), location data, contacts, calendar data, or browsing history.

2. How We Use Your Information

We use the information we collect to:

  • Provide the App's core functionality: Log workouts, track progress, generate training programmes, calculate personal records, and display your training history.
  • Personalise your experience: Tailor workout recommendations, coaching insights, and progression guidance based on your goals, experience level, and training history.
  • Enable social features: Allow you to share workouts, follow other users, participate in leaderboards, and interact with the community.
  • Sync your data: Keep your workout data synchronised across your devices via secure cloud storage.
  • Process purchases: Manage your Rephiq Pro subscription and unlock premium features.
  • Send notifications: Deliver workout reminders and streak notifications (only with your permission).
  • Improve the App: Analyse anonymised usage patterns to fix bugs, improve performance, and develop new features.
  • Ensure safety: Moderate social content and respond to abuse reports.

We do not use your data for advertising, sell your data to third parties, or create advertising profiles.

3. How We Store and Protect Your Information

3.1 Storage Locations

  • On your device: Workout data, preferences, and cached content are stored locally in an encrypted SQLite database.
  • In the cloud: Your data is synchronised to Google Cloud Firestore (database) and Firebase Storage (photos and avatars), hosted on Google Cloud infrastructure.
  • Preferences: App settings (units, rest timer, theme) are stored locally on your device and are not synced to the cloud.

3.2 Security Measures

  • All data transmitted between the App and our servers is encrypted using TLS (Transport Layer Security).
  • Cloud data is protected by Firebase security rules that enforce user-level access control — you can only read and write your own data.
  • Authentication is handled by Firebase Authentication using industry-standard OAuth 2.0 protocols.
  • Social profile data has granular access controls: private profiles are only visible to approved followers.
  • Firebase App Check is used to verify that requests to our backend originate from genuine instances of the App.

4. Third-Party Services

We use the following third-party services, each with their own privacy policies:

ServicePurposeData Shared
Google Firebase (Authentication, Firestore, Storage, Analytics, Crashlytics, Remote Config, App Check)Backend infrastructure, authentication, data storage, analytics, error monitoringAccount data, workout data, usage events, crash reports
Google Sign-InAccount authenticationAuthentication credentials
Apple Sign in with AppleAccount authenticationAuthentication credentials
RevenueCatIn-app purchase and subscription managementUser identifier, purchase status
Apple HealthKit / Google Health ConnectHealth data integration (write-only)Workout sessions, calories, body weight
Google FontsTypography renderingFont file requests (no user data)
OpenAI / Google Gemini / DeepSeekAI-powered workout template generationWorkout parameters only (goal, muscle groups, exercise count); no personal information is sent

We encourage you to review the privacy policies of these services:

5. Data Sharing

We do not sell, rent, or trade your personal information to third parties.

We share data only in the following limited circumstances:

  • With your consent: Social features you choose to make public (workout posts, public profile) are visible to other users.
  • Service providers:The third-party services listed above process data on our behalf to provide the App's functionality.
  • Legal requirements: We may disclose information if required by law, legal process, or to protect the rights, safety, or property of Rephiq, our users, or the public.

6. Your Rights and Choices

6.1 Access and Export

You can export your workout data and body measurements from the App's Settings screen in CSV or JSON format at any time.

6.2 Account Deletion

You can permanently delete your account from the App's Settings screen. This immediately and irreversibly removes:

  • Your user profile and all personal information
  • All workout data, templates, and exercise history
  • All social profile data, posts, comments, and follow relationships
  • All progress photos from our servers
  • All leaderboard entries
  • All AI usage records

This action cannot be undone.

6.3 Notification Preferences

You can enable or disable workout reminder notifications at any time in the App's Settings. You can also revoke notification permissions at the operating system level.

6.4 Health Data Permissions

You can enable or disable HealthKit/Health Connect integration at any time in the App's Settings. Revoking permission stops all future health data writes. Data previously written to your health platform remains under your control via your device's Health app.

6.5 Social Profile Visibility

You can set your social profile to private at any time, restricting visibility to approved followers only.

6.6 Data Portability and Requests

To request a copy of your data, ask questions about our data practices, or exercise any privacy rights, contact us at support@rephiq.com.

7. Children's Privacy

Rephiq is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. The App enforces a minimum age of 13 during account setup. If we become aware that we have collected data from a child under 13, we will promptly delete it.

8. International Data Transfers

Your data is stored on Google Cloud infrastructure, which may be located in the United States or other countries. By using the App, you consent to the transfer of your information to these locations. We rely on Google's data processing agreements and standard contractual clauses to ensure adequate protection for international transfers.

9. Data Retention

We retain your data for as long as your account is active. If you delete your account, all associated data is permanently removed from our systems as described in Section 6.2.

Anonymised analytics data (which cannot be linked back to you) may be retained indefinitely for product improvement purposes.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you through the App or by updating the "Last Updated" date at the top of this page. Your continued use of the App after changes are posted constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

12. Jurisdiction-Specific Disclosures

For European Economic Area (EEA) and UK Residents

Under the General Data Protection Regulation (GDPR), the legal bases for processing your data are:

  • Contract performance: Processing necessary to provide the App's services (workout tracking, data sync, programme generation).
  • Legitimate interests: Analytics and error monitoring to improve the App.
  • Consent: Health data integration, push notifications, and social features.

You have the right to access, rectify, erase, restrict processing, and port your data. You also have the right to withdraw consent and lodge a complaint with your local data protection authority.

For California Residents

Under the California Consumer Privacy Act (CCPA), you have the right to know what personal information we collect, request deletion, and opt out of the sale of personal information. We do not sell personal information.

For Australian Residents

We comply with the Australian Privacy Principles (APPs) under the Privacy Act 1988. You may contact us to access or correct your personal information or make a privacy complaint.

This privacy policy was last reviewed and updated on April 6, 2026.