Privacy Policy — Workoutwire

Thank you for choosing Workoutwire! We are committed to protecting your privacy and being transparent about how we collect, use, and protect your personal information. This Privacy Policy explains our data practices when you use our mobile application and related services.

1. Who We Are

Workoutwire is operated by [Company Name] ("we," "us," or "our"). We are committed to protecting your privacy and complying with applicable privacy laws including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other regional privacy regulations.

Contact Information

• Email: info@inapp.com.au
• Address: Sydney, Australia
• Data Protection Officer: info@inapp.com.au

2. Information We Collect

2.1 Information You Provide to Us

• Account Information: Name, email address, date of birth, gender, profile photo
• Fitness Profile: Height, weight, fitness goals, experience level, preferences
• User-Generated Content: Workout logs, progress photos, notes, comments, and reviews
• Payment Information: Processed securely through third-party payment processors (we do not store full payment card details)
• Communications: Messages you send to us or other users (where applicable)

2.2 Information Collected Automatically

• Device Information: Device type, operating system version, unique device identifiers, mobile network information
• Usage Data: App features accessed, session duration, crash reports, performance metrics
• Location Data: GPS coordinates when you use location-based features (with your explicit consent)
• Camera and Photos: Access when you choose to take or upload photos (with your permission)

2.3 Information from Third-Party Sources

• Health and Fitness Integrations: Data from Apple Health, Google Fit, or other connected fitness apps and wearables (with your consent)
• Social Media: Profile information if you choose to connect social media accounts
• Authentication Services: Information from Google, Apple, or Facebook sign-in services

3. How We Use Your Information

3.1 Primary Purposes

• Service Provision: Deliver personalized workout plans, track progress, and provide fitness recommendations
• Account Management: Create and maintain your account, authenticate access, and manage subscriptions
• Personalization: Customize your experience based on your preferences and usage patterns
• Communication: Send important updates, respond to support requests, and provide customer service

3.2 Additional Purposes

• Analytics and Improvement: Analyze usage patterns to improve app functionality and user experience
• Safety and Security: Prevent fraud, ensure platform security, and protect user safety
• Legal Compliance: Comply with legal obligations, resolve disputes, and enforce our terms
• Marketing: Send promotional communications (with your consent, where required)

3.3 Legal Basis for Processing (GDPR)

• Contract Performance: Processing necessary to provide our services
• Legitimate Interests: Improving our services, analytics, and fraud prevention
• Consent: Marketing communications, location data, and optional integrations
• Legal Obligations: Compliance with applicable laws and regulations

4. How We Share Your Information

We do not sell your personal information to third parties. We may share your information in the following circumstances:

4.1 Service Providers

We work with trusted third-party service providers who help us operate our app, including but not limited to:

• Cloud Storage: AWS, Google Cloud, or similar providers for data storage
• Payment Processing: Stripe, RevenueCat, or similar payment processors
• Analytics: Firebase Analytics, Mixpanel (with data anonymization where possible)
• Customer Support: Support platforms for managing user inquiries
• Push Notifications: Firebase Cloud Messaging or similar services

4.2 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.

4.3 Legal Requirements

We may disclose information when required by law, court order, or to:

• Comply with legal processes
• Protect our rights, property, or safety
• Protect the rights, property, or safety of our users
• Prevent fraud or illegal activities

4.4 With Your Consent

We may share information with third parties when you explicitly consent to such sharing.

5. Data Security

We implement comprehensive security measures to protect your information:

5.1 Technical Safeguards

• Encryption: Data is encrypted in transit (TLS 1.3) and at rest (AES-256)
• Access Controls: Role-based access with multi-factor authentication for our team
• Regular Security Audits: Ongoing assessment of our security practices
• Secure Development: Following secure coding practices and regular security testing

5.2 Organizational Safeguards

• Employee Training: Regular privacy and security training for all staff
• Data Minimization: We collect and retain only necessary information
• Incident Response: Established procedures for addressing security incidents
• Vendor Management: Due diligence and contractual protections for third-party providers

5.3 Limitations

While we implement strong security measures, no system is 100% secure. We cannot guarantee absolute security but commit to promptly addressing any security incidents.

6. Your Privacy Rights

6.1 Universal Rights

Regardless of your location, you have the right to:

• Access: Request information about the data we hold about you
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your personal data (subject to legal obligations)
• Data Portability: Receive a copy of your data in a structured format
• Opt-Out: Unsubscribe from marketing communications

6.2 Additional Rights (GDPR, CCPA, and Similar Laws)

If you're in the EU, California, or other jurisdictions with enhanced privacy laws, you may also have:

• Right to Object: Object to processing based on legitimate interests
• Right to Restrict: Limit how we process your data
• Right to Withdraw Consent: For processing based on consent
• Right to Lodge Complaints: File complaints with supervisory authorities

6.3 Exercising Your Rights

To exercise any of these rights:

• In-App Settings: Many preferences can be managed directly in the app
• Email Us: Contact info@inapp.com.au with your request
• Account Deletion: Use the "Delete Account" feature in app settings

We will respond to requests within 30 days (or as required by applicable law).

7. Data Retention

We retain your information for as long as necessary to:

• Provide our services while your account is active
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Meet legitimate business needs

Specific Retention Periods

When data is no longer needed, we securely delete or anonymize it.

8. International Data Transfers

We may transfer your information to countries outside your residence for processing. We ensure appropriate safeguards through:

• Adequacy Decisions: Transfers to countries with adequate protection levels
• Standard Contractual Clauses: EU-approved clauses for international transfers
• Privacy Shield/Framework Agreements: Where applicable
• Data Processing Agreements: Contractual protections with all processors

9. Children's Privacy

9.1 Age Requirements

• General Use: Workoutwire is intended for users 13 years and older
• EU Users: Users must be 16 years or older, or have parental consent
• Parental Supervision: Users under 18 should have parental guidance

9.2 Children's Data Protection

We do not knowingly collect personal information from children under the applicable age limits. If we discover we have collected such information, we will promptly delete it and may suspend the account.

Parents who believe their child has provided information to us can contact info@inapp.com.au for assistance.

10. Cookies and Tracking Technologies

10.1 Types of Technologies Used

• Essential Cookies: Required for app functionality and security
• Analytics Cookies: Help us understand how users interact with our app
• Preference Cookies: Remember your settings and preferences

10.2 Managing Cookies

Mobile App: Managed through device settings and app preferences
Web Services: Browser settings control cookie preferences
Opt-Out: Analytics cookies can be disabled in app settings

11. Third-Party Integrations

11.1 Health Apps and Devices

• Apple Health/Google Fit: Sync with your consent
• Wearable Devices: Connect fitness trackers and smartwatches
• Data Control: You can disconnect integrations at any time

11.2 Social Features

• Social Login: Optional sign-in with Google, Apple, or Facebook
• Sharing Features: Share achievements with friends (with your control)
• Community Features: Participate in challenges and forums

11.3 Third-Party Privacy Policies

Integrated services have their own privacy policies. We recommend reviewing:

• Apple Privacy Policy
• Google Privacy Policy
• Facebook Privacy Policy

12. California Privacy Rights (CCPA)

12.1 Information for California Residents

In the past 12 months, we have collected the following categories of personal information:

• Identifiers (email, name, device ID)
• Personal characteristics (age, gender, fitness goals)
• Commercial information (subscription details, purchase history)
• Internet activity (app usage, preferences)
• Geolocation data (with consent)
• Audio/visual information (photos with consent)

12.2 CCPA Rights

California residents have the right to:

• Know what personal information we collect, use, and share
• Delete personal information (with exceptions)
• Opt-out of sale of personal information (we don't sell data)
• Non-discrimination for exercising CCPA rights

12.3 Shine the Light Law

California residents may request information about sharing personal information with third parties for direct marketing purposes. We do not engage in such sharing.

13. European Privacy Rights (GDPR)

13.1 Legal Basis for Processing

• Contract: To provide our services
• Legitimate Interest: For analytics, security, and improvement
• Consent: For marketing, location data, and optional features
• Legal Obligation: For compliance requirements

13.2 Data Protection Officer

Our Data Protection Officer can be reached at: info@inapp.com.au
Subject Line: "GDPR Inquiry - Workoutwire"

13.3 Supervisory Authority

EU residents can lodge complaints with their local supervisory authority if they believe we've violated GDPR requirements.

14. Changes to This Privacy Policy

14.1 Notification of Changes

We may update this Privacy Policy to reflect changes in our data practices, new legal requirements, or feature updates.

14.2 How We Notify You

For material changes, we will:

• Send an email notification to registered users
• Display a prominent notice in the app
• Update the "Last Updated" date at the top of this policy

14.3 Acceptance

Your continued use of Workoutwire after changes take effect constitutes acceptance of the updated Privacy Policy.

15. Contact Us

15.1 General Privacy Questions

Email: info@inapp.com.au
Subject Line: "Privacy Inquiry - Workoutwire"

15.2 Data Subject Rights

Email: info@inapp.com.au
Subject Line: "Data Rights Request - [Type of Request]"

15.3 Security Concerns

Email: info@inapp.com.au
Subject Line: "Security Issue Report"

16. Additional Resources

• Terms of Service: [Link to Terms]
• Cookie Policy: [Link to Cookie Policy]
• Security Information: [Link to Security Page]
• Data Processing Addendum: Available upon request for enterprise customers

Thank you for trusting Workoutwire with your fitness journey. We are committed to protecting your privacy and providing a safe, secure experience.

This Privacy Policy was last reviewed and approved by our legal team on September 14, 2025.