Privacy Policy

Effective Date: February 14, 2026

Last Updated: April 17, 2026

VolumeLogic ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, retain, and safeguard your information when you use our mobile application, including how long we keep data and how you can have it deleted.

1. Information We Collect

Health and body profile data (weight, height, age, gender) are considered sensitive personal data and are processed only with your explicit consent. This data is never sold or used for advertising.

• Account Data: Email address provided during sign-up to sync your data across devices and for account recovery purposes.
• Health & Body Profile: We collect weight, height, age, and gender. This data is used solely to calculate your Basal Metabolic Rate (BMR) and estimate calorie expenditure for personalized fitness insights.
• Fitness Activity: Workout logs, exercises, sets, weights, reps, rest periods, and progression history to track your fitness journey.
• Sensor Data: With your explicit permission, we access your device's pedometer (step counter) and heartrate sensor to provide daily activity tracking, BPM and integrate it with your workout data.
• Usage Data: Anonymous analytics including app performance metrics, feature usage, crash reports, and session duration to improve app functionality and user experience.
• Device Information: Device type, operating system version, and app version for compatibility and troubleshooting purposes.

2. How We Use Your Data

We use your information to:

• Provide core functionality including workout tracking, volume analysis, and progress visualization
• Sync your data across devices via secure cloud storage
• Calculate personalized fitness metrics (BMR, calorie burn estimates, training volume)
• Process subscription payments and manage your premium features
• Send important service announcements and account-related notifications
• Improve app performance and develop new features based on aggregated usage patterns
• Provide customer support and respond to your inquiries

3. Third-Party Services

We use the following trusted third-party services to operate VolumeLogic:

• Supabase: Provides secure cloud database hosting for your account data, health profile, and workout logs. Data is encrypted in transit and at rest. Supabase does not use your personal data for any purpose other than providing database services to us.
• RevenueCat: Processes subscription payments and manages premium feature access. RevenueCat receives transaction data but does not have access to your health or fitness information.
• Analytics Services: We use privacy-focused analytics to understand app usage patterns. These services receive anonymized data only and cannot identify individual users.

These third-party services operate under their own privacy policies and are contractually obligated to protect your data.

4. Data Security & Storage

We implement industry-standard security measures including:

• End-to-end encryption for data transmission
• Encrypted database storage
• Secure authentication protocols
• Regular security audits and updates
• Access controls and Row Level Security (RLS) policies limiting who can access your data

Your data is stored on secure servers in Europe (via Supabase cloud infrastructure). Workout logs and personal preferences are also stored locally on your device. While we take all reasonable precautions, no method of electronic storage is 100% secure, and we cannot guarantee absolute security.

5. Data Retention & Deletion

How long we retain your data. We keep your personal data only as long as we have a valid reason to do so:

• Active account: We retain your account data, health and fitness information, and related content for as long as your account remains open and you use the app, so we can provide syncing, backups, and the features you expect.
• Inactive account: If you stop using the app but do not delete your account, we may delete your personal data after your account has been inactive (no successful sign-in) for up to two (2) years, unless we must keep it longer for legal, security, or dispute-resolution reasons.
• Local data on your device: Data stored only on your device remains until you remove the app, clear app data in your device settings, or delete content inside the app.

What happens when you delete your account. If you delete your account through the app (see below), we apply the following schedule to data we hold in our systems:

• Personal data tied to your account—including health information and workout logs—is permanently deleted within 30 days of confirmed account deletion, except where a longer period is required by law.
• Backup copies of deleted data are purged within 90 days of account deletion.
• Anonymized analytics (which cannot reasonably identify you) may be retained indefinitely for product improvement and statistics.
• Legal and financial records (for example, billing or tax-related information held by us or payment processors) may be retained as long as required by applicable law.

How you can request deletion of your data. You can delete your account and the personal data associated with it in the following ways:

1. Open the VolumeLogic app.
2. Go to Settings.
3. Tap Delete Account and confirm when prompted.

If you cannot access the app, email privacy@volumelogic.se from the email address registered to your account and use the subject line Account Deletion Request. We will process verified requests as soon as reasonably practicable, typically within 48 hours of confirming your identity.

6. Your Rights & Data Control

You have the following rights regarding your data:

• Access: Request a copy of all data we hold about you
• Correction: Update or correct inaccurate information
• Deletion: Delete your account and associated data as described in Section 5 (in-app Settings → Delete Account, or by emailing privacy@volumelogic.se)
• Portability: Export your workout data in CSV or JSON format from the app
• Objection: Opt out of analytics or marketing communications
• Withdrawal of Consent: Revoke sensor permissions at any time through device settings

To exercise these rights, use the in-app settings or contact us at support@volumelogic.se.

7. International Users & Data Transfers

VolumeLogic is available worldwide. Data is stored within the European Union through Supabase's European cloud infrastructure, ensuring GDPR compliance for all users.

If any data is transferred outside the EU/EEA in the future, such transfers will be protected using approved safeguards such as Standard Contractual Clauses (SCCs).

For European Union Users (GDPR): We comply with the General Data Protection Regulation.

Our lawful bases for processing are:

• Consent – health data and sensor access
• Contract performance – account, syncing, workout tracking
• Legitimate interest – anonymized analytics to improve app stability and features

8. Cookies & Tracking Technologies

Our mobile app does not use cookies. We may use the following tracking technologies:

• Local Storage: To save your preferences and session data on your device
• Analytics SDKs: To collect anonymous usage statistics
• Crash Reporting: To identify and fix bugs (no personal data is included)

9. Children's Privacy

VolumeLogic is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at privacy@volumelogic.se, and we will delete such information immediately.

10. Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

• Notify affected users via email within 72 hours of discovering the breach
• Describe the nature of the breach and what data was compromised
• Outline steps we are taking to address the breach
• Provide guidance on how you can protect yourself
• Notify relevant authorities as required by law

11. Marketing Communications

We do not sell or share your personal information with advertisers or marketing companies. We may occasionally send you service-related announcements or feature updates. You can opt out of non-essential communications.

12. Changes to This Privacy Policy

We may update our Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date at the top
• Sending an in-app notification OR email for significant changes

Your continued use of VolumeLogic after any changes indicates your acceptance of the updated Privacy Policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

• Privacy & Data Inquiries: privacy@volumelogic.se
• Technical Support: support@volumelogic.se
• Legal Questions: legal@volumelogic.se

© 2025 VolumeLogic, Linus Westling. All rights reserved.