Privacy Policy

Information we collect

We collect the following categories of information when you use LiftLedger:

• Account information: Your name, username, and email address when you create an account.
• Health and fitness data: Workout logs (exercises, sets, reps, weight), bodyweight entries, and body measurements (e.g. chest, waist, bicep) that you voluntarily enter.
• Profile data: Your height, weight, fitness goal, and experience level entered during onboarding.
• Device identifiers: An Expo push notification token stored to deliver training reminders and bodyweight log prompts.
• Usage data: Crash reports and error diagnostics collected automatically via Sentry to help us fix bugs.

How we use your information

• To provide and operate the LiftLedger app and its features.
• To sync your data securely across devices via Supabase (our backend provider).
• To send push notifications such as training day reminders and bodyweight log prompts, if you have enabled them.
• To send transactional emails (e.g. email confirmation, password reset) via Resend.
• To process in-app subscription purchases via RevenueCat and the Google Play or Apple App Store billing systems.
• To diagnose crashes and improve app stability via Sentry error tracking.

Data sharing and third parties

We do not sell your personal data. We do not share your data with advertisers. We use the following third-party services to operate LiftLedger:

• Supabase — cloud database and authentication (data stored in the United States).
• RevenueCat — subscription management and purchase validation.
• Sentry — error and crash reporting. Crash reports may include device model and OS version.
• Resend — transactional email delivery (confirmation emails, password resets).
• Expo — push notification delivery infrastructure.

Each of these providers has their own privacy policy governing how they handle data.

Data security

All data transmitted between your device and our servers is encrypted in transit via HTTPS/TLS. Your account is protected by email and password authentication managed by Supabase Auth. We apply Row-Level Security policies so that each user can only access their own data.

Data retention and deletion

Your data is retained for as long as your account is active. You may request deletion of your account and all associated data at any time by contacting us at the email below. We will process deletion requests within 30 days.

Children's privacy

LiftLedger is intended for users aged 18 and older. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

Your rights

Depending on your location, you may have the right to access, correct, or delete your personal data, or to restrict or object to its processing. To exercise any of these rights, please contact us using the details below.

Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date above. Continued use of the app after changes constitutes your acceptance of the updated policy.