Powered by Termly
We use essential cookies to make our site work. With your consent, we may also use non-essential cookies to improve user experience and analyze website traffic. By clicking “Accept,” you agree to our website's cookie use as described in our Cookie Policy. You can change your cookie settings at any time by clicking “Preferences.”

Privacy Policy

Last Updated: December 7, 2025 | Effective Date: December 7, 2025

1. Introduction

Welcome to Functioning Fitness ("Company," "we," "us," or "our"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application, website, and related services (collectively, the "Services").

Functioning Fitness is a wellness application designed to help seniors and adults transform daily household activities into trackable fitness routines. Given the nature of our Services, we may collect health and fitness-related information, which we treat with the highest level of care and protection.

Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

Our Commitment: We will never sell your health data to third parties. Your wellness information is used solely to provide and improve our Services for you.

2. Information We Collect

We collect several types of information to provide and improve our Services. The categories of information we collect include:

2.1 Personal Information

Information that identifies you as an individual, including:

  • Account Information: Name, email address, username, password (encrypted), date of birth, and gender
  • Profile Information: Profile photo (optional), fitness goals, and activity preferences
  • Contact Information: Email address, phone number (optional)
  • Payment Information: For Premium subscriptions, payment details are processed by third-party payment processors (we do not store complete payment card information)

2.2 Health and Fitness Information

Sensitive Data Notice: Health and fitness data is considered sensitive personal information under various privacy laws. We apply enhanced protections to this data category.

  • Activity Data: Household activities logged, exercise routines, duration of activities, and frequency
  • Fitness Metrics: Calories burned (calculated using MET values), steps taken, distance traveled
  • Body Measurements: Height, weight, and body measurements (if provided)
  • Health Conditions: Medical conditions or physical limitations (if voluntarily provided for personalized recommendations)
  • Progress Data: Fitness goals, milestones achieved, streaks, and achievement badges
  • Connected Device Data: Heart rate, sleep data, and other metrics from integrated health platforms (Apple HealthKit, Google Fit)

2.3 Usage and Device Information

  • Device Information: Device type, operating system, unique device identifiers, mobile network information
  • Log Data: Access times, pages viewed, app crashes, and other system activity
  • Location Data: Approximate location based on IP address (we do not collect precise GPS location unless explicitly enabled for specific features)
  • Usage Patterns: Features used, time spent in app, navigation paths, and interaction data

2.4 Communications

  • Support Communications: Messages, feedback, and support requests you send to us
  • Survey Responses: Information provided in surveys or questionnaires
  • Community Content: Posts, comments, and content shared in community features

2.5 Caregiver Information (Premium Feature)

If you use our Caregiver Portal feature, we may collect contact information for designated caregivers and emergency contacts, with your explicit consent.

3. How We Collect Information

3.1 Information You Provide Directly

We collect information you voluntarily provide when you:

  • Create an account or register for our Services
  • Complete your profile or onboarding questionnaire
  • Log activities, workouts, or health data
  • Subscribe to Premium features
  • Participate in surveys, contests, or promotions
  • Contact customer support or provide feedback
  • Interact with community features

3.2 Information Collected Automatically

When you use our Services, we automatically collect certain information through:

  • Cookies and Similar Technologies: Small data files stored on your device (see our Cookie Policy for details)
  • Analytics Tools: Google Analytics and similar services to understand usage patterns
  • Device Sensors: With your permission, motion sensors for activity tracking
  • Log Files: Server logs that record your interactions with our Services

3.3 Information from Third Parties

We may receive information about you from:

  • Health Platforms: Apple HealthKit, Google Fit, or other connected health services (only with your explicit permission)
  • Social Media: If you choose to sign in through Google or other social providers
  • Wearable Devices: Fitness trackers, smartwatches, and other connected devices you authorize
  • Payment Processors: Transaction confirmation and billing information

4. How We Use Your Information

We use the information we collect for the following purposes:

4.1 Providing and Improving Services

  • Create and manage your account
  • Deliver personalized fitness recommendations and activity plans
  • Calculate calories burned using MET-based calculations
  • Track your progress, streaks, and achievements
  • Enable gamification features (badges, milestones, rewards)
  • Process Premium subscription payments
  • Provide customer support and respond to inquiries
  • Analyze usage patterns to improve our Services

4.2 Personalization

  • Customize activity recommendations based on your preferences and capabilities
  • Adapt difficulty levels and suggestions based on your progress
  • Provide AI-powered safety validation for recommended activities
  • Tailor notification timing and content to your usage patterns

4.3 Communication

  • Send transactional emails (account verification, password resets, subscription confirmations)
  • Deliver push notifications for reminders, achievements, and motivational messages
  • Send service updates and important announcements
  • With your consent, send promotional communications and newsletters

4.4 Safety and Security

  • Detect, prevent, and address fraud, security breaches, and abuse
  • Verify user identity and prevent unauthorized access
  • Monitor for violations of our Terms of Service
  • Enable emergency response features (Premium)

4.5 Legal Compliance

  • Comply with applicable laws, regulations, and legal processes
  • Respond to lawful requests from public authorities
  • Protect our rights, privacy, safety, or property
  • Enforce our Terms of Service and other agreements

4.6 Research and Analytics

  • Conduct aggregated, anonymized research to improve fitness recommendations
  • Analyze trends and patterns to enhance user experience
  • Develop new features and services

5. How We Share Your Information

We DO NOT sell your personal information or health data to third parties.

We may share your information in the following circumstances:

5.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our Services, including:

  • Cloud Hosting: Firebase/Google Cloud for data storage and processing
  • Analytics: Google Analytics for usage analysis
  • Payment Processing: Apple App Store, Google Play Store, and payment processors for subscription billing
  • Email Services: For transactional and marketing communications
  • Customer Support: Tools to help us respond to your inquiries

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

5.2 With Your Consent

  • Caregivers: If you enable the Caregiver Portal (Premium), designated caregivers can view your activity and progress
  • Community Features: Information you choose to share publicly in community features
  • Health Platform Sync: Data shared with Apple HealthKit, Google Fit, or other platforms you connect

5.3 Legal Requirements

We may disclose your information if required to do so by law or in response to:

  • Valid legal processes (subpoenas, court orders, government requests)
  • Protect the rights, property, or safety of Functioning Fitness, our users, or others
  • Investigate potential violations of our Terms of Service
  • Detect, prevent, or address fraud, security issues, or technical problems

5.4 Business Transfers

In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such change and any choices you may have regarding your information.

5.5 Aggregated or De-identified Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you for research, marketing, analytics, or other purposes.

6. Third-Party Integrations

6.1 Apple HealthKit

If you choose to connect Apple HealthKit, we may read and/or write the following data types with your explicit permission:

  • Active energy burned
  • Steps and distance
  • Workout data
  • Heart rate (if available)

In accordance with Apple's HealthKit guidelines:

  • We will not use HealthKit data for advertising purposes
  • We will not sell HealthKit data to third parties
  • We will not use HealthKit data for purposes unrelated to health and fitness
  • You can revoke HealthKit access at any time through your device settings

6.2 Google Fit / Health Connect

If you choose to connect Google Fit or Health Connect, similar data types may be accessed with your permission. Our use of information received from Google Fit APIs adheres to the Google Fit Developer and User Data Policy, including the Limited Use requirements.

6.3 Wearable Devices

You may connect various wearable devices and fitness trackers. Data synced from these devices is subject to both this Privacy Policy and the privacy policies of the respective device manufacturers.

6.4 Social Login Providers

If you sign in using Google or other social providers, we receive basic profile information as permitted by your privacy settings on those platforms. We do not post to your social media accounts without your explicit permission.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information about your interactions with our Services. For detailed information about the cookies we use and how to manage your preferences, please see our Cookie Policy.

7.1 Types of Cookies We Use

  • Essential Cookies: Required for basic website functionality
  • Analytics Cookies: Help us understand how visitors interact with our Services (Google Analytics)
  • Functional Cookies: Remember your preferences and settings
  • Marketing Cookies: Used to deliver relevant advertisements (with your consent)

7.2 Google Analytics

We use Google Analytics (GA4) to analyze website usage. Google Analytics collects information such as:

  • Pages visited and time spent on each page
  • Traffic sources and referral information
  • Device and browser information
  • Approximate geographic location based on IP address

GA4 does not store complete IP addresses and is configured to minimize data collection. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

7.3 Consent Management

We use Termly as our Consent Management Platform (CMP) to obtain and manage your cookie preferences. You can modify your cookie preferences at any time through our cookie consent banner or by visiting our Cookie Policy page.

8. Data Retention

We retain your personal information for as long as necessary to provide our Services and fulfill the purposes described in this Privacy Policy. Specific retention periods include:

Data TypeRetention Period
Account InformationUntil account deletion + 30 days
Activity and Health DataUntil account deletion + 30 days
Payment Records7 years (legal/tax requirements)
Support Communications3 years from last interaction
Analytics Data26 months (Google Analytics default)
Backup Data90 days after primary deletion

When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal, tax, or regulatory purposes. Backup copies may take up to 90 days to be fully purged from our systems.

9. Data Security

We implement comprehensive technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

9.1 Technical Safeguards

  • Encryption: AES-256 encryption for sensitive health data at rest
  • Transport Security: TLS 1.3 encryption for all data in transit
  • Secure Authentication: Magic link authentication, OAuth 2.0, and secure password hashing
  • Access Controls: Role-based access controls and principle of least privilege
  • Audit Logging: Comprehensive logs for data access and modifications

9.2 Organizational Measures

  • Regular security assessments and vulnerability testing
  • Employee training on data protection and privacy
  • Incident response procedures
  • Vendor security assessments for third-party service providers

9.3 Your Role in Security

You can help protect your information by:

  • Using strong, unique passwords or passwordless authentication
  • Keeping your device software updated
  • Not sharing your login credentials
  • Logging out when using shared devices
  • Reporting any suspicious account activity to us immediately

Security Incident Notification: In the event of a data breach that affects your personal information, we will notify you as required by applicable law.

10. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information. These may include:

  • Right to Access: Request a copy of the personal information we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete information
  • Right to Erasure: Request deletion of your personal information ("right to be forgotten")
  • Right to Restriction: Request that we limit how we use your information
  • Right to Data Portability: Receive your data in a structured, commonly used format
  • Right to Object: Object to certain types of processing, including direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time where we rely on consent for processing

How to Exercise Your Rights

You can exercise many of these rights directly through the app:

  • Access and Update: Through your Profile and Settings screens
  • Download Your Data: Export feature in Settings
  • Delete Your Account: Account deletion option in Settings
  • Manage Permissions: Through your device's privacy settings

For other requests, please contact us at privacy@functioningfitness.com. We will respond to your request within 30 days (or sooner as required by law).

11. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

11.1 Your California Rights

  • Right to Know: What personal information we collect, use, disclose, and sell
  • Right to Delete: Request deletion of your personal information
  • Right to Correct: Request correction of inaccurate personal information
  • Right to Opt-Out: Opt out of the sale or sharing of personal information
  • Right to Limit: Limit use of sensitive personal information
  • Right to Non-Discrimination: Not be discriminated against for exercising your rights

11.2 Categories of Information Collected

In the preceding 12 months, we have collected the following categories of personal information:

  • Identifiers (name, email, account name)
  • Personal information under California Civil Code Section 1798.80
  • Characteristics of protected classifications (age, gender)
  • Commercial information (subscription history)
  • Internet or network activity (usage data)
  • Geolocation data (approximate location)
  • Sensory data (photos you upload)
  • Professional or employment information (if provided)
  • Inferences drawn from the above
  • Sensitive personal information (health data, precise geolocation if enabled)

11.3 Sale and Sharing

We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising.

11.4 Sensitive Personal Information

We collect and use sensitive personal information (health data) only for providing our fitness Services. We do not use sensitive personal information for advertising or profiling purposes.

11.5 Exercising Your California Rights

To exercise your California privacy rights:

We will verify your identity before processing your request. You may also designate an authorized agent to make a request on your behalf.

12. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom (UK), or Switzerland, you have rights under the General Data Protection Regulation (GDPR) or equivalent local laws.

12.1 Legal Bases for Processing

We process your personal data based on the following legal grounds:

  • Contract Performance: To provide our Services to you
  • Consent: For marketing communications, cookies, and health data processing
  • Legitimate Interests: For security, fraud prevention, and service improvement
  • Legal Obligation: To comply with applicable laws

12.2 Your GDPR Rights

In addition to the rights listed in Section 10, you have the right to:

  • Lodge a complaint with your local data protection authority
  • Object to automated decision-making and profiling
  • Request information about safeguards for international transfers

12.3 Data Protection Officer

For GDPR-related inquiries, please contact us at: privacy@functioningfitness.com

12.4 Supervisory Authority

If you believe we have violated your privacy rights, you have the right to lodge a complaint with your local data protection supervisory authority.

13. International Data Transfers

Functioning Fitness is based in the United States. If you access our Services from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers are located.

13.1 Transfer Safeguards

When we transfer personal data from the EEA, UK, or Switzerland to other countries, we use appropriate safeguards, including:

  • EU-US Data Privacy Framework: For transfers to certified US organizations
  • Standard Contractual Clauses: EU-approved contract terms for data protection
  • Adequacy Decisions: Transfers to countries with adequate data protection levels

13.2 Your Consent

By using our Services, you acknowledge that your information may be transferred to and processed in countries with different data protection laws than your country of residence.

14. Children's Privacy

Our Services are not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18.

If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately at privacy@functioningfitness.com. We will take steps to delete such information from our systems.

If we discover that we have collected personal information from a child under 18, we will promptly delete that information.

15. Do Not Track Signals

Some web browsers have a "Do Not Track" (DNT) feature that sends a signal to websites requesting that your browsing activity not be tracked. Our website currently does not respond to DNT signals due to lack of a uniform standard.

Global Privacy Control (GPC): We honor Global Privacy Control signals as valid opt-out requests under the CCPA/CPRA. If your browser sends a GPC signal, we will treat this as an opt-out of the "sale" or "sharing" of your personal information.

16. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes:

  • We will update the "Last Updated" date at the top of this policy
  • For material changes, we will provide prominent notice (email notification, in-app notification, or banner on our website)
  • We may ask for your consent to material changes where required by law

We encourage you to review this Privacy Policy periodically. Your continued use of our Services after any changes indicates your acceptance of the updated policy.

Review Schedule: We review and update this Privacy Policy at least annually, or more frequently when required by legal or business changes.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Functioning Fitness

Privacy Inquiries: privacy@functioningfitness.com

General Support: support@functioningfitness.com

Website: https://functioningfitness.com

We aim to respond to all privacy inquiries within 30 days. For urgent matters, please include "URGENT" in your email subject line.

Additional Information

Related Policies

Accessibility

This Privacy Policy is designed to be accessible to users with disabilities, following WCAG 2.1 guidelines. If you need this policy in an alternative format, please contact us.