Privacy Policy
Last updated: March 2, 2026
ForgeFit ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use the ForgeFit mobile application (the "App").
1. Information We Collect
Account Information: When you create an account, we collect your email address, first name, and last name.
Health & Fitness Data: We collect data you provide or that is generated through your use of the App, including:
- Age, sex, height, and weight
- Fitness goals and goal weight
- Workout logs (exercises, sets, reps)
- Food and nutrition logs
- Water intake records
- Daily step counts (via device motion sensors)
- Weight tracking entries
Photos: When you use the AI meal recognition feature, meal photos are sent to our servers for analysis. Photos are processed in real time and are not stored permanently.
Device & Usage Data: We collect anonymous analytics data (via PostHog) and crash reports (via Sentry) to improve app quality. This may include device type, OS version, and app interaction events.
2. How We Use Your Information
- To provide and personalize the App's features (calorie estimation, workout tracking, goal setting)
- To authenticate your account and keep your data secure
- To analyze app performance and fix bugs
- To send transactional emails (e.g., password resets, email verification)
3. How We Store Your Data
Your data is stored securely using Supabase, which provides encrypted, cloud-hosted PostgreSQL databases. All data transmission uses HTTPS/TLS encryption.
4. Third-Party Services
We use the following third-party services:
- Supabase — authentication and database hosting
- PostHog — anonymous product analytics
- Sentry — crash reporting and error monitoring
- OpenAI — AI-powered meal recognition (photo analysis)
These services have their own privacy policies. We do not sell or share your personal data with advertisers or data brokers.
5. Data Sharing
We do not sell, rent, or trade your personal information. We may share data only:
- With third-party service providers listed above, solely to operate the App
- If required by law, regulation, or legal process
6. Your Rights
You have the right to:
- Access your personal data stored in the App
- Correct inaccurate information via the Profile screen
- Delete your account and all associated data at any time from the Profile tab
- Withdraw consent for device permissions (camera, motion sensors) via your device settings
7. Children's Privacy
The App is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.
8. Data Retention
We retain your data for as long as your account is active. When you delete your account, all personal data is permanently removed from our servers within 30 days.
9. Security
We implement industry-standard security measures including HTTPS encryption, secure authentication via Supabase Auth, and access controls. However, no method of electronic transmission is 100% secure.
10. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Continued use of the App after changes constitutes acceptance of the revised policy.
11. Contact Us
If you have questions about this Privacy Policy or your data, contact us at: