AI Fitness System

Privacy Policy

Effective: 2026-06-02 · Last updated: 2026-06-19

This Privacy Policy describes how Edwin Cruz ("we," "us," or "our") handles information when you use the Ghost Gains application ("the App"). By using the App, you agree to the practices described here. If you do not agree, do not use the App.

1. Summary

Ghost Gains keeps the things you log primarily on your device. To provide accounts, AI features, subscriptions, and the optional world-ranking leaderboard, we also operate a secure backend (hosted on Supabase) that stores a limited set of data — your account, subscription status, anonymous usage counters, and (if you opt in) your leaderboard and support-board entries. AI features run through our own secure server, so you never provide any API keys of your own. This policy explains what stays on your device, what we store on our server, and what is sent to the providers that power the app.

2. Information We Collect

2.1 Information you create or input

The App stores the following locally on your device using browser localStorage:

Most of this data stays on your device. A limited subset is sent to our server to provide accounts, AI, subscriptions, and the world ranking, as described in Sections 2.2 and 2.3.

2.2 AI features (chat, food scan, voice) — processed through our server

Ghost Gains uses a no-BYOK model: AI features run through our own secure backend, and the provider API keys live on our server — you never provide your own. When you use an AI feature, only the input needed to fulfill it is sent from your device to our server and forwarded to the provider that generates the response. We do not store the content of these AI requests; we keep only anonymous per-day usage counts to enforce fair-use limits.

Providers and the data they receive:

We send only the data needed for each request — your recent message context, a single food photo, or the text to be spoken — not your whole logbook.

2.3 Information stored on our server

To provide accounts, subscriptions, AI fair-use limits, and the optional world ranking, our backend (hosted on Supabase) stores a limited set of data:

2.4 Information we do NOT collect

3. How Information Is Used

On-device data operates the App's features: tracking your logs, computing progress, awarding XP, and so on. Data on our server is used only to run the account, subscription, AI fair-use, world-ranking, support, and email functions described in Section 2.3. Data sent to AI providers is used by them to generate the response you requested. We do not use any of your information for advertising or profiling.

4. Data Sharing

We do not sell, rent, or lease your personal information, and we never share it for advertising. We share data only with the service providers (processors) needed to run the App, each solely for that purpose and under its own policy: Supabase (backend, authentication, database), OpenRouter with Anthropic and Google (AI chat and food-photo analysis), ElevenLabs (voice), Brevo (account & reminder email), Google Play and Gumroad (subscription payments), and Cloudflare (web hosting). We may also disclose information if required by law or to protect the App and its users.

5. Data Storage and Security

On-device data (your logs, workouts, XP, preferences) is stored in your browser's localStorage. Server-side data (Section 2.3) is stored in our backend (Supabase), sent over encrypted HTTPS connections and protected by access controls. Account passwords are hashed by our authentication provider using industry-standard algorithms; we never see your plaintext password. A guest-only profile that never creates an account is hashed locally on your device (PBKDF2-SHA256).

Browser localStorage is not encrypted at rest by default. Treat your device's lock screen as your security boundary. If someone else has physical access to your unlocked device, they can read the App's data using browser developer tools. If your device is lost or compromised, we cannot help you recover data — we never had a copy.

6. Data Retention and Deletion

Your data persists on your device until you delete it. You may:

7. Your Privacy Rights

7.1 General rights

Most of your data lives on your device and can be accessed (it's visible in the App), corrected (edit it), deleted (DELETE ACCOUNT), and ported (EXPORT MY DATA) directly through the App. For the limited data we hold on our server (Section 2.3), DELETE ACCOUNT removes it, or you can email us at [email protected] to exercise any right.

7.2 California residents (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), gives you specific rights regarding your personal information.

Categories of personal information we collect: identifiers (email and the display name you choose), commercial information (your subscription plan and status), customer records (your logs and profile), health-related information you voluntarily enter (food, weight, workouts), and internet activity limited to anonymous in-app usage counts. We do not collect biometric identifiers, geolocation, payment card numbers, or sensitive categories beyond what you voluntarily input.

Sources: directly from you (App input and account details), our service providers (e.g., a payment confirmation from the app store), and the AI providers that respond to your requests.

Business or commercial purpose: to operate the App and provide its features — accounts, AI coaching, subscriptions, and the optional world ranking. We do not use your information for advertising or any commercial purpose beyond providing the App's features.

Right to know, delete, correct, and port: all available in-App as described in Section 6.

Right to opt out of sale or sharing: we do not sell or share your personal information for cross-context behavioral advertising. There is nothing to opt out of.

Right to limit use of sensitive personal information: we do not use sensitive personal information for purposes beyond providing the App.

Right to non-discrimination: we will not deny you service, charge you a different price, or provide a different level of service for exercising your privacy rights.

To exercise any right that is not available in-App, contact us at [email protected].

7.3 EU / UK residents (GDPR / UK GDPR)

If you are in the European Economic Area or the United Kingdom, the GDPR / UK GDPR applies to your personal data. Our legal basis for processing your information is your consent, given by using the App after accepting the Terms.

You have the right to access, rectify, erase, restrict, and port your data, and to object to processing — all available in-App. You also have the right to lodge a complaint with your national supervisory authority.

8. Children's Privacy

The App is for adults 18 years of age and older. We do not knowingly collect personal information from anyone under 18. The first-run age gate asks you to confirm you are 18+. If you believe a minor has used the App and provided information, contact us so we can delete it — though in practice all such data is on the minor's device and they can delete it directly.

9. Third-Party Links and Services

The App may link to third-party websites (including AI providers' websites). We are not responsible for the privacy practices of those third parties. Review their policies before providing them with information.

10. Our Marketing Website

The points above describe the Ghost Gains App, which ships no trackers or pixels. Our public marketing website (ghostgainsai.com) is separate. To measure how our ads perform, it uses the Meta Pixel (Facebook) — a standard analytics tag that records page views and waitlist sign-ups so we know which ads work. To match a sign-up to the ad that drove it, the email you submit on the website may be shared with Meta in hashed (non-readable) form. It does not touch your in-App data or logs. You can opt out of this kind of measurement in your Facebook ad settings.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will change the "Last updated" date at the top. Material changes will be communicated in-App. Your continued use of the App after a change constitutes acceptance of the updated policy.

12. Contact

Questions, requests, or complaints about this Privacy Policy or our data practices: [email protected].

Note about your logs: Your detailed health and fitness logs are stored on your device and are not backed up to our server — only your account, subscription, anonymous usage counts, and any leaderboard/support entries live on our backend (Section 2.3). Keep your device locked, and use EXPORT MY DATA periodically so you don't lose your logs if your device is lost.