Privacy Policy for Bright Workout

Last updated: 2025-07-26

This Privacy Policy explains how Bright Workout (“we”, “our”, or “us”) collects, uses, discloses, and protects your personal data. Our mobile app is available on iOS and Android platforms.

1. Information We Collect

  • Registration & Account Info: When you sign up via Supabase Auth, we collect your email and any other optional profile information.

  • Health Data (Steps, Workouts): With your permission via HealthKit (iOS) or Google Fit (Android).

  • Usage Data: App version, device model, app interactions used for improving app performance.

  • Crash Analytics (optional): Anonymous crash and performance information.

2. How We Use Your Information

  • To authenticate and manage your app account.

  • To store and display your step count or workout data.

  • To track user activity and improve the app experience.

  • To securely manage third‑party integrations and services.

3. Supabase as Data Processor

We use Supabase to handle app backend and authentication. Supabase acts as a data processor under your control and stores your account information and health data securely. Personal data may be stored on servers in the U.S. and other regions, under standard contractual clauses.

4. Data Retention & Deletion

  • We retain user data as long as your Bright Workout account exists.

  • Health & usage data may be stored to improve user experience and analytics.

  • You can request to delete your account and all associated personal data at any time by emailing us. We also recommend enabling Supabase Row Level Security to protect user data at the database level  .

  • Temporary app caches or health sync logs: deleted periodically or after inactivity.

5. Sharing Your Data

  • We do not sell your personal information.

  • We may share anonymized usage statistics with service providers to help with analytics.

  • Supabase processes and stores your data per its own Privacy Notice; consult their documentation for more detail  .

6. User Rights & Choices

  • Access & Correction: You can request access to or correction of your personal data at any time.

  • Deletion: You may request permanent deletion of your account and data.

  • Analytics Opt-Out: Contact us to disable analytics data collection.

  • Health Data Permissions: You can revoke access to HealthKit or Google Fit at any time through device settings.

7. Security

  • We implement technical and organizational safeguards to protect your personal data.

  • Supabase secures data per industry best practices and compliance measures.

8. Children’s Privacy

Bright Workout is intended for users aged 16 and older. We do not knowingly collect data from children under 16. If you believe that a child under 16 has registered without parental consent, please contact us for deletion.

9. Updates to the Policy

We may update this policy periodically. Major changes will be communicated via app updates, in-app notifications, or email. Please check back regularly.

10. Contact Us

If you have any questions or concerns about this privacy policy or your data, please email info@brightworkout.com.