Privacy Policy (SettoTrack – Workout Tracker Gym Log)
App: SettoTrack – Workout Tracker Gym Log
Developer: Kosarev Vsevolod
Privacy contact: [email protected]
Effective date: February 5, 2026
1. Overview
This Privacy Policy explains what information the SettoTrack – Workout Tracker Gym Log application ("App") collects and processes, for what purposes, and what rights you have.
The App helps you track workouts, nutrition/supplements, and body weight. We process data in accordance with this Policy and applicable laws.
2. Information we process
2.1. Account data (when you sign in)
If you sign in with Apple or Google, we process:
- Email (from the authentication provider)
- Name / Display Name (if available and/or provided by you)
- Sign-in providers (a list of authentication providers used)
You can use the App without creating an account. In that case, some features (including account-based data binding) may be unavailable.
2.2. Workout, nutrition, and body data (user content)
When you use the App, you may create and store:
- Workouts: start/end time, workout type, notes, exercises and sets (e.g., reps, weight, tempo, time, duration, distance, warm-up/drop set flags, completion time, etc.).
- Nutrition/Supplements: intake date, supplement type, name, timing (pre/post-workout, etc.), consumed amount, notes, and related product data (pack weight, dosage, calories/protein, etc.).
- Body weight: measurement date, weight value, note.
- Routines and custom exercises: titles, notes, exercise lists, display parameters (icons/colors), exercise descriptions.
These may be considered health/fitness-related data, because they reflect workouts, nutrition/supplements, and body weight.
Important: Whether your workout/exercise/routine/product/intake/body-weight data is stored and synced to the cloud depends on your access level (Free/Pro) and whether you are signed in. Without Pro, such data may remain only on your device and may not be synced (see Section 3.3).
2.3. Subscription and purchase data
To provide Pro features, we may store and process:
- Subscription status (active/inactive, tier: monthly/yearly/lifetime, trial status, expiration date)
- Purchase history, including productId, purchase/expiration dates, trial flag, and App Store transactionId
We do not process your card or bank details. Payments are processed by Apple (App Store).
2.4. Technical data
We may store:
- app version and build number
- device language and time zone
- service timestamps (created/updated/last activity)
2.5. Data we do not collect
- Location (precise or approximate) — not collected
- Contacts — not collected
- IDFA and App Tracking Transparency (ATT) — not used
- Ads (AdMob or similar) — not used
3. Where and how your data is stored
3.1. On-device storage
Some data may be stored on your device (local database/cache) to provide fast performance and (in some cases) offline usage.
3.2. Cloud storage (Firebase Firestore)
For storage and synchronization, the App uses Firebase Firestore (Google). Different categories of data (profile, subscription status, user content, etc.) may be stored in the cloud depending on your access level and sign-in status.
3.3. Cloud sync and data levels (Free/Pro)
The amount of data stored and synced to the cloud depends on subscription status and sign-in:
1) No sign-in and no Pro
The App may perform limited ("partial") sync of certain basic data required for service operation and restoring basic state. However, meaningful user content: workouts, exercises, routines, products/supplements, product/supplement intake entries, body weight entries is not stored or synced to the cloud.
2) Signed in, but no Pro
Data is bound to your account, but only basic profile data is stored in the cloud, such as: email, displayName, providers, appVersion, buildNumber, timezone, deviceLanguage, createdAt, updatedAt, lastActivityAt. Workouts, exercises, routines, products/supplements, intake entries, and body weight entries are not stored or synced.
3) Active Pro subscription
Cloud sync is performed fully and includes user content such as: workouts and exercises, routines, products/supplements and intake entries, body weight entries, and other data related to Pro features.
Note: the exact list of synced data may evolve as the App develops, but it always depends on your access level (Free/Pro) and sign-in status.
4. Analytics and crash reporting (opt-in)
We use:
- Firebase Analytics — to understand feature usage and improve the App
- Firebase Crashlytics — to diagnose crashes and improve stability
Important: analytics and crash reporting are disabled by default and enabled only after your explicit consent (opt-in).
- You can enable/disable Analytics and Crashlytics in the App settings.
- Without consent, Analytics/Crashlytics data is not sent.
If you consent, we may log events related to purchases/paywalls, e.g. purchase_start, purchase_success (product_id, is_trial, currency, value), purchase_failed, paywall_purchase_tap, and standard Firebase events (begin_checkout, purchase).
5. Remote Config
We use Firebase Remote Config for:
- maintenance status
- minimum supported app version
- content manifest (OTA content updates)
- paywall A/B testing
Remote Config is not intended to store your workout/nutrition/body content.
6. Email for support and feedback
We may use email (from your account or provided by you) for:
- customer support
- collecting additional feedback about the App
We do not send marketing or promotional emails.
You can opt out at any time by contacting [email protected].
7. Notifications
The App may use local notifications (no server push), for example:
- Low Stock Notifications (when supplement stock drops below a threshold)
8. Retention and deletion
8.1. Soft delete / archive for certain data
Some data types use an archive ("soft delete") for a limited time to allow recovery.
Deletion logic (for certain data types):
- when deleted, a record is marked with
deletedAtand hidden - cloud deletion from Firestore may occur after 10 days
- permanent on-device deletion may occur after 30 days
This applies to: workouts, products/supplements (including those with entries), nutrition entries, routines, custom exercises.
In simple terms: deleted data may remain in an archive for up to 30 days for recovery, and then is permanently deleted.
8.2. Account deletion
The App provides an account deletion feature. When you delete your account:
- your account is removed from Firebase Authentication
- your user data is removed from Firestore immediately (no 30-day archive period)
9. Sharing with third parties
We do not sell your personal data.
We may share data with infrastructure providers only as needed to operate the App:
- Google Firebase (Authentication, Firestore, Analytics, Crashlytics, Remote Config)
10. Security
We use standard security measures and Firebase infrastructure. However, no method of transmission or storage can be guaranteed 100% secure.
11. Your rights
You can:
- edit your data (via in-app features)
- delete specific data or your entire account
- withdraw consent for Analytics/Crashlytics (in app settings)
- contact us with questions at [email protected]
12. International users
The App is available internationally. Depending on your country/region, you may have additional rights (e.g., in the EU/EEA/UK). We aim to comply with applicable requirements, including deletion and restriction rights.
13. Changes to this Policy
We may update this Policy from time to time. Continued use of the App after changes take effect means you accept the updated Policy.