Ember Fitness ("we", "us", "our") is the data controller for personal data collected through the Ember Fitness mobile application (the "App"). If you have questions about this policy or wish to exercise your rights, contact us at:
Email: tryemberfitness@gmail.com
We only collect data that is necessary to provide and improve the App's features.
| Category | Data | Purpose | Legal Basis (GDPR) |
|---|---|---|---|
| Account | Email address, display name, account creation date, last login date | Create and manage your account; authenticate you | Contract (Art. 6(1)(b)) |
| Workout & Fitness | Workout history, exercise reps/duration, streak count, scheduled workout days, slip-up history, fitness level, goals, voice coach preference | Power the core workout tracking and streak features | Contract (Art. 6(1)(b)) |
| Groups & Social | Group membership, display name, current streak, last active date (visible to group members) | Enable group accountability features | Consent (Art. 6(1)(a)) — disclosed at onboarding |
| Device & Notifications | Firebase Cloud Messaging (FCM) token, platform identifier ("iOS") | Send workout reminders you have requested | Legitimate interest / Consent (Art. 6(1)(f) / (a)) |
| Location | GPS coordinates during run workouts only (not stored remotely; used on-device for distance/pace) | Calculate route, distance, and pace during a run | Consent (Art. 6(1)(a)) — iOS permission prompt |
| Camera | Camera feed during pose-detection exercises (processed entirely on-device; no images stored or transmitted) | Count repetitions and provide real-time form feedback | Contract (Art. 6(1)(b)) |
| Apple Health | Walk/run workouts imported from Apple Health on your explicit request | Avoid double-entry of workouts recorded on Apple Watch | Consent (Art. 6(1)(a)) — HealthKit permission prompt |
| Advertising | Ad identifiers (for non-premium users, subject to ATT consent) | Display relevant ads through Google AdMob | Consent (Art. 6(1)(a)) — iOS ATT prompt |
| Analytics | Anonymous app usage events (optional) | Understand how features are used; improve the App | Consent (Art. 6(1)(a)) — opt-in at onboarding, changeable in Settings |
We share data with the following processors who act on our behalf under data processing agreements:
Google Firebase (Google LLC) Data Processor
We use Firebase Authentication, Cloud Firestore, and Cloud Messaging to store and sync your account data,
workouts, and push notification tokens. Google acts as a data processor under our Data Processing Addendum
(DPA). Data may be transferred to Google's servers in the United States under Standard Contractual Clauses
(SCCs) approved by the European Commission.
Google Privacy Policy: policies.google.com/privacy
Google AdMob (Google LLC) Data Processor
Non-premium users may see interstitial ads powered by Google AdMob. If you grant permission through the iOS
App Tracking Transparency (ATT) prompt, AdMob may use advertising identifiers to show personalized ads. If
you deny ATT permission, non-personalized ads are shown and no advertising identifier is shared.
AdMob Privacy Policy: support.google.com/admob/answer/6128543
Apple Inc. Service Provider
We use Sign in with Apple for authentication, Apple HealthKit for optional workout sync, and Apple's push
notification infrastructure. Apple processes data under its own privacy policy.
Apple Privacy Policy: apple.com/legal/privacy
We do not sell personal data to third parties. We do not use any additional analytics, advertising, or tracking SDKs beyond those listed above.
We retain your personal data for as long as your account is active. When you delete your account:
If your account is inactive (no sign-in) for 2 years, we reserve the right to delete it and all associated data after providing 30 days' notice to your registered email address.
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have the following rights:
To exercise any of these rights, contact us at tryemberfitness@gmail.com. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority.
Your data is stored on Google Firebase servers, which may be located outside of the EEA (including the United States). Google processes this data under Standard Contractual Clauses (SCCs) that provide an equivalent level of protection to EEA data protection law. A copy of the applicable SCCs is available from Google at cloud.google.com/terms/sccs.
The App is not directed at children under the age of 13 (or 16 in certain EU member states). We do not knowingly collect personal data from children. If you believe a child has provided us with their data, contact us and we will delete it promptly.
All data in transit is encrypted using HTTPS/TLS. Data at rest in Google Cloud Firestore is encrypted by Google. Camera-based pose detection is performed entirely on-device using Apple's Vision framework — no images or video are ever transmitted.
We may update this policy as the App evolves. Significant changes will be communicated via an in-app notice or email to your registered address. Continued use of the App after the effective date constitutes acceptance of the revised policy.
For privacy-related questions, data requests, or complaints:
Email: tryemberfitness@gmail.com