Privacy Policy
Last updated: 5 July 2026
This Privacy Policy explains how Sthenos (“Sthenos”, “we”, “us”) collects, uses, and protects your information when you use the Sthenos iOS application (the “App”). By using the App, you agree to the practices described here.
Operator & contact. Sthenos is operated by [LEGAL ENTITY / DEVELOPER NAME]. Questions or privacy requests: support@getsthenos.io.
1. Information we collect
Account information
- Email address — when you sign up with email/password or Sign in with Apple.
- Apple ID token — if you choose Sign in with Apple.
- Profile — display name, username, optional profile photo, and preferences.
Fitness & health data you enter
- Workouts — exercises, sets, reps, load, and RIR (reps in reserve).
- Body metrics — body weight, body-fat percentage, lean mass, and related measurements you record.
- Progress photos — images you upload to track physical progress (private to your account).
- Plans & content — training blocks, mesocycles, microcycles, and custom exercises you create or import.
Apple Health (HealthKit) — optional
With your explicit permission, Sthenos can read from and/or write to Apple Health for: body mass (weight), body-fat percentage, lean body mass, height, workouts, and active energy. You control this in the iOS Health app and can revoke it at any time. Health data obtained via HealthKit is used only to provide App features you request and is never used for advertising or shared with third parties for marketing.
Subscriptions & purchases
Sthenos offers an optional auto-renewable subscription (“Premium”). Purchases are processed by Apple through the App Store — we never receive or store your payment card details. We do store your entitlement/subscription status and a record of your purchases so we can unlock features and provide support.
Social features (your Training Circle)
Sthenos lets you connect with other users. If you accept a follower, follow someone, or share a workout, plan, or folder, then that content — and related activity — becomes visible to the specific people you’ve shared it with, according to your sharing settings. Your public profile fields (display name, username, and profile photo) may be visible to users you connect with. Note that profile photos are served from a public URL; treat them as potentially viewable by anyone who has that link. There is no public feed and no content is made broadly public without your action.
Automatically collected
- Device & diagnostics — iOS version and device model, and, if we enable crash/diagnostics reporting, crash logs to fix bugs. We do not currently use third-party advertising or cross-app tracking. If we add analytics or crash tooling, we will update this policy and the App Store privacy label before doing so.
- Authentication tokens — secure tokens that keep you signed in.
2. How we use your information
- Provide the core service: tracking workouts, syncing across your devices, showing progress, and managing plans.
- Enable social features you opt into (sharing, following, your circle).
- Process and validate subscriptions and restore purchases.
- Maintain security, prevent abuse, and provide support.
- Improve the App and fix bugs.
We do not sell your personal data, and we do not share it with advertisers.
3. Where your data is stored
- Cloud database & storage: Supabase (managed PostgreSQL + object storage), in United States data centers.
- Encryption: data is encrypted in transit (HTTPS/TLS) and at rest.
- Access controls: row-level security restricts each account to its own data; shared content is governed by your sharing settings.
4. Third-party services
- Supabase — cloud database, authentication, and storage. Privacy policy.
- Apple — Sign in with Apple, App Store purchases, and (optionally) HealthKit. Privacy policy.
5. Data retention & deletion
- We keep your data while your account is active.
- You can delete your account in Profile → Settings → Delete Account; your data is permanently deleted within 30 days.
- Encrypted backups are retained for up to 30 days for disaster recovery, then purged.
6. Your rights & choices
- Access & export — view your data in the App and export your workout history.
- Correct — update your profile and entries at any time.
- Delete — delete your account and associated data as described above.
- HealthKit — revoke access in iOS Settings → Privacy & Security → Health.
Depending on where you live, you may have additional rights under the GDPR (EEA/UK) or CCPA (California), including access, rectification, erasure, portability, and objection. To exercise any right, email us with “Privacy Request” in the subject line.
7. Children’s privacy
Sthenos is not intended for children under 13, and we do not knowingly collect their data. If you believe a child has provided us information, contact us and we will delete it.
8. International users
Your information is processed and stored in the United States, where our service providers operate. By using the App you consent to this transfer.
9. Changes to this policy
We may update this policy. We will post the revised version and update the “Last updated” date, and notify you in-app of significant changes. Continued use after changes take effect constitutes acceptance.
10. Contact
Email support@getsthenos.io with any questions or privacy requests.