Back to Login

Privacy Policy

Last updated: May 4, 2026

1. Introduction

This Privacy Policy explains how Coach Vita ("we", "us", or "our") collects, uses, and protects your personal data when you use our personal training and coaching application. Coach Vita is available as a web application and as a mobile app for iOS and Android. It is operated by Martin Eliason, based in Berlin, Germany. We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR/DSGVO).

By using Coach Vita, you agree to the collection and use of information in accordance with this policy.

2. Data Controller

The data controller responsible for your personal data is:

Martin Eliason

Lottumstr. 13, 10119 Berlin, Germany

support@coach-vita.com

3. Personal Data We Collect

We collect the following types of personal data:

Account Information

  • Name
  • Email address
  • Password (stored securely using industry-standard hashing)
  • Authentication tokens (for Google and Apple Sign-In)

Workout and Training Data

  • Training programs and exercises
  • Workout session logs (dates, weights, sets, reps, RIR)
  • Personal notes on exercises
  • Progress metrics and statistics
  • Daily check-in responses (energy, mood, tags)

Health and Fitness Data (Special Category — see Section 4)

  • Heart rate variability (HRV) and resting heart rate
  • VO2 Max and cardiovascular fitness metrics
  • Sleep data (duration, stages, scores)
  • Body weight and body composition measurements
  • Recovery scores and strain data
  • Stress levels and Body Battery data (Garmin)
  • Activity data (workouts, steps, calories) from wearables
  • Nutrition data (calories, macronutrients) if you enable it

Health data is collected from Apple Health (HealthKit), Google Health Connect, and/or third-party wearable integrations (Garmin, WHOOP, Withings, Strava) only when you explicitly connect them.

Coach Vita Conversations

  • Messages you send to the AI coaching assistant
  • AI-generated responses and recommendations
  • Conversation summaries for context continuity

Technical Data

  • Device type and operating system
  • App version
  • Push notification tokens (for delivering notifications)
  • Crash reports and performance data (via Sentry)
  • IP address

Data Stored on Your Device (Mobile App)

  • Authentication tokens in the OS-encrypted keychain (iOS Keychain / Android Keystore via expo-secure-store)
  • Offline workout data in a local SQLite database (synced to the server when online)
  • App preferences and cache in AsyncStorage

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

General Personal Data (GDPR Article 6)

  • Contract (Art. 6(1)(b)): Processing is necessary to provide the training tracker and coaching service you have subscribed to. This covers your account data, workout logs, and program data.
  • Consent (Art. 6(1)(a)): For optional integrations with third-party services, we process data only with your explicit consent. You can withdraw consent at any time by disconnecting the integration in Settings.
  • Legitimate Interest (Art. 6(1)(f)): For crash reporting and performance monitoring (Sentry) to maintain service quality and fix bugs. You can object to this processing by contacting us.

Health Data — Special Category (GDPR Article 9)

Health data (HRV, heart rate, sleep, VO2 Max, body weight, recovery scores) is classified as "special category data" under GDPR Article 9. Processing of this data is prohibited by default and requires an additional legal basis beyond Article 6.

We process your health data based on your explicit consent under Article 9(2)(a) GDPR. When you connect a health data source (Apple Health, Health Connect, or a wearable), you are asked to give explicit consent for processing your health data for the specific purpose of providing personalized training and recovery recommendations.

You can withdraw this consent at any time by disconnecting the health data source in your Settings. Upon withdrawal, we stop processing your health data for coaching purposes. Previously synced health data can be deleted by contacting us or deleting your account.

5. How We Use Your Data

We use your personal data to:

  • Provide and maintain the training tracker and coaching service
  • Authenticate you and secure your account
  • Store and display your workout history and progress
  • Generate progress charts, statistics, and personal records
  • Provide AI-powered coaching features (Coach Vita) including personalized training recommendations
  • Deliver recovery and readiness assessments based on health data
  • Send push notifications (workout reminders, coaching nudges) when enabled
  • Sync with third-party fitness services when you opt in
  • Diagnose and fix errors (crash reporting via Sentry)

6. Third-Party Service Providers

We use the following third-party services to operate Coach Vita:

Vercel

Hosting and deployment platform for the web app and API

Location: United States

Privacy Policy

Neon (PostgreSQL)

Database hosting for storing your account and workout data

Location: European Union

Privacy Policy

Supabase

Authentication service (email/password, Google Sign-In, Apple Sign-In, session management)

Location: European Union (Frankfurt region)

Privacy Policy

Anthropic (Claude AI)

Powers the Coach Vita AI coaching assistant

Location: United States

Privacy Policy

Sentry

Error tracking and performance monitoring to maintain service quality

Location: United States

Privacy Policy

Expo (EAS)

Mobile app build infrastructure and push notification delivery

Location: United States

Privacy Policy

Apple HealthKit (Optional)

Reads and writes health and fitness data on iOS (only if you grant permission)

Location: On-device (data transferred to our server for coaching features)

Apple Privacy Policy

Google Health Connect (Optional)

Reads and writes health and fitness data on Android (only if you grant permission)

Location: On-device (data transferred to our server for coaching features)

Google Privacy Policy

Garmin (Optional)

Sleep, HRV, stress, Body Battery, daily health summaries, and activity data (only if you connect your account)

Location: United States / Switzerland

Privacy Notice

WHOOP (Optional)

Recovery, HRV, and sleep data (only if you connect your account)

Location: United States

Privacy Policy

Strava (Optional)

Activity tracking integration (only if you connect your account)

Location: United States

Privacy Policy

Withings (Optional)

Weight and health data (only if you connect your account)

Location: France (European Union)

Privacy Policy

Several service providers are located in the United States. Data transfers to countries outside the EU/EEA are conducted in compliance with GDPR Chapter V requirements, including appropriate safeguards such as Standard Contractual Clauses (SCCs) pursuant to Article 46(2)(c) GDPR.

7. Cookies and Local Storage

Coach Vita uses only essential cookies and local storage required for authentication and service operation. We do not use tracking cookies, advertising cookies, or third-party analytics cookies.

Web App

  • sb-*-auth-token: Supabase authentication session cookie

Mobile App

  • Keychain / Keystore: Encrypted storage for authentication tokens (via expo-secure-store)
  • AsyncStorage: App preferences, cache, and onboarding state
  • SQLite: Offline workout data (synced to server when connectivity is available)

8. Data Retention

We retain your personal data for as long as your account is active and your subscription is in effect. When you delete your account, all associated personal data is permanently deleted from our systems within 30 days. This includes your profile information, workout history, training programs, coach conversations, health data, and any connected service data.

Crash reports and anonymized performance data may be retained for up to 90 days after the event for debugging purposes.

9. Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right of Access (Art. 15): You can request a copy of all personal data we hold about you.
  • Right to Rectification (Art. 16): You can request correction of inaccurate personal data.
  • Right to Erasure (Art. 17): You can request deletion of your personal data ("right to be forgotten"). You can delete your account directly in the app under Profile > Delete Account.
  • Right to Restrict Processing (Art. 18): You can request that we limit how we use your data.
  • Right to Data Portability (Art. 20): You can request your data in a machine-readable format.
  • Right to Object (Art. 21): You can object to processing based on legitimate interests.
  • Right to Withdraw Consent: You can withdraw consent for health data processing at any time by disconnecting health integrations in Settings. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

To exercise any of these rights, please contact us at support@coach-vita.com. We will respond to your request within 30 days as required by GDPR.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes encrypted data transmission (HTTPS/TLS), secure password hashing, OS-encrypted keychain storage for authentication tokens on mobile devices, server-side access controls, and rate limiting on API endpoints.

11. Age Requirement

Coach Vita is intended for users who are at least 16 years of age (in accordance with GDPR Article 8 and German law). We do not knowingly collect personal data from anyone under 16. If you are a parent or guardian and believe your child has provided us with personal data, please contact us so we can delete the information.

12. AI Transparency (Automated Decision-Making)

Coach Vita includes an AI-powered coaching assistant powered by Anthropic's Claude API. In accordance with GDPR Article 22, we inform you about automated processing:

What data the AI processes

  • Your workout history, training programs, and progress data
  • Health metrics from connected sources (sleep, HRV, recovery scores, weight)
  • Your profile information (goals, experience level, equipment, limitations)
  • Your conversation messages with Coach Vita

How the AI is used

The AI generates training program recommendations, exercise suggestions, recovery guidance, and coaching conversations. These are informational recommendations only — they do not constitute medical advice and do not produce legally or similarly significant effects. You are always free to disregard, modify, or override any AI recommendation.

Data handling by Anthropic

Data sent to the AI is processed per Anthropic's Privacy Policy. Anthropic does not use API inputs or outputs to train its models. Your data is not stored by Anthropic beyond the duration of each API request.

You can disconnect any health data source at any time from Settings, which will stop that data from being included in AI coaching context.

13. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or through the app at least 14 days before the changes take effect. We encourage you to review this Privacy Policy periodically. The "Last updated" date at the top indicates when the most recent changes were made.

14. Supervisory Authority

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with a supervisory authority. For Germany, the relevant authority is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Alt-Moabit 59-61
10555 Berlin
Germany
www.datenschutz-berlin.de

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: support@coach-vita.com

Back to LoginTerms of Service