Privacy Policy

Last updated: March 15, 2026

1. Introduction

At Mofilo ("we", "our", or "us"), your privacy is our top priority. This Privacy Policy explains in simple terms how we handle your personal information when you use our fitness tracking app and website (mofilo.app).

Our Core Privacy Commitments to You:

  • We will never share or sell your data. Your personal information, including any exercises, food entries, or workout routines you create, will never be shared with others or sold to third parties.
  • You have control of your data. At any time, you can change, update, export, or remove your data. You always have the option to delete your account.
  • Permanent deletion means permanent. If you choose to delete your account, your data is permanently removed with zero retrieval options. Once deleted, it cannot be recovered.

2. How We Protect Your Data

Mofilo does not sell or share user data with third parties. Workout data, nutrition logs, measurements, and personal information remain private to each user.

Sensitive data stored on your phone is kept in a secure, encrypted location built into your device by Apple or Google. All data sent between the app and our servers is encrypted. Passwords and credentials for third-party services are stored securely on our servers, not in the app.

Users can only access their own data. Other users cannot see your information.

When a user deletes their account, all associated data is permanently removed from our servers. This includes workouts, nutrition logs, measurements, goals, and any other stored information.

3. Information We Collect

3.1 Personal Data

When you create an account, we collect the following basic information:

  • Name
  • Email address
  • Gender
  • Height
  • Weight
  • Motivational reasons for your goals (e.g., "Why are you doing this?")
  • Authentication information when using sign-in with Apple or Google
  • Unique device identifiers for advertising (Google Advertiser ID or IDFA)

2.2 Data Collected During App Usage

As you use our app to track your fitness journey, we collect the following information:

Body & Weight Tracking:

  • Weight tracking over time
  • Body measurements (Neck, Shoulders, Chest, Biceps, Forearms, Wrists, Waist, Hips, Glutes, Thighs, Calves, Ankles, Abs)

Nutrition Tracking:

  • Food intake: Calories, macronutrients (protein, carbs, fats), micronutrients (vitamins, minerals, fiber)
  • Water intake
  • Macro check-ins: maintenance calories, calorie adjustments, and check-in dates

Workout Tracking:

  • Weight training: exercises, weight, and reps
  • Cardio training: distance, time, and calories burned
  • Workout routines and templates: pre-saved exercise combinations and custom workout plans you create

App Settings & Preferences:

  • Health app integration settings (Apple Health/Google Health Connect)
  • Unit preferences (metric/imperial for weight, distance, water)
  • Time preferences and calorie tracking preferences
  • App theme preferences

2.3 Technical Information

We collect minimal technical information to help us improve our Services and tailor the app to your device:

  • Time zone preference
  • Date and time of app usage
  • General geographic region
  • Device type (iOS or Android)

2.4 Email and Mobile App Notifications

Email Communications: We collect your email address when you create an account with our mobile app or sign up for our newsletter or waitlist. By creating an account, you automatically opt in to receive Mofilo news, updates, and marketing emails.

To opt out of email communications, simply click the unsubscribe button at the bottom of any email we send you. This will allow you to choose which types of emails you no longer wish to receive.

Mobile App Notifications: Push notifications are enabled during the app onboarding process when you're asked if you'd like to turn on mobile app notifications to receive workout and food log reminders and motivation.

To disable notifications, you can:

  • Go to your phone's settings, select our app, and disable notifications
  • Go to the profile settings page in our app, find the Notification section, and disable notifications from there

2.5 Health App Integration Data

When you enable Apple Health or Google Health Connect integration, we collect and sync the following health data:

  • Fitness & Activity: Steps, workouts, distance walked/ran, flights climbed, exercise time, and basal energy burned
  • Body Composition: Weight, height, body fat percentage, BMI, and lean body mass
  • Cardiovascular: Heart rate, resting heart rate, heart rate variability, and blood pressure (systolic/diastolic)
  • Respiratory & Vitals: Respiratory rate, blood oxygen, and body temperature
  • Nutrition: Calories consumed, macronutrients (protein, carbs, fats), micronutrients (vitamins, minerals, fiber, sugar, cholesterol, caffeine), and water intake
  • Sleep: Sleep stages (asleep, awake, deep, light, REM) — read-only
  • Other Health Data: Blood glucose, menstruation flow, and mindfulness sessions
  • Motion & Sensors: Device motion data for step detection and activity tracking

2.6 Special Category Data (GDPR Article 9)

Your health and fitness data (weight, body measurements, food intake, workout history) constitutes special category data under GDPR Article 9. We process this data based on your explicit consent, which you provide when creating your account and entering health information. You may withdraw consent at any time by deleting your account.

4. How We Use Your Information

4.1 Personal Data Usage

We use your personal data collected during account setup for the following purposes:

  • User identification: To identify and authenticate your account
  • Personalized recommendations: Using the Mifflin formula with your height, weight, gender, and age to calculate your starting calories and macros
  • Motivation and goal setting: Using your motivational reasons to personalize content for each fitness goal ("Chapter") you start
  • Secure authentication: To enable secure login through Apple or Google sign-in services

4.2 App Usage Data

We use the information you track in the app to provide personalized fitness guidance:

  • Progress tracking: To help you see trends and patterns in your weight, body measurements, training performance, food intake, and nutrient consumption
  • Calorie adjustments: Using your food intake and weight logs to help adjust your calorie intake based on your specific goals and selected rate of progress
  • Workout efficiency: Storing your custom workout routines and templates to save your workouts and load them faster when you want to start a workout session
  • Personalized experience: Using your preferences to tailor the app's units, time settings, theme, and features to your liking

4.3 Health App Integration Data

When you enable Apple Health or Google Health Connect integration, we use this data to create a seamless health tracking experience:

  • Bi-directional sync: We read existing health data from your device and write new data you log in our app (food, weight, workouts) back to your health apps
  • Smart calorie calculations: We combine your heart rate, distance data, personal information, and macro check-ins to provide accurate estimates of calories burned from daily steps
  • Comprehensive activity tracking: We display your daily steps, distance walked, and estimated calories burned to give you a complete picture of your daily activity
  • Unified health data: We synchronize all your health metrics (sleep, workouts, nutrition) to ensure consistency across all your health apps
  • No advertising/analytics use: We do not use HealthKit/Health Connect data for advertising, and we do not include this data in analytics or session replay tools.

Permission control: You can revoke Apple Health permissions in the iOS Health app (Privacy & Security → Apps → Mofilo) and Health Connect permissions on Android (Settings → Health Connect → Connected apps). Revoking permissions stops future sync; data in third‑party platforms remains subject to those platforms’ policies.

4.4 Technical Information

We use technical information to ensure the app works properly for you:

  • Accurate data display: To make sure we display the correct date, time, and regional information based on your location and device
  • App optimization: To optimize the app's performance for your specific device type (iOS or Android)

5. Third-Party Services and Data Processing

We use the following third-party services for software operation, including authentication, database features implementation, improvements, and customer support:

  • Google Cloud
  • AWS (Amazon Web Services)
  • Firebase
  • Apple Health & Google Health Connect
  • Stripe (payment processing for website subscriptions)
  • Meta (Facebook) Pixel and Conversions API (advertising measurement and optimization)
  • Google Analytics and Google Ads
  • Aidbase

These services process your data only as necessary to provide our app's functionality and improve our services. We do not transmit HealthKit/Health Connect data to analytics or advertising providers. Each third-party service has its own privacy policy governing how they handle your data. We encourage you to review their respective privacy policies for more information.

5.1 Payment Processing

For subscriptions purchased through our website, we use Stripe as our payment processor. Stripe collects and processes your payment information (such as credit card number, billing address, and transaction details) on our behalf. We do not store your full payment card details on our servers. Stripe's handling of your data is governed by their Privacy Policy.

5.2 Advertising and Analytics

We use Meta (Facebook) Pixel and Conversions API on our website to measure the effectiveness of our advertising campaigns, deliver relevant ads, and understand how visitors interact with our site. These tools may collect information such as your IP address, browser type, pages visited, and actions taken on our site (such as signing up or starting a subscription). This data is shared with Meta to help us optimize our ads and measure conversions.

We may also use Google Analytics and Google Ads conversion tracking for similar purposes.

You can control ad tracking through your device or browser settings, or by using opt-out tools provided by Meta and Google. Where required by law (such as in the EU/EEA), we will obtain your consent before enabling advertising cookies and tracking pixels.

6. Your Privacy Rights

You have control over your personal information. You can exercise these rights directly in our app:

  • Access your data: View all your personal information directly in the app
  • Correct your data: Edit and update any incorrect or incomplete information in your profile and settings
  • Delete your data: Delete your account and all associated data using the account deletion feature in app settings
  • Control data use: Manage your preferences, notifications, and health app integrations in your app settings
  • Export your data: You can export all your personal data in JSON format from your account settings

7. Data Retention and Account Deletion

We keep your data only as long as necessary to provide our services and as required by law. Your data may be transferred to and stored on servers in the United States via Google Cloud (Firebase). For EU/EEA users, these transfers are covered by Google's Standard Contractual Clauses and the EU-US Data Privacy Framework.

How to delete your account: Log into the app, go to Profile Settings, and choose "Delete Account."

  • Active systems: Personal data is removed from active systems within 1–7 days after confirmed deletion.
  • Backups and caches: We do not maintain long‑term backups of personal data. Temporary system caches or logs may persist briefly and are overwritten in the normal course of operations.
  • Payment records: Transaction and billing records may be retained as required by applicable tax, accounting, and financial regulations, even after account deletion.
  • Limited retention: We may retain minimal data where required by law or for legitimate purposes such as security and fraud prevention, and will delete it when no longer needed.

8. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to operate, improve, and measure the effectiveness of our services and advertising.

8.1 What We Use

  • Essential cookies: Required for the website to function (authentication, security, preferences). These cannot be disabled.
  • Analytics cookies: Google Analytics collects anonymized usage data (pages visited, session duration, device type) to help us understand how visitors use our site.
  • Advertising cookies: Meta (Facebook) Pixel and Conversions API collect data about your visit (pages viewed, actions taken such as sign-ups or purchases) to measure ad performance and deliver relevant ads on Meta platforms. Google Ads may also use cookies for conversion tracking.

8.2 Your Choices

You can control cookies through your browser settings. You can also opt out of interest-based advertising through:

9. Changes to This Policy

We may update this Privacy Policy, our Terms and Conditions, and our Refund Policy at any time. To stay up to date on changes, review these policies periodically. Your continued use of our app and website means you accept any updated policies.

10. Age Requirements

Our app is exclusively for users 18 years of age and older. We actively prevent account creation for anyone under 18 by requiring date of birth verification during signup.

Age Verification: When you create an account, you must provide your date of birth. Users under 18 will be automatically prevented from creating an account.

By using our app, you confirm you are at least 18 years old. We do not knowingly collect personal information from anyone under 18.

11. Contact Us

If you have any questions about this Privacy Policy, concerns about how we process your personal data, or requests related to your data protection rights, please contact us at:

support@mofilo.app

Mofilo - Macro Tracker & Workout Logger With Goal Reminders