← Back to home

Privacy Policy

Debug My Physique — debugmyphysique.com

Last Updated

Last updated: April 2026

Who We Are

Debug My Physique is a fitness tracking application operated by Dan Perman. We are committed to protecting your personal information and being transparent about how we collect and use it. If you have any privacy-related questions, please contact us at privacy@debugmyphysique.com.

Data We Collect

We collect the following categories of data to provide and improve our service:

Account Data

  • Email address used to create your account
  • Hashed password (handled securely by Supabase Auth — we never store your plain-text password)

Health & Fitness Data

  • Food logs and nutritional entries
  • Macro and calorie targets
  • Workout sessions including exercises, sets, reps, weight, and RPE (Rate of Perceived Exertion)
  • Body weight measurements over time
  • Body measurements (e.g., waist, chest, arms)
  • Active training plan configuration generated from your onboarding answers

Payment Data

  • Subscription status (active, expired, trial) managed via RevenueCat
  • We do NOT receive or store your credit card details — all payment processing for in-app purchases is handled directly by Apple

Device & Usage Data

  • Crash reports and performance telemetry collected automatically via Expo and EAS (Expo Application Services)

Camera & Photo Data

  • Food photos you capture or select when using the Pro “Scan Food” feature
  • Photos are used solely to estimate macronutrient content via Claude Vision (Anthropic) and are not stored on our servers after the response is returned

How We Use Your Data

We use the data we collect for the following purposes:

  • Device sync (Pro): Synchronize your food logs, workout sessions, measurements, and plan configuration across your devices via Supabase cloud storage
  • Plan personalization: Use your onboarding answers (goal, experience level, equipment) to generate and maintain a personalized training and nutrition plan
  • AI food scan (Pro):Send food photos to Anthropic's Claude Vision API to estimate macro and calorie content on your behalf
  • App stability: Use crash reports and telemetry to identify and fix bugs, improving the experience for all users

Third-Party Services

Debug My Physique relies on the following third-party services to operate. Each service processes data as described:

  • Supabase (supabase.com): Provides backend database, authentication, and cloud sync for Pro users. Your account credentials and synced health data are stored in Supabase-managed PostgreSQL databases protected by row-level security.
  • RevenueCat (revenuecat.com): Manages in-app subscription state, purchase validation, and entitlement tracking. RevenueCat receives your App Store receipt and subscription status.
  • Anthropic (anthropic.com): When Pro users invoke the “Scan Food” feature, food photos are transmitted to Anthropic's API for macro estimation using Claude Vision. Photos are sent on a per-request basis and are not retained for model training per Anthropic's API Privacy Policy. This disclosure is provided in compliance with Apple App Store Guideline 5.1.2(i).
  • Apple / App Store: Processes all in-app purchase payments. Apple may receive crash reports and device diagnostics via Apple infrastructure if you have opted in to share data with Apple.
  • Expo / EAS (expo.dev): Provides the build infrastructure and automatic crash reporting for the Debug My Physique mobile app.

Data Retention

Your account data (email, profile, and synced logs) is retained for as long as your account remains active. Food logs, workout sessions, measurements, and other tracking data are retained until you delete them within the app or request account deletion. Food photos sent to Anthropic for the AI scan feature are not retained by us after the macro response is returned.

Your Rights

You have the right to access, correct, or delete your personal data at any time. To request data deletion or an export of your data, email us at privacy@debugmyphysique.com. Account deletion removes your associated Supabase data, including your profile, synced logs, and plan configuration.

Children

Debug My Physique is not directed to children under the age of 13 and we do not knowingly collect personal information from children under 13. The app's age rating of 4+ reflects the absence of restricted content — it does not mean the app is intended for or targeted at children.

Security

We take reasonable measures to protect your data, including:

  • Encryption in transit using TLS for all data sent between the app and our servers
  • Row-level security (RLS) in Supabase ensuring each user can only access their own data
  • Password hashing handled by Supabase Auth — plain-text passwords are never stored

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted at this URL (debugmyphysique.com/privacy) with an updated “Last updated” date at the top of the page. Continued use of the app after changes are posted constitutes acceptance of the updated policy.

Contact

If you have any questions about this Privacy Policy or how your data is handled, please contact us at: privacy@debugmyphysique.com

© 2026 Debug My Physique