Alavita logoAlavita
Download

Alavita Privacy Policy

Last Updated: March 5, 2026

Welcome to Alavita! At Alavita ("we," "us," or "our"), we are deeply committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, process, share, and protect your information when you use the Alavita mobile application, our website (www.alavita.ai), and any related services (collectively, the "Services").

By accessing or using our Services, you signify that you have read, understood, and agree to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our Services.

1. Personal Data We Collect

We collect information that identifies, relates to, describes, or is reasonably capable of being associated with you ("Personal Data"). We obtain this information directly from you, automatically when you use our Services, and from third-party sources.

A. Personal Data You Provide Directly to Us

  • Account Registration & Profile Information: When you create an account, we collect your name, email address, password, age/date of birth, gender, and profile photo.
  • Health, Fitness & Physical Data: To provide personalized fitness and nutrition coaching, we collect deeply specific data including your weight, height, Body Mass Index (BMI), body composition, dietary preferences and constraints, fitness goals, target weight, current fitness level, and details of any physical injuries or limitations.
  • Workout & Nutrition Data: We collect data regarding your logged workouts, exercise history, Personal Records (PRs), Estimated 1 Rep Max (1RM), sets, reps, weight lifted, and your logged meals/nutrition times.
  • AI Coach Interactions: When you interact with your chosen AI Coach avatar through our in-app chat or voice features, we collect and store the contents of your conversations, prompts, instructions, and feedback to personalize your coaching experience.
  • Payment and Transaction Data: If you purchase a subscription (e.g., via RevenueCat or directly), we collect purchase history, subscription status, and relevant transaction details. (Note: Payment processing is handled by third-party providers like Apple or Google; we do not store your full credit card numbers).
  • Communications: Any information you provide when contacting our support team (e.g., via support requests, feedback forms, or emails).

B. Personal Data We Receive Automatically

  • Device and Usage Information: We automatically collect data about the device you use to access Alavita (such as hardware model, operating system version, unique device identifiers, IP address), and how you interact with our app (features used, time and duration of sessions, tapped buttons, error logs).
  • Performance Analytics & Telemetry: We track your performance trends over time, such as Best Set Weight, Reps @ Target Weight, and the internal metrics used to calculate your Alavita Vitality Score (AVS), which encompasses your Strength, Consistency, Recovery, Nutrition, and Body Composition pillars.

C. Personal Data We Receive from Third-Party Sources

  • Apple HealthKit & Google Health Connect: With your explicit consent, we may integrate with Apple HealthKit, Google Health Connect, or other fitness wearables. We may import data such as your heart rate variability (HRV), sleep metrics, active energy burned (calories), step counts, and body composition data to holistically inform your Vitality Score and AI Coach recommendations. We do not use information received through the Apple HealthKit or Google Health Connect frameworks for advertising or similar services, nor do we sell it to data brokers.
  • Authentication Providers: If you choose to log in via third-party services (e.g., Apple, Google, Supabase Auth), we obtain your authentication details and basic profile information from them.

2. Purposes of Processing Your Data

We use your Personal Data to provide, improve, and secure our Services. Specifically, we use your data for the following business and commercial purposes:

  1. To Provide the Core Services: Generating personalized workout regimes, creating tailored meal plans based on dietary constraints, tracking your PRs, and delivering the AI Coach interactive experience.
  2. To Calculate Your Alavita Vitality Score (AVS): Analyzing your strength progression, workout consistency, sleep/HRV recovery metrics, nutrition adherence, and body composition to generate a personalized, dynamic health score.
  3. To Improve AI Models and App Functionality: We analyze aggregated, de-identified workout data, meal logs, and AI conversation patterns to improve our workout parser, exercise recommendations (e.g., 1RM estimations), and overall AI coaching efficacy.
  4. Customer Support: To address your inquiries, troubleshoot technical issues, and improve our responses.
  5. Billing and Subscription Management: To process your transactions, manage premium subscriptions, and handle refund requests (which may involve sharing usage data with Apple/Google).
  6. Communications: To send you technical notices, security alerts, workout reminders, Vitality Score updates, and administrative messages. With your consent, we may also send promotional offers.
  7. Security and Fraud Prevention: To protect Alavita and our users from unauthorized access, malicious activities, and to ensure the integrity of our IT architecture.
  8. Legal Compliance: To comply with applicable laws, regulations, and legal processes.

3. How We Share Your Personal Data

We never sell your Personal Data for monetary gain. However, we may share your information with the following categories of third parties under strict confidentiality agreements:

  • Service Providers & Processors: Companies that help us operate our business, such as cloud hosting providers (e.g., Supabase), AI API providers (e.g., OpenAI, Anthropic), payment processors (e.g., RevenueCat), and targeted analytics platforms.
  • Apple/Google for Refund Processing: For iOS and Android users, we may share your usage and consumption data of purchased content with Apple or Google to assist in resolving refund requests.
  • Legal and Regulatory Bodies: If required by law, subpoena, or other legal process, or if we have a good faith belief that disclosure is necessary to protect the rights, property, or safety of Alavita, our users, or the public.
  • Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your Personal Data may be transferred as part of that transaction.
  • Aggregated / De-Identified Data: We may share securely aggregated, anonymized data (which cannot reasonably be linked back to you) with third parties for research, marketing, or statistical purposes.

4. Legal Bases for Processing (EU, EEA, UK, & Swiss Users)

If you are a resident of the European Economic Area (EEA), United Kingdom (UK), or Switzerland, our legal basis for collecting and using your Personal Data depends on the data concerned and context:

  • Contractual Necessity: To provide you with the Alavita App and fulfill our Terms of Service.
  • Consent: For specific features like accessing HealthKit/Google Health Connect, processing particularly sensitive health data, or sending direct marketing. You may withdraw this consent at any time.
  • Legitimate Interests: To improve our Services, ensure security, and understand how users interact with the app, provided these interests are not overridden by your data protection rights.
  • Legal Obligation: To comply with our legal duties.

5. Additional U.S. State Disclosures (CCPA/CPRA, VCDPA, CPA, etc.)

Depending on your U.S. state of residence, you may have specific privacy rights.

  • Categories of Data Collected in the last 12 months: Identifiers (name, email), Protected Classifications (age, gender), Commercial Information (subscription history), Internet/Electronic Activity (app usage), and Sensitive Personal Information (health, biometrics, precise fitness data).
  • Sales and Sharing of Data: We do not "sell" your personal information for monetary value. We may "share" certain limited technical identifiers with advertising partners for cross-context behavioral advertising, subject to your right to opt-out. We do not use your precise health data for any advertising purposes.
  • Your State-Specific Rights: You have the right to request access to your data, request deletion, correct inaccuracies, and opt-out of targeted advertising. We will not discriminate against you for exercising these rights.

6. Personal Data Retention

We retain your Personal Data for as long as your account is active or as needed to provide you with the Services. Specifically:

  • Account & Health Data: Retained until you delete your account or request data deletion.
  • AI Logs and Conversations: Retained to maintain context for your AI Coach. You may clear your chat history within the app interface.
  • Analytical Data: May be anonymized and retained indefinitely for statistical research and model improvement.

Upon an account deletion request, we will delete or fully anonymize your personal data within 30 days, unless a longer retention period is required by law or for legitimate business dispute resolutions.

7. Security Measures

We implement robust, industry-standard technical and organizational measures to protect your data from unauthorized access, loss, or alteration. Our databases (hosted on secure platforms like Supabase) utilize strict Row Level Security (RLS) policies to ensure that your health, workout, and nutritional data is accessible only by you and strictly authorized backend services. However, no internet transmission is 100% secure, and we cannot guarantee absolute security.

8. Privacy Rights and Choices

We believe you should have total control over your data. Depending on your jurisdiction, you have the right to:

  • Access and Portability: Request a copy of the Personal Data we hold about you.
  • Correction: Edit your profile, health metrics, and dietary preferences directly in the App.
  • Deletion: Request the deletion of your account and associated Personal Data.
  • Opt-Out of Communications: Unsubscribe from promotional emails via the link provided in the emails.
  • Manage Health Integrations: Disconnect Apple HealthKit or Google Health Connect at any time via your device's native settings.

To exercise any of these rights, please use the in-app settings or contact us at alavitaapp@gmail.com.

9. Children's Privacy

Alavita is not intended for use by individuals under the age of 16. We do not knowingly collect Personal Data from children under 16. If we become aware that we have inadvertently collected such data, we will take steps to delete it as quickly as possible. If you believe we might have any information from or about a child under 16, please contact us immediately.

10. Third-Party Integrations and Links

The App may contain links to third-party websites or integrate with third-party software (e.g., OpenAI models). We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the updated policy in the App and updating the "Last Updated" date at the top of this document. We may also provide additional notice via email or an in-app alert.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer at:

Alavita Inc.

Email: alavitaapp@gmail.com

Website: www.alavita.ai

Thank you for trusting Alavita with your fitness journey!