Privacy Policy

1. Introduction

Welcome to Strimma ("we," "us," "our," or "Company"). Strimma is committed to protecting your privacy and ensuring you have a positive experience on our application and website. This Privacy Policy explains our information practices and the choices you have about the way your information is used.

This Privacy Policy applies to:

• The Strimma mobile application (iOS)
• Our website and related online services
• All related features and content

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our application or services.

2. Information We Collect

2.1 Information You Provide Directly

Workout Data:

• Exercise duration, type, and mode (Simple timer, EMOM, AMRAP, For Time, Tabata, HYROX)
• Effort level (used for calorie estimation)
• Workout notes and custom exercise information
• Session timestamps and dates

User Profile Information:

• Name (optional)
• Age, weight, and body measurements (for accurate calorie estimation)
• User preferences and app settings
• Workout difficulty level and goals

Progress Photos:

• Before/after photos you upload for fitness tracking purposes
• Photo metadata (date taken/uploaded, custom labels you create)
• Stored locally on your device only—never transmitted to our servers

Fitness & Gamification Data:

• Current and longest streaks (consecutive workout days)
• Rest tokens and earned achievements
• Core Training Score (CTS) and experience points (XP)
• Badge collection and progress
• Calorie totals and workout history

Special Unlock Codes:

If you redeem a special unlock code for ad-free access, we do not store the code itself—only that you have successfully unlocked the feature.

2.2 Health Data (iOS 26+ Only)

HealthKit Integration:

• With your explicit consent, Strimma reads and writes workout data to Apple HealthKit
• We save workout sessions to your Health app, including duration, calories burned, workout type and intensity
• HealthKit data remains under Apple's control and is not shared with us or third parties
• You can revoke HealthKit access at any time via Settings → Health → Data Access & Devices

Calorie Estimation (Not Real Health Data):

We use a MET (Metabolic Equivalent of Task) formula to estimate calories based on exercise type, duration, weight, and effort level. This is an estimation only, not measured health data. It works on both simulators and real devices.

2.3 Automatically Collected Information

App Usage Data:

• App launch, crashes, and error logs (debug mode only)
• Features you use and time spent in each section
• Timer modes used and completion frequency
• Settings you modify

Device Information:

• Device model and operating system version
• App version number
• Whether the app is running in Debug or Release configuration
• Bundle identifier (to verify app authenticity)

Advertising Data (Google AdMob):

If you have not purchased ad removal, Google collects:

• Ad impressions and interactions
• Approximate location (via IP address, not GPS)
• Device type, OS version, and language
• Advertising identifier (for ad personalization)

See Google's Privacy Policy for details.

2.4 Information We Do NOT Collect

• Real-time heart rate or other biometric sensor data (removed as of v1.0.5)
• GPS location data
• Camera or microphone access (except progress photos you explicitly upload)
• Contacts, calendar, or other personal data
• Cloud synchronization or backups (all data stays on your device)
• Cookies or tracking pixels (native app, not web-based)

3. How We Use Your Information

3.1 Core App Functionality

• Workout Tracking: Recording, calculating, and displaying your workout history
• Timer Display: Showing elapsed time, calories burned, and performance metrics
• Gamification: Calculating streaks, rest tokens, CTS scores, and badges based on your activity
• History & Analytics: Generating charts, stats, and progress reports within the app
• Data Persistence: Saving your workouts, preferences, and progress locally on your device

3.2 Health & Fitness

• Calorie Estimation: Calculating estimated calories burned during workouts
• HealthKit Integration: Saving completed workouts to the Health app (iOS 26+) with your consent
• Progress Tracking: Storing and displaying before/after progress photos

3.3 Advertising (If Not Purchased)

• Ad Display: Showing relevant ads from Google AdMob
• Ad Personalization: Google uses your data to show ads that may be of interest to you
• To Remove Ads: Purchase the "Remove Ads" in-app product

3.4 App Improvement

• Error Reporting: Using crash logs and errors to identify and fix bugs
• Performance Monitoring: Analyzing which features are used most to improve the app
• Product Development: Understanding user preferences to guide future feature development

3.5 Customer Support

• Issue Resolution: If you contact us, we use your information to respond and resolve your concerns
• Troubleshooting: Analyzing your device info and app logs to help diagnose problems

4. In-App Purchases & Payment

4.1 Ad Removal Purchase

What You're Purchasing:

A one-time purchase to remove advertisements from Strimma.

Payment Processing:

• Payments are processed by Apple via the App Store
• We do not collect or store your payment information (credit card, billing address, etc.)
• All payment data is handled by Apple—see Apple's Privacy Policy

Purchase State Storage:

• We store whether you have purchased ad removal in your device's UserDefaults (local storage)
• This purchase state is tied to your App Store account and syncs across your devices via Apple's StoreKit 2 framework
• We validate your purchase status against Apple's transaction records each time you open the app

Restore Purchases:

If you reinstall the app, you can restore your purchase using the "Restore Purchases" button. This connects to your App Store account to re-grant the ad removal feature.

5. Data Storage & Security

5.1 Where Your Data Is Stored

On Your Device Only:

• All workout data, progress photos, settings, and gamification state are stored locally on your iPhone
• We use:
  • UserDefaults for app settings, purchase state, and gamification data (< 2MB)
  • SwiftData for detailed workout history and session information
  • File System for progress photos in the Documents/ProgressPhotos folder
• No cloud backup, sync, or third-party servers are used

Temporary Processing:

During timer operation, elapsed time and calorie estimates are calculated in-memory (RAM). This data is not stored anywhere except in UserDefaults/SwiftData when you save a workout.

5.2 Data Security

Encryption:

• Data at rest on your device is protected by iOS's built-in encryption via the Secure Enclave
• Data in transit (App Store purchases, HealthKit sync) uses HTTPS/TLS encryption

Authentication:

• Your App Store purchases are protected by your Apple ID and authentication
• No username/password required for Strimma—your data is tied to your device

5.3 Data Retention

Automatic Retention:

• Workout data persists indefinitely until you manually delete a workout
• Gamification data (streaks, tokens, badges) persists until reset or modified
• Progress photos remain until you delete them

Manual Deletion:

• You can delete individual workouts from the History tab
• You can delete progress photos from the Profile tab
• Resetting gamification state would require deleting app data (Settings → General → iPhone Storage → Strimma)

6. Data Sharing

6.1 We Do NOT Share Your Data With

• Third-party fitness platforms (Strava, MyFitnessPal, etc.)
• Cloud storage services
• Data brokers or marketing companies
• Social media platforms
• Any external analytics services (beyond Google AdMob)

6.2 We DO Share Data With (Limited)

Google (AdMob):

If you have not purchased ad removal, Google collects device type, OS version, language, ad impressions, and interactions. See Google's Privacy & Terms.

Apple (HealthKit, Optional):

If you enable HealthKit integration (iOS 26+), we write your workout data to Apple HealthKit. HealthKit data is protected by Apple and not shared with third parties without your consent. You can disable HealthKit access in Settings → Health → Data Access & Devices.

Apple (App Store, Required):

App Store processes your purchase and sends purchase confirmation. See Apple's Privacy Policy.

6.3 Legal Requirements

We may disclose your information if required by law, such as in response to a valid court order, subpoena, or to protect our legal rights, comply with government requests, prevent fraud, or protect security and safety.

7. Your Privacy Rights & Choices

7.1 Access & Portability

• All your data is directly accessible within the Strimma app
• There is no central account or server database we control
• You can export data by manually reviewing your History and exporting workout details

7.2 Data Deletion

• Delete Individual Workouts: Tap Edit in the History tab and swipe to delete individual sessions
• Delete All App Data: Settings → General → iPhone Storage → Strimma → Offload App (keeps data) or Delete App (removes all data)
• Delete Progress Photos: Open Profile tab → Progress Photos → swipe to delete
• Delete Gamification Data: Deleting the entire app and reinstalling resets streaks, tokens, and badges

7.3 Opt-Out Options

• Disable Ads Personalization: Purchase "Remove Ads" in the app OR restrict ad tracking in iOS Settings → Privacy → Tracking
• Disable HealthKit Sync: Settings → Health → Data Access & Devices → Strimma
• Disable Background Timer: Settings → Strimma → Background App Refresh (Note: may affect timer accuracy)

7.4 Children's Privacy

Strimma is not intended for children under 13 (or the applicable age of digital consent in your country). We do not knowingly collect information from children under 13. If we become aware that a child under 13 has provided us with information, we will delete such information and terminate the child's account. If you believe we have collected information from a child under 13, please contact us immediately.

8. Third-Party Links & Services

Strimma may contain links to third-party websites and services, such as the App Store, AdMob, and HealthKit. We are not responsible for the privacy practices of third parties. Please review their privacy policies:

• Apple Privacy
• Google Privacy

9. Data Breach & Security Incidents

In the unlikely event of a security breach:

• We will investigate the scope and nature of the breach
• We will assess what user data, if any, was exposed
• We will notify affected users as required by law (typically within 30 days)
• Note: Since we store data only on your device (not on servers), a breach of our systems would not expose your personal data. A breach would only affect in-app purchase records held by Apple.

10. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have the right to:

• Know what personal information is collected, used, and shared
• Delete personal information we have collected
• Opt-Out of the sale or sharing of personal information
• Non-Discrimination for exercising your privacy rights

Your Rights in Strimma:

• All your data is on your device; you have full access
• You can delete any/all data via app uninstall
• We do not "sell" your data to advertisers; Google displays ads based on data they collect directly
• Non-discrimination applies—we will not deny you service for exercising your rights

11. European Union Privacy Rights (GDPR)

If you are in the EU/EEA, you have the right to:

• Access your personal data
• Rectify inaccurate data
• Erasure (right to be forgotten)
• Restrict Processing of your data
• Portability of your data
• Object to processing
• Withdraw Consent at any time

Your Rights in Strimma:

• All your data is on your device; you have full access and can export/delete at any time
• You can delete the app to trigger data erasure
• No automated decision-making or profiling is performed by us (Google AdMob does profile for ad targeting)
• Processing is based on legitimate interests (providing the fitness app) or your explicit consent (HealthKit, ads)

To exercise these rights or file a complaint, contact us or your local Data Protection Authority.

12. Contact Us

Data Protection Authority (EU)

If you have concerns about our privacy practices, you can also lodge a complaint with your local supervisory authority.

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

• Updating the "Last Updated" date at the top of this policy
• Posting the updated policy in the app and on our website
• Requesting your consent if required by law

Your continued use of Strimma after changes constitutes your acceptance of the updated Privacy Policy.

14. Summary for Quick Reference

15. Definitions

• Personal Data: Any information that can identify you directly or indirectly, such as your name, workout data, photos, or fitness metrics.
• Processing: Any action we take with your data, including collection, storage, use, sharing, or deletion.
• Consent: Your explicit, informed agreement to our privacy practices (e.g., enabling HealthKit).
• Legitimate Interest: Our business need to provide the app and improve it, balanced against your privacy rights.
• Data Minimization: Collecting only the data necessary to provide the service.