Privacy Policy

Last updated: March 21, 2026

Summary: GeneFitt is local-first for health, genetic, and document data. If you use GeneFitt Credits, AI requests are routed through GeneFitt's proxy so we can apply credits and enforce allowed models. In that mode, we store limited account and usage metadata, but not your raw Apple Health database, raw genetic files, or original uploaded documents on our servers.

1. Local-First Data in the App

Apple Health Data

With your permission, GeneFitt reads the following from Apple HealthKit:

Heart rate, resting heart rate, HRV
Sleep analysis
Weight, body fat percentage, BMI
Active energy burned, basal metabolic rate
Steps, distance, VO2 max
Dietary intake (calories, protein, carbs, fat)
Workout history

This data is read directly from HealthKit on your device. GeneFitt uses it locally to power the dashboard and build AI context. We do not upload your raw Apple Health database to GeneFitt servers.

Genetic Data (DNA)

You may optionally import genetic marker files from services like 23andMe, DanteLabs, AncestryDNA, or any provider that exports rsID-based genetic data (JSON, CSV, XLSX formats).

Genetic files are parsed and stored locally on your device
Raw genetic files are not uploaded to GeneFitt servers
Relevant marker summaries or interpreted text may be included in AI context, but not the original raw file itself

Blood Work & Medical Documents

You may upload blood work photos, PDFs, health guides, and other medical documents.

Documents are stored locally on your device with iOS file protection
Text is extracted on-device using Apple Vision (OCR) and PDFKit — no cloud processing
Extracted text may be included as context in AI requests you choose to send

Body Measurements

You may record body circumference measurements (neck, chest, waist, arms, legs, etc.). This data is stored locally in SwiftData on your device.

2. AI Processing Modes

GeneFitt Credits Mode

If you use GeneFitt Credits, your AI requests are sent to GeneFitt's proxy first and then forwarded to OpenRouter (openrouter.ai), which routes requests to the selected model provider.

Important: In GeneFitt Credits mode, GeneFitt processes your request in transit in order to authenticate the request, apply credit accounting, enforce model rules, and return the response. We do not store your raw Apple Health database, raw genetic files, or original uploaded document files on our servers.

Requests are forwarded to OpenRouter using GeneFitt's server-side API key
GeneFitt stores limited operational data needed to run the credit system
OpenRouter and any underlying model provider handle the AI processing under their own policies

Bring Your Own Key (BYOK) Mode

If you use your own OpenRouter API key, requests are sent directly from the app to OpenRouter under your own account. In that mode, GeneFitt does not proxy the request and does not apply GeneFitt credits.

What May Be Sent to the AI

The following may be included in AI conversation context:

Your profile information (age, weight, goals, fitness level)
Health metric summaries (e.g., "HRV average: 45ms", "Sleep: 6.2h")
Genetic marker categories (e.g., "ACTN3: mixed fiber type", "COMT: moderate")
Extracted text from uploaded documents
Recent workout history summaries
Your conversation messages

3. What GeneFitt Stores Server-Side

When you use GeneFitt Credits, GeneFitt stores limited server-side data required to operate the proxy and credit system. This may include:

Technical account identifiers such as device ID and, when available, your Sign in with Apple user identifier
Credit balance, credit ledger entries, and top-up records
Request metadata such as model used, request status, timestamps, token usage, and credits charged
Optional account fields if you choose to provide them in the future, such as email

GeneFitt does not store your raw Apple Health database, raw genetic files, or original document files on GeneFitt servers.

Conversation Content

GeneFitt does not store full AI conversation logs in its database as part of the credit system. We also do not routinely read your conversation content manually. Internal visibility is focused on operational metadata needed to run and support the service.

4. Data Sharing

GeneFitt does not:

Sell your data to anyone
Share your data with advertisers
Use your data to train GeneFitt's own AI models
Include any third-party tracking SDKs

GeneFitt does share AI requests with OpenRouter and the underlying model provider when you use AI features. Their handling of request content is governed by their own terms and privacy policies.

5. Data Deletion

You can delete all your data at any time:

Delete individual documents, genetic profiles, or measurements from within the app
Delete the app to remove all local data
If you have used GeneFitt Credits, contact us to request deletion of server-side account and credit records, subject to any legitimate operational or legal retention needs

6. Admin Access

GeneFitt provides a restricted internal admin interface for operational support. That interface is intended to show account and usage metadata such as balances, request counts, and recent models used. It is not intended as a browsing interface for your private health records, raw DNA files, or original documents.

7. Children's Privacy

GeneFitt is not intended for children under 17. We do not knowingly collect data from minors.

8. Medical Disclaimer

GeneFitt is a fitness tool, not a medical device. AI-generated recommendations are not medical advice. The AI makes mistakes. Always consult a qualified healthcare professional before making health or training decisions based on genetic data, blood work, or AI suggestions.

9. Changes to This Policy

We may update this privacy policy as the app evolves. The "Last updated" date at the top reflects the most recent revision. Continued use of the app constitutes acceptance of the updated policy.

10. Contact

For privacy questions or data requests:

Email: [email protected]
Website: genefitt.com