BodyBlind – Privacy Policy

Last Updated: December 4, 2025

1. Introduction

BodyBlind ("BodyBlind", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use the BodyBlind iOS application and related services (the "Service"). If you do not agree with this Policy, please do not use the Service.

This Policy is designed with Canadian and United States privacy laws in mind, including Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable U.S. state privacy and consumer protection laws.

2. Information We Collect

We collect the following categories of information when you use the Service:

2.1 Account and Profile Information

We may collect:

  • Email address and authentication identifiers (e.g., Firebase UID, Apple Sign-In ID).
  • Display name or nickname.
  • Basic profile details you choose to provide (e.g., gender, dominant hand, approximate age where used for training context).
  • Sport and equipment preferences (e.g., golf club length, shaft flex, tennis racket details).

2.2 Body Measurements and Analysis Data

To provide personalized analysis, we collect and generate:

  • Body measurements and proportions such as height, arm length, leg length, torso length, shoulder width, hip width, neck length, eye level, and waist height.
  • Derived ratios such as arm-to-height ratio, leg-to-height ratio, and upper-to-lower ratio.
  • Analysis results including sport type (golf, tennis, yoga, pilates), scores or match percentages, detected issues, and AI-generated feedback.
  • Links between analyses and related measurements or videos.
  • Usage metrics such as counts of analyses performed, AI coaching requests, and videos generated.

2.3 Photos, Videos, and Media

When you use camera or upload features, we may collect:

  • Photos and videos you capture or upload for analysis.
  • Processed versions of those files used to detect poses and generate content.
  • AI-generated guide videos and images (e.g., Realistic, 3D Avatar, Skeleton views) we create for you.

Media files are stored securely in cloud storage for limited periods. Generated guide videos are typically retained only for a short time (for example, around 7 days) and then deleted automatically. Uploaded videos and temporary processing files are kept only as long as necessary for analysis and are automatically deleted according to our lifecycle rules (for example, around 30 days or less for temporary files).

2.4 Health and Fitness Data (HealthKit / Apple Health)

If you choose to connect Apple Health (HealthKit) and grant permission, we may read certain health-related data such as height, weight, age or year of birth, and sex/gender in order to improve the accuracy of body measurements and personalization.

We do not use HealthKit data for advertising or marketing, we do not sell HealthKit data, and we do not share HealthKit data with third parties for their own independent marketing or advertising. HealthKit data is handled in accordance with Apple’s policies and your Health app settings.

2.5 Subscription and Purchase Information

Through Apple’s in-app purchase system (StoreKit 2), we receive:

  • Product identifiers you purchased (e.g., premium monthly or yearly).
  • Purchase and renewal dates, expiration dates, and auto-renew status.
  • Original transaction identifiers.

We do not receive your full payment card details. Those are processed by Apple as merchant of record. We store subscription status in Firebase to manage entitlements and usage limits.

2.6 Device and Usage Information

We may collect information such as device model, operating system version, app version, language and region settings, anonymous identifiers or Firebase tokens, crash reports, and aggregated usage statistics. This helps us operate, secure, and improve the Service.

3. How We Use Your Information

We use your information for the following purposes:

  • To provide the core Service, including pose detection, body measurement calculation, sport form analysis, progress tracking, and AI-generated guide videos.
  • To operate, maintain, and improve the Service, including personalization, algorithm and UI improvements, and performance optimization.
  • To manage your account, subscriptions, entitlements, and usage limits.
  • To communicate with you about the Service, including responses to support requests and important updates.
  • To secure the Service, prevent fraud and abuse, and comply with legal obligations.
  • To perform analytics and research using aggregated or de-identified data.

4. AI Providers and Third-Party Processing

To deliver AI-powered features, we use third-party AI providers and infrastructure, such as Anthropic (Claude) and Google (Gemini and related image/video generation services), accessed securely through our backend (e.g., Firebase Cloud Functions).

We typically send derived or structured data (such as sport type, pose coordinates, body measurements, phases, and issue descriptions) and carefully designed text prompts. In some cases, images or video frames may be used by our backend to generate or enhance content, especially for AI-generated guide videos.

These providers may log requests and responses as part of their operations and security. They process data under their own terms and privacy policies. We do not grant them the right to use your personal information for their own advertising or marketing to you, but we do not control all aspects of their internal model training policies.

5. Legal Bases and Regional Information

5.1 Canada

If you are located in Canada, we process your personal information based on:

  • Your consent (for example, when you connect HealthKit or grant specific app permissions).
  • Our legitimate interests in operating, securing, and improving the Service in a way that respects your rights.
  • Compliance with legal obligations (for example, financial record keeping related to subscriptions).

5.2 United States

If you are located in the United States, we process your information in accordance with applicable federal and state privacy and consumer protection laws. Some states provide additional rights (such as access and deletion), which we honor where applicable and feasible.

We do not sell personal information in the traditional sense, and we do not sell HealthKit or body measurement data.

6. How We Share Your Information

We may share your information in the following limited circumstances:

  • Service providers and infrastructure: With trusted providers that help us operate the Service, such as Firebase/Google Cloud, AI providers, analytics and crash-reporting tools, and Apple (for App Store and subscription handling).
  • Legal and safety: When we believe disclosure is reasonably necessary to comply with law, respond to lawful requests, or protect the rights, property, or safety of BodyBlind, our users, or the public.
  • Business transfers: In connection with a merger, acquisition, financing, or sale of all or a portion of our assets, subject to continued protection of your information.
  • Aggregated or de-identified data: We may share non-identifiable statistics or analytics that do not reasonably identify you.

7. Data Retention

We retain your personal information only as long as necessary to fulfill the purposes described in this Policy, including to:

  • Maintain your account, measurements, analyses, and subscription records while you have an active account.
  • Comply with legal, accounting, or reporting obligations.
  • Resolve disputes and enforce our agreements.

Media files (photos and videos) are retained for limited periods as described above and then deleted automatically via storage lifecycle rules. Logs and analytics are retained for limited periods consistent with operational and security needs and then deleted or aggregated.

8. Security

We implement a combination of technical and organizational measures to protect your information, including:

  • Transport security using HTTPS (TLS) for network traffic.
  • Encryption at rest for sensitive data (including use of CryptoKit, Keychain, and Secure Enclave where applicable).
  • Secure local storage with file protection and exclusion of sensitive data from iCloud backups.
  • Strict Firebase security rules restricting access to authenticated owners.
  • Access controls, logging, and monitoring on our backend systems.

No method of transmission or storage is completely secure. We cannot guarantee absolute security, but we strive to protect your information to a high standard.

9. Your Rights and Choices

Depending on your location (including Canada and certain U.S. states), you may have rights such as:

  • Accessing the personal information we hold about you.
  • Requesting correction of inaccurate or incomplete information.
  • Requesting deletion of your personal information, subject to legal and technical limitations.
  • Requesting a copy of your data in a portable format where feasible.
  • Managing consent for optional analytics and HealthKit access.

You can exercise many of these rights through in-app settings (for example, by deleting your account or revoking Health permissions) or by contacting us at support@bodyblind.app. We may need to verify your identity before responding to certain requests.

If you are in Canada and are not satisfied with our response, you may contact the Office of the Privacy Commissioner of Canada or your provincial privacy regulator.

10. Children’s Privacy

The Service is not directed to children under 16, and we do not knowingly collect personal information from children under 16. If we become aware that we have collected information from a child under 16 without appropriate consent, we will take steps to delete it.

11. International Data Transfers

Our servers and many of our service providers are located in countries such as the United States and potentially other jurisdictions. If you use the Service from Canada or other countries, your information may be transferred to, stored in, and processed in countries that may have different data protection laws than your home country. We take steps to ensure that appropriate safeguards are in place for such transfers where required by law.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this page. Where required by law, we will provide additional notice (for example, via in-app notification or email) or seek your consent for material changes. Your continued use of the Service after the effective date of an updated Policy constitutes your acceptance of the changes.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:

Email: support@bodyblind.app