Privacy Policy

Last updated: March 12, 2026

1. Overview

Fitxtractor ("we", "us", "our") is a personal health data aggregation platform. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data. By using Fitxtractor you agree to the practices described here.

2. Data We Collect

  • Account data — your name and email address, used to create and secure your account.
  • Health & fitness data — metrics imported from connected sources (Fitbit, Oura Ring, Apple Health, Hevy) including heart rate, steps, sleep, HRV, SpO2, readiness, weight, workouts, and related measurements.
  • OAuth credentials — access and refresh tokens issued by third-party services, stored encrypted and used solely to fetch your data.
  • Usage data — standard server logs (IP address, browser type, pages visited) for security and debugging.

3. How We Use Your Data

  • Display your health metrics in the dashboard.
  • Sync data from connected third-party sources on your behalf.
  • Improve and debug the platform.

We do not sell, rent, or share your personal or health data with third parties for advertising or commercial purposes.

4. Third-Party Integrations

When you connect a third-party service (Fitbit, Oura Ring, Apple Health, Hevy), you authorise us to access data from that service on your behalf under its own terms and privacy policy. We store only the tokens and data required to provide the service. You can revoke access at any time from the Settings page.

5. Data Storage & Security

Your data is stored on secured servers. OAuth credentials are encrypted at rest. We use industry-standard practices to protect against unauthorised access, but no system is completely immune to security risks.

6. Data Retention

We retain your data for as long as your account is active. If you delete your account, all associated health data and credentials are permanently deleted within 30 days.

7. Your Rights

  • Access or export your data at any time.
  • Request correction of inaccurate data.
  • Request deletion of your account and all associated data.
  • Disconnect any third-party integration from the Settings page.

To exercise these rights, contact us at the address below.

8. Cookies

We use session cookies required for authentication. We do not use tracking or advertising cookies.

9. Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated via the app or email. Continued use after changes constitutes acceptance.

10. Contact

Questions or requests can be directed to: hello@example.com

Terms & Conditions