← Armstrong

Privacy Policy

Last updated: June 19, 2026

This Privacy Policy explains how Armstrong ("Armstrong", "we", "us") collects, uses, and protects your information when you use our web app, mobile apps, and related services (the "Service"). By using the Service you agree to this policy.

1. Data you can use without an account

Armstrong works without signing in. In that mode your workouts, diet logs, and settings are stored only on your device (browser localStorage or app storage) and are not sent to us.

2. Information we collect

  • Account information: your email address. If you sign in with email/password, we store a securely hashed password (bcrypt). If you sign in with Google or Apple, we receive your verified email and a stable provider identifier; we never receive your provider password.
  • Fitness data you create: workouts, exercises, sets, weights, reps, sessions, diet/food logs, nutrition profile, and your chats with the AI coach.
  • Technical data: basic, largely anonymous usage and performance metrics to keep the Service reliable.

When you are signed in, the fitness data above is synced to your account so you can access it across devices.

3. How we use your information

  • Provide, sync, and secure your account and fitness data.
  • Generate AI coaching, workout, and diet suggestions you request.
  • Operate, maintain, and improve the Service.

We do not sell your personal information.

4. Where your data is stored

Account and synced fitness data are stored in our backend database (PostgreSQL) hosted by our infrastructure providers. Data is transmitted over encrypted connections (HTTPS) and passwords are stored only as one-way hashes.

5. Third-party services

We share the minimum data needed with service providers that help run the Service:

  • Google & Apple — "Sign in with" authentication.
  • Google (Gemini) — when you use the AI coach, your chat messages and relevant plan context are sent to Google to generate responses.
  • USDA FoodData Central — food search queries you enter.
  • Hosting & analytics providers — to serve the app and measure anonymous performance/usage.

These providers process data under their own privacy policies. We do not control, and are not responsible for, their practices.

6. Cookies and local storage

We use your browser's local storage to keep you signed in (an authentication token) and to hold your app data. We do not use third-party advertising cookies.

7. Your choices and rights

  • Access & update: view and edit your data directly in the app.
  • Delete: the "Clear all data" action in your profile permanently deletes your data from this device and your cloud account. You may also contact us to delete your account.
  • Depending on your location, you may have additional rights (access, correction, deletion, portability). Contact us to exercise them.

8. Data retention

We keep your account data while your account is active. When you delete your data or account, we remove it from our systems, except where retention is required by law.

9. Children

The Service is not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect their data.

10. Changes to this policy

We may update this policy. Material changes will be reflected by the "Last updated" date above; continued use means you accept the updated policy.

11. Contact

Questions or requests: privacy@armstrong-fitness.com.