REP AI Privacy Policy
Last updated: August 13, 2025
This Privacy Policy explains how Francisco de Haro ("REP AI", "we") handles your data when you use our iOS app and this website repaitrainer.blog.
Quick summary
- We don't sell your data or do tracking-based advertising.
- Training data is stored on your device and, if you enable it, in iCloud.
- We use Apple services for authentication and subscription payments.
- You can delete your account from the app and export/delete your data whenever you want.
Data controller
- Controller: Francisco de Haro
- Contact email: frandeharo55@gmail.com
Data we process
1. Account and authentication
- If you create an account or sign in with Sign in with Apple, we receive an Apple identifier and, if you choose to share it, your name and email (may be Apple's Hide My Email). We don't have access to your Apple password.
2. Subscriptions and payments
- We receive from the App Store your subscription status, transaction identifiers and receipts necessary to validate purchases/restorations. We do not receive complete payment method data (managed by Apple).
3. Training data (possible health data)
- Routines, exercises, weights, reps, rest times and progress. Remains on device; optionally you can sync with iCloud. We don't access your iCloud account.
4. Technical and usage data
- Functionality events, crash logs, device model, iOS version, language and timezone. We do not use the advertising identifier (IDFA).
5. Website data
- Technical logs (shortened IP, user agent) for security and abuse prevention. We don't use third-party cookies or advertising pixels.
How we use your data (and legal bases)
- Provide the service: generate routines, save progress, maintain the app (contract performance).
- Subscription management: validate purchases and restorations with Apple (contract performance).
- Customer support: respond to support (legitimate interest or consent when contacting us).
- Security and maintenance: failure diagnosis, fraud prevention (legitimate interest).
- Legal obligations: tax/accounting requirements linked to purchases (legal obligation).
Where data is stored
- On your device and, if you enable it, in iCloud (Apple).
- Subscription/receipt data: in our systems and/or Apple's as necessary to validate your access.
Who we share data with
We don't sell data or share for advertising. We only disclose information to:
- Apple (iCloud/CloudKit, App Store and payments).
- Email provider for support.
- Authorities when required by law.
Retention
- Workouts: on your device/iCloud until you delete them or disable sync.
- Receipts/transactions: while your subscription lasts and applicable legal periods.
- Crash logs: up to 90 days.
- Support inquiries: up to 24 months.
- Web logs: up to 30 days.
Your controls and rights
In the app:
- Delete account: Settings → Account → Delete my account. Upon confirmation, we deactivate access and delete the account and associated data within 30 days (except what we must retain by law, e.g., billing information).
- Export/Delete local data: Settings → Data.
GDPR rights: access, rectification, deletion, objection, limitation, portability and withdrawal of consent. To exercise them: frandeharo55@gmail.com. You have the right to complain to the Spanish Data Protection Agency (AEPD).
Minors
REP AI is not directed at children under 16 years old.
Security
We encrypt communications (HTTPS) and leverage iOS/iCloud security measures. No system is 100% secure: keep your device updated and with secure lock.
Changes to this policy
We will publish any changes here, with new "Last updated" date. If the change is relevant, we will notify you in the app.
Key providers
- Apple Inc. (iCloud/CloudKit, App Store, payments). Privacy policy at apple.com/legal/privacy/.
- Support email (email management). We only access what's necessary to assist you.
Note for users: Subscription management (subscribe/cancel/renew) is done from iOS Settings → [your name] → Subscriptions. We cannot charge amounts outside the App Store.