Privacy Policy
How WOLF Fitness Tracker handles account data, workout and body logs, health-related entries, exports, deletion requests, and newsletter preferences.
1. Introduction
This Privacy Policy explains how WOLF Fitness Tracker (the "Service") collects, uses, stores, secures, exports, deletes, and otherwise processes personal data.
The Service is operated by Thomas Andersen, a private individual residing in Denmark ("Owner", "we", "us", "our").
This Privacy Policy applies when you create an account, use the Service, contact us, or otherwise interact with the Service.
2. Controller Contact Details
Data controller / owner:
Thomas Andersen
Postal address:
Limburg Alle 34, 2791 Dragoer, Denmark
3. Age Restriction
The Service is only available to users who are 15 years of age or older.
We do not knowingly allow users under 15 to create accounts. If we learn that a person under 15 has registered, we may suspend or delete the account and remove associated personal data.
4. Categories of Personal Data We Process
Depending on how you use the Service, we may process:
- account data such as username, email address, password hash, verification status, and account timestamps;
- fitness and health-related entries such as workouts, body metrics, activity records, goals, comments, notes, and related log data;
- nutrition and body composition data such as calories, macros, weight, body fat percentage, muscle estimates, and body water values;
- technical and security data such as authentication tokens, rate-limit records, recent account activity, and audit logs for privacy actions;
- feedback and support data such as ideas, bug reports, and messages you submit; and
- marketing preference data when you opt in to product updates, information, or newsletters by email.
5. Special-Category and Health-Related Data
Because the Service is a fitness tracker, some of the information you enter may constitute health-related or special-category personal data under applicable data protection law.
We only process this category of data to provide the core app when you explicitly consent to that processing.
If you do not provide that consent, or if you later withdraw it, you cannot continue using the core tracking functions of the Service.
6. Purposes of Processing
We process personal data in order to:
- create, secure, and maintain your account;
- provide the fitness tracking features, dashboards, and history inside the Service;
- store and display your workouts, nutrition records, body metrics, and related notes;
- send transactional emails such as email verification and password reset links;
- respect and record legal consents, withdrawals, exports, and deletion requests;
- protect the Service against misuse, fraud, excessive automated requests, and unauthorised access;
- respond to support requests and product feedback; and
- send product updates, information, and newsletters if you separately opt in to marketing emails.
7. Legal Bases
We rely on the following legal bases where applicable:
- performance of a contract, to provide the account and app features you request;
- your explicit consent, for processing fitness and health-related data needed for the core Service;
- your consent, for optional marketing emails and newsletters; and
- our legitimate interests, for service security, abuse prevention, logging, troubleshooting, and product improvement, provided those interests do not override your rights.
8. Consent Records
When you complete onboarding, we store records of the legal versions and timestamps that were accepted, including:
- Terms and Conditions version and acceptance timestamp;
- Privacy Policy version and acceptance timestamp;
- fitness-data consent timestamp;
- optional marketing consent timestamp, if given; and
- age confirmation timestamp and the onboarding source.
We also log later consent withdrawals, data exports, and account deletion actions for audit and compliance purposes.
9. Marketing Emails
Marketing emails are optional. You do not need to opt in to newsletters or product updates to use the core Service.
If you subscribe, we may use your email address to send product updates, information, and newsletters.
You may unsubscribe at any time from in-app privacy settings or by using the unsubscribe method included in our emails. Withdrawing marketing consent stops newsletters only.
10. Sharing of Personal Data
We do not sell your personal data.
We may share personal data with hosting providers, email delivery providers, infrastructure providers, analytics-free service operators, or other processors that help us run the Service, only to the extent reasonably necessary.
We may also disclose data when required by law, regulation, court order, or to establish, exercise, or defend legal claims.
11. International Transfers
Where personal data is processed by providers in countries outside your jurisdiction, we will seek to use appropriate safeguards required by applicable law.
12. Data Retention
We keep personal data only for as long as it is needed for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.
Account data and logs are generally retained until you delete your account or ask us to erase your data.
Audit records concerning privacy requests, consent changes, service security, or legally required retention may be retained for a limited period where necessary and may be anonymised when full deletion is not appropriate.
13. Data Export, Deletion, and Withdrawal
Inside the Service, you can request a basic export of your account data, logged fitness data, and consent records.
You can also request deletion of your account and associated personal data. When an account is deleted, we will delete or anonymise associated data unless retention is legally required.
If you withdraw consent to fitness and health-related data processing that is necessary for the core Service, the core app can no longer continue. In that case, we may disable the core tracking experience and offer account deletion or data deletion options.
14. Security
We use reasonable technical and organisational measures to protect personal data, including transport security, secure password hashing, audit logging for sensitive privacy actions, and secure deletion settings where supported by our storage layer.
However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.
15. Your Rights
Depending on applicable law, you may have rights to:
- access your personal data;
- receive a copy of your data;
- request correction of inaccurate data;
- request deletion of your data;
- withdraw consent;
- unsubscribe from marketing communications; and
- lodge a complaint with a competent supervisory authority.
16. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If we make material changes, we may update the version number, effective date, and make the revised policy available during onboarding and inside the authenticated app.
17. Contact
If you have questions about this Privacy Policy, your personal data, or your rights, contact wolffitnesstracker@gmail.com.