Privacy Policy
Last Updated: 24 January 2026
1. Introduction and Controller Information
1.1 Welcome
Welcome to RallyFit. This Privacy Policy ("Policy") explains how RallyFit ("we", "us", "our", "RallyFit") collects, uses, stores, and protects your personal data when you use the RallyFit mobile application, website, and related services (collectively, the "Service").
1.2 About RallyFit
RallyFit is the all-in-one fitness consistency engine. We provide a comprehensive platform for tracking workouts, nutrition, cardio activities, daily check-ins, and AI-powered data analysis.
1.3 Data Controller
RallyFit is the data controller responsible for your personal data. This means we determine the purposes and means of processing your personal data.
1.4 Contact Information
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:
Email: hello@rallyfitapp.com
1.5 Definitions
- "Personal Data" means any information relating to an identified or identifiable natural person.
- "Processing" means any operation performed on personal data, including collection, recording, organisation, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure, transmission, dissemination, or otherwise making available.
- "Service" means the RallyFit application, website, and all related services, features, and content provided by RallyFit.
- "User" or "you" means any individual who accesses or uses the Service.
2. Legal Framework
2.1 Applicable Laws
We process your personal data in accordance with:
- The UK General Data Protection Regulation (UK GDPR);
- The Data Protection Act 2018;
- The Privacy and Electronic Communications Regulations (PECR);
- All other applicable data protection laws and regulations.
2.2 Your Rights
This Policy explains your rights under UK GDPR and how you can exercise them. For more information about your rights, please see Section 10.
3. Information We Collect
3.1 Account Information
When you create an Account, we collect: email address; name (first name and last name); display name; profile photo (if provided through Google Sign-In); authentication credentials (managed by Firebase Authentication); and account creation date and last login information.
3.2 Profile Information
During onboarding and through your use of the Service, we collect: date of birth; gender; country and timezone; height (in centimetres); weight (in kilograms); body fat percentage; activity level; experience level; handle or username (for community features); and coach preferences and intensity settings.
3.3 Health and Fitness Data
We collect comprehensive health and fitness information, including:
Workout Data
- Exercise logs (exercises performed, sets, repetitions, weight lifted)
- Rate of Perceived Exertion (RPE)
- Workout dates and durations
- Workout programmes and routines
Food Diary Data
- Meals logged (food items, quantities, times)
- Calorie intake & Macronutrient info
- Barcode scanning data
- Meal photos (if uploaded)
Cardio Data
- Cardio session logs (type, duration, distance)
- Heart rate information
- Calories burned
Daily & Weekly Check-ins
- Weight, step counts, sleep duration/quality
- Appetite, energy levels, and digestion
- Workout reflections and achievements
- Confidence levels and future plans
Progress Data
- Historical weight and body measurements
- Progress charts and visualisations
- Weekly summaries and trends
Water & Supplements
- Daily water intake
- Supplement logs (types, dosages, schedules)
3.4 Goals and Preferences
We collect information about your fitness goals (e.g., Lose Weight, Gain Strength), calorie and macronutrient targets, workout/cardio sessions per week goals, starting weight, and water intake goals.
3.5 Payment Information
When you subscribe, we collect payment method information (processed by Stripe), subscription details, and transaction history. Note: We do not store full card details.
3.6 Technical Information
We automatically collect IP addresses, device information, usage data, analytics data, error logs, and cookies.
3.7 AI Coaching Data
We process weekly data summaries, previous coaching messages, and preferences to generate AI-powered coaching via Google Gemini.
3.8 Community Data
We may collect public profile info, shared programmes/meal plans, and leaderboard participation data.
4. How We Use Your Information
We use your personal data to provide the Service, generate personalised AI coaching (see disclaimer in Section 4.2), improve our features, communicate with you about your account or marketing (if opted-in), and comply with legal obligations.
Important Disclaimer on AI Coaching
AI-generated coaching messages are created by automated systems and should not be considered as professional medical, nutritional, or fitness advice. Please see our Terms of Service for more details.
5. Legal Basis for Processing
We process your data based on: Contract Performance (to provide the service), Legitimate Interests (to improve the service), Consent (for marketing/cookies), and Legal Obligations (tax/accounting).
6. Data Sharing and Third Parties
We share data with trusted providers including Google (Authentication/AI), Stripe (Payments), and Firebase (Hosting/Database). We do not sell your personal data.
6.5 Community Features
If you use community features, your handle, profile photo, and shared content may be visible to other users. You can control this through privacy settings.
7. International Transfers
Data may be processed outside the UK/EEA (e.g. USA). We ensure safeguards like Standard Contractual Clauses (SCCs) are in place.
8. Data Security
We use TLS/SSL encryption, secure authentication, and limited access controls to protect your data from unauthorised access.
9. Data Retention
We retain data while your account is active. If deleted, we remove or anonymise personal data within 30 days.
10. Your Rights (UK GDPR)
You have the rights to: Access, Rectify, Erase, Restrict, Port, and Object to the processing of your data.
How to Exercise Your Rights
Contact us at hello@rallyfitapp.com. We will respond within one month.
12. Marketing
We only send marketing if you opt-in. You can unsubscribe at any time via the link in our emails.
13. Children
The Service is not intended for children under 16. We do not knowingly collect data from them.
14. Policy Changes
We may update this policy. Material changes will be notified via email or a notice within the Service.
15. Contact & Complaints
Reach us at hello@rallyfitapp.com. You also have the right to complain to the ICO (ico.org.uk).
16. Additional Information
Our Service may link to third-party sites; please review their privacy policies. By using RallyFit, you acknowledge you have read and agree to this Privacy Policy.