BurnTracker — Privacy Policy

Last Updated: February 7, 2026
Effective Date: February 7, 2026
Governing Law: State of California, United States

This Privacy Policy describes how BurnTracker ("we", "us", "our") collects, uses, and protects your information when you use the BurnTracker mobile application ("App"). By using the App, you consent to the practices described in this Privacy Policy.

1. Information We Collect
2. How We Use Information
3. Data Storage & Retention
4. Third-Party Services
5. HealthKit Privacy
6. Data Security
7. Your Rights & Choices
8. Children's Privacy
9. California Privacy Rights
10. Do Not Sell or Share
11. Disclaimer & Limitation
12. Changes to This Policy
13. Contact Us

1. Information We Collect

1.1 Data Stored ONLY on Your Device (We Have ZERO Access)

Data	Purpose	Storage	Retention
Profile Data (name, age, gender, height, weight)	Personalize fitness calculations	Your device ONLY	Until you delete the App
Workout Data (type, duration, distance, calories)	Track fitness activities	Your device ONLY	Until you delete the App
Step & Pedometer Data	Daily activity tracking	Your device ONLY	Until you delete the App
Location Data (GPS during workouts)	Distance calculation & route mapping	Your device ONLY	Until you delete the App
HealthKit Data	Sync workouts with Apple Health	Your device + HealthKit	Per Apple's policies

1.2 Data We Collect (Anonymous & Sanitized)

Service	Data Collected	Purpose	Privacy
Firebase Analytics	Screen views, feature usage (anonymous)	App improvement	No personal data, no fitness data
Firebase Crashlytics	Device model, iOS version, crash logs	Bug fixes	No personal data, no fitness data

1.3 Data We Do NOT Collect

Names, email addresses, phone numbers, or passwords (no account required)
Financial or payment information
Contacts, address book, calendar, or browsing history
Biometric identifiers (Face ID/Touch ID handled by Apple)
Social media accounts or profiles
Your actual fitness data on any server (it stays on your device)

2. How We Use Your Information

2.1 Legal Basis for Processing

Contractual Necessity: Processing fitness data locally is required to provide the App's core tracking service.
Legitimate Interest: Anonymous analytics and crash reporting help us maintain and improve the App.
Consent: HealthKit integration and location services require your explicit permission.

2.2 What We Do NOT Do

We do NOT sell, rent, or lease your information to third parties
We do NOT use your data for targeted advertising
We do NOT share your fitness data with data brokers
We do NOT create advertising profiles based on your usage
We do NOT transmit your fitness data to any server

3. Data Storage & Retention

3.1 On-Device Storage

All personal and fitness data is stored locally on your device
Protected by iOS file system encryption
Sensitive data uses Apple Keychain with hardware encryption
If you lose your device or delete the App, we CANNOT recover your data

3.2 Third-Party Data Retention

Firebase Analytics: Retained for 14 months per Google's policy, then automatically deleted
Firebase Crashlytics: Crash reports retained for 90 days
Apple HealthKit: Subject to Apple's data retention policies

4. Third-Party Services

Service	Purpose	Data Shared	Privacy Policy
Firebase Analytics (Google)	Anonymous usage analytics	Screen views, feature usage (anonymous)	Firebase Privacy
Firebase Crashlytics (Google)	Crash reporting	Device model, iOS version, crash logs	Firebase Privacy
Apple HealthKit	Optional health data sync	Workout data (with permission)	Apple Privacy

Third-Party Disclaimer: We are not responsible for the privacy practices or data handling of any third-party services. Your interaction with third-party services is governed by their respective terms and privacy policies.

5. HealthKit Privacy

In accordance with Apple's strict HealthKit requirements:

HealthKit data is NEVER shared with third parties
HealthKit data is NEVER used for advertising or marketing
HealthKit data is NEVER sold to anyone
Data flows only between the App and HealthKit on your device
You control all HealthKit read/write permissions through iOS Settings
Disabling HealthKit access does not affect core App functionality

6. Data Security

All data stored locally using iOS device encryption
Sensitive data in Apple Keychain with hardware-level security
No cloud transmission of personal data (only anonymous Firebase data via HTTPS)
App follows Apple's security best practices

Security Disclaimer: While we implement commercially reasonable measures, no method of electronic storage is 100% secure. You are responsible for your device's security (passcode, Face ID, keeping iOS updated). If your device is lost, stolen, or compromised, we cannot protect or recover your data.

7. Your Rights & Choices

Access Your Data: View directly in the App
Edit Your Data: Edit your profile and workouts in the App
Delete Your Data: Delete the App to permanently remove all data from your device
HealthKit Permissions: Manage in iOS Settings > Privacy > Health
Location Permissions: Manage in iOS Settings > Privacy > Location Services
Analytics Opt-Out: Limit analytics via iOS Settings > Privacy > Tracking

8. Children's Privacy

The App is not directed at children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe a child has provided personal information through the App, please contact us immediately and we will take steps to delete such information in compliance with COPPA.

9. California Privacy Rights (CCPA / CPRA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (Cal. Civ. Code § 1798.100 et seq.):

9.1 Your Rights

Right to Know: Request disclosure of data we collect about you
Right to Delete: Request deletion of your personal information
Right to Correct: Request correction of inaccurate information
Right to Opt-Out: We do not sell or share your personal information
Right to Non-Discrimination: We will not discriminate against you for exercising your rights

9.2 CCPA Disclosure Table

Category	Collected?	Sold?	Shared?	Business Purpose
Identifiers (anonymous device ID)	Yes	No	Yes (Firebase)	App improvement & crash fixing
Internet Activity (analytics)	Yes	No	Yes (Firebase)	App improvement
Health/Fitness Data	Yes (device only)	No	No	Core service — we have NO access
Geolocation (GPS during workouts)	Yes (device only)	No	No	Workout tracking — we have NO access
Sensitive Personal Info	No	No	No	N/A
Financial Information	No	No	No	N/A

9.3 Exercising Your Rights

To exercise your California privacy rights:

Delete the App to remove all local data (immediate self-service)
Email us at support@synthesislogic.com for any privacy requests

We will respond to verifiable consumer requests within 45 days as required by law.

10. Do Not Sell or Share My Personal Information

We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising. Since your fitness data is stored exclusively on your device, we do not even have access to it.

Firebase Analytics and Crashlytics operate as service providers (not a "sale" or "share" under CCPA), processing only anonymous technical data for app improvement purposes.

11. Disclaimer & Limitation of Liability

TO THE FULLEST EXTENT PERMITTED BY APPLICABLE LAW, INCLUDING CALIFORNIA LAW:

THIS PRIVACY POLICY AND ALL RELATED DATA PROCESSING SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE." WE MAKE NO REPRESENTATIONS OR WARRANTIES REGARDING THE COMPLETENESS, ACCURACY, OR SECURITY OF OUR DATA PROCESSING PRACTICES.

THE APP IS NOT A MEDICAL DEVICE. CALORIE CALCULATIONS, DISTANCE MEASUREMENTS, AND FITNESS METRICS ARE ESTIMATES ONLY. DO NOT MAKE HEALTH DECISIONS BASED SOLELY ON APP DATA.

IN NO EVENT SHALL WE BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES ARISING FROM OR RELATED TO: DATA LOSS DUE TO DEVICE LOSS OR APP DELETION; HEALTH DECISIONS BASED ON APP DATA; INACCURATE FITNESS CALCULATIONS; THIRD-PARTY SERVICE ACTIONS (INCLUDING FIREBASE AND APPLE); OR ANY UNAUTHORIZED ACCESS TO YOUR DEVICE.

OUR TOTAL AGGREGATE LIABILITY SHALL NOT EXCEED THE GREATER OF: (A) ONE HUNDRED UNITED STATES DOLLARS ($100.00 USD); OR (B) THE AMOUNTS PAID BY YOU IN THE TWELVE (12) MONTHS PRECEDING THE EVENT.

THE FOREGOING LIMITATIONS SHALL NOT APPLY TO LIABILITY ARISING FROM OUR GROSS NEGLIGENCE, WILLFUL MISCONDUCT, OR FRAUD, TO THE EXTENT SUCH LIMITATION IS PROHIBITED BY CAL. CIV. CODE § 1668.

NOTHING HEREIN SHALL BE CONSTRUED TO WAIVE YOUR RIGHTS UNDER THE CALIFORNIA CONSUMER LEGAL REMEDIES ACT (CAL. CIV. CODE § 1750 ET SEQ.).

12. Changes to This Policy

We may update this Privacy Policy from time to time
The "Last Updated" date at the top will be revised
Material changes may be communicated through the App
Continued use after changes constitutes acceptance

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights:

Email: support@synthesislogic.com
Website: synthesislogic.com

For California-specific privacy inquiries, include "California Privacy Request" in your email subject line. We will respond within the timeframes required by applicable law.

Table of Contents