Legal
Privacy Policy
Last updated: 2 July 2026
What we collect
When you create a PRGRM account, we collect your email address, display name, and optional profile details such as age, weight, height, and fitness goals. These are provided by you directly and used to personalise your experience.
When you use the app, we collect workout data you log (exercises, sets, reps, weight), nutrition entries, measurement logs, and readiness or health scores you record. If you connect Apple Health or a wearable device, we access the data types you explicitly authorise — such as heart rate, HRV, sleep duration, steps, and active calories.
We collect standard usage and diagnostic data (crash reports, feature usage patterns) to improve the product. This data is anonymised and aggregated wherever possible.
How we use your data
Your data is used exclusively to provide and improve the PRGRM service. This includes generating AI program recommendations, calculating readiness and injury scores, tracking your training history, and personalising nutrition targets.
We do not sell your data to any third party. We do not use your health data for advertising. We do not share identifiable information with partners, advertisers, or data brokers.
Anonymised, aggregated data — with no connection to individual users — may be used internally to improve AI models and product features.
Health and fitness data
PRGRM is designed to help you train and track your health. Any health data you enter directly or sync from Apple Health is treated with the highest level of care.
Health data is encrypted in transit and at rest. It is never shared with third parties. It is only used to compute features visible to you within the app (readiness score, injury score, nutrition adjustments).
If you connect Apple Health, you can revoke access at any time in iOS Settings → Privacy & Security → Health → PRGRM.
Data storage and security
Your data is stored on servers hosted by Railway (infrastructure) and is transmitted over HTTPS. We use industry-standard encryption for data at rest and in transit.
We retain your data for as long as your account is active. If you delete your account, your personal data and all associated records are permanently deleted within 30 days.
We implement technical and organisational measures to protect against unauthorised access, loss, or disclosure of your data.
Third-party services
PRGRM uses the following third-party services to operate:
— Stripe: payment processing for Pro and Elite subscriptions. Stripe handles all card data; PRGRM never stores payment card numbers. — Apple Health (optional): read access granted by you to sync wearable and health data. — OpenAI (optional, for AI features): workout and nutrition data may be sent to OpenAI's API to generate program recommendations and form analysis. No personally identifiable information is included in these requests.
Each third-party service operates under its own privacy policy.
Your rights
You have the right to access the data we hold about you, correct inaccurate data, request deletion of your account and all associated data, and export your workout history.
To exercise any of these rights, contact us at hello@prgrmapp.com. We will respond within 30 days.
If you are in the European Economic Area or United Kingdom, you also have rights under GDPR, including the right to lodge a complaint with your local supervisory authority.
Children
PRGRM is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has created an account, please contact us and we will delete the account and associated data immediately.
Changes to this policy
We may update this Privacy Policy from time to time. When we do, we'll update the date at the top of this page and, for significant changes, notify you via the app or email.
Your continued use of PRGRM after changes are posted constitutes your acceptance of the updated policy.
Questions? Email us at hello@prgrmapp.com