Privacy Policy | MuscleMaxme

Effective as of: 8 April 2026

This Privacy Policy explains what personal data we collect when you use our mobile applications, websites, and related services (collectively referred to as the “App” or “Service ?, and how we use and process that data. It also outlines your choices and rights regarding your personal information.

By using the Service, you confirm that:

You have read, understood, and agreed to this Privacy Policy, including the data processing activities described here; and

You are at least 18 years old.

If you do not agree to this Privacy Policy or cannot make the above confirmations, you must not use the Service. In that case, please take the following steps:

Delete your account and contact us to request deletion of your personal data.

Cancel any active subscriptions via the platform used for purchase—such as Apple (for iOS), Google (for Android), or any other applicable app store. If you purchased directly from our website, you may cancel through your account settings or by contacting us.

Remove the App from your device(s).

Please note that translations of this Privacy Policy may be made available for your convenience. However, in the event of any differences in interpretation between the English version (available at link) and any translated version, the English version will take precedence and be the only legally binding text.

1. Categories of personal data we collect 1.1 Data You Provide Directly 1.2 Data from Third Parties 1.3 Data We Collect Automatically 1.4 On-device Data Collection 1.5. Payment Processing and Financial Data 1.6. Aggregated and De-Identified Data 2. Purposes and Legal Bases for Processing Your Personal Data 3. With whom we share your personal data 4. How you can exercise your privacy rights 5. U.S. States Privacy Notice Applicability 5.1. Categories of Personal Information We Collect 5.2. What Personal Information We Share 5.3. Your Rights How to Exercise Your Rights California “Shine the Light” Law 5.4. Data Retention 6. Age Limitations 7. International Data Transfers 8. Changes to this Privacy Policy 9. Data retention 10. Personal data controller 11. Contact us

1. Categories of personal data we collect

We collect personal data from the following sources:

(i) information you provide directly to us (for example, when setting fitness goals, completing onboarding, or chatting with a coach);

(ii) information received from third parties (such as Apple or Google integrations);

(iii) information automatically collected when you use our app, website, or wearable devices.

1.1 Data You Provide Directly

Identifiers

When you register for our Service, make purchases, opt into communications, or contact our support team, you provide basic identification and contact information including your name, email address, and other contact details. We utilize these identifiers for account management, service-related communications, and customer support interactions.

Onboarding & Personalized Fitness Data

As part of onboarding or using the Service, you may provide information such as age, sex, weight, height, fitness level, health goals, daily routine, body composition goals (e.g., fat loss, muscle gain), lifestyle habits, and preferred workout style (e.g., home vs gym, cardio vs strength). We use this data to personalize your training plans, nutrition advice, and recommendations, creating a more tailored and effective wellness experience.

Workout and Progress Tracking

You may enter or sync workout details manually or through integrations—like exercise types, durations, repetitions, perceived effort, heart rate zones, calories burned, body measurements or progress photos. This helps us adapt your plan dynamically and track your progress.

Wellness & Special Category Data

Some data, like menstrual cycle information, diabetes-friendly nutrition needs, specific diet you follow, may be considered sensitive under privacy laws. We’ll always request your explicit consent before processing this type of data.

Store Orders

When ordering physical products from our store (such as fitness equipment or nutritional supplements), we collect necessary delivery information and product preferences to fulfill your order accurately and efficiently.

Commercial Information

Payment details are processed via secure third-party providers. We do not store your full payment card information, but we may receive limited details such as transaction amount, masked card digits, and payment method.

Coach Chat Interactions

If you subscribe to our premium coaching services, we process communications between you and our coaching team, including conversation content, shared progress updates, personal insights, visual content such as meal photos or form demonstrations, and program adjustment requests. This information is processed by both our team and our authorized third-party chat service providers to deliver effective coaching support.

Customer Service & Feedback

You may also choose to share certain personal information with us when you contact us through our “Contact Us” or “Support” forms, or by emailing us directly (including via our communication service providers, as described in Section 3). This may include any details or comments you provide when submitting your inquiry.

1.2 Data from Third Parties

Apple ID Sign-In

When you sign in with Apple to register an account in the App, we get personal data from your Apple ID account. This data may include, in particular, your name and verified email address. You may choose to share your real email address or an anonymous one that uses the private email relay service. Apple will show you their detailed privacy information on the sign in with the Apple screen. Find more about sign with Apple here.

Facebook Sign-In

When you decide to log in using Facebook, we get personal data from your Facebook account. This includes your name and Facebook ID. Unless you opt out on the Facebook Login screen, we will also collect your email address.

For more information, please refer to the Facebook Permissions Reference (describes the categories of information, which Facebook may share with third parties and the set of requirements) and to the Facebook Data policy. In addition, Facebook lets you control the choices you made when connecting your Facebook profile to the Website on their Apps and Websites page.

Google Sign-In

When you decide to log in using Google, we receive personal data from your Google Account: name, email address, profile picture associated with your Google Account. You can revoke access provided to us on Apps Permissions page. To know more about how Google processes your data, visit its Privacy Policy.

Apple HealthKit

With your permission, we may read or write health and fitness data from/to Apple Health Kit. This may include step count, distance, calories burned, weight, or workouts. This integration helps ensure continuity across your fitness tracking tools and devices. You can control this access at any time from your device settings. IThe pieces of data covered by Apple Health Kit scope will be indicated to you by Apple on its native pop-up screens, which we do not have control of.

For more information on the Apple HealthKit, please see http://www.apple.com/ios/health/.

1.3 Data We Collect Automatically

App Activity Data

We monitor how you use the app—such as your workout completion rate, time spent in sessions, favorite routines, skipped exercises, logged meals, and engagement with coach advice. This allows us to dynamically adjust your program, suggest rest days, or recommend challenges.

Device & Wearable Integration

When connected to a device like the MadBand, we may receive data such as step count, heart rate, workout duration, sleep stages, and movement patterns. This enables more accurate calorie and recovery recommendations. We’ll request your consent before syncing device data.

Device and Location Data

We may collect information such as IP address, time zone, device model, operating system, internet provider, and (with your consent) location—for example, to support features like tracking your walks.

Advertising Identifiers

We collect your Apple Identifier for Advertising (“IDFA ? or Google Advertising ID (“AAID ? (depending on the operating system of your device). You can typically reset these numbers through the settings of your device’s operating system (but we do not control this).

Cookies and Similar Technologies

Our products employ technologies (cookies, SDKs, etc.) to process your data to enhance your user experience, optimize ads, and analyze traffic. These technologies are activated when you interact with our services, visit our website, use our apps, or enable certain features like chats. Disabling these technologies may affect the functionality of certain features, although our products will remain usable.

Strictly Necessary – Required for core features like loading workouts, syncing progress, and enabling secure login. By utilizing them, we can (i) remember your preferences as you navigate our products, (ii) ensure swift loading of the content you request, (iii) enhance the security of our products, and (iv) enable other functionalities of our products.

Functional – Help remember your preferences, language, or active goals. Additionally, they provide you with a more consistent user experience by remembering your settings, keeping you logged in for extended periods, or saving your shopping cart selections.

Performance – Count visits and identify traffic sources, analyze how users interact with the app, e.g., which workout formats are most popular or where users tend to drop off. Some of these cookies are used strictly for audience measurement and A/B testing and may be exempt from consent under applicable privacy regulations. These cookies are configured to meet strict conditions that limit data collection, ensure user privacy, and prevent cross-site tracking.

Targeting – Allow us and our partners to show you fitness-related ads that may interest you, such as new training programs. If these technologies are enabled and you interact with our website or app, you might see ads for our products in your social media feeds. Additionally, they help us measure the effectiveness of advertising campaigns and make advertising more relevant to you.

You can manage your preferences for cookies and tracking in your app or browser settings. Refusing non-essential trackers may reduce personalization but won’t affect basic functionality.

1.4 On-device Data Collection

Certain advanced features of our Service utilize your device's local processing capabilities to enhance functionality and protect your privacy. In these instances, specific data may be stored and processed exclusively on your device, without being transmitted to or accessed by our servers.

For example, our food recognition feature (where available) may use on-device machine learning to identify food items in your photos without sending the actual images to our servers. This provides you with the convenience of automated nutritional tracking while maintaining enhanced privacy for your personal food images.

1.5. Payment Processing and Financial Data

When processing payments through our Services, you provide payment information directly to our authorized third-party payment processors. We do not collect, store, or have access to your complete payment card numbers. However, we may receive limited payment-related information including tokenized payment method identifiers, partial card details such as the last four digits, transaction records with purchase amounts, dates and times, payment method type, and service subscription details. This limited financial information enables us to manage your account, process refunds when appropriate, and maintain necessary transaction records for legal and accounting purposes.

1.6. Aggregated and De-Identified Data

We may aggregate, anonymize, or de-identify your personal data to ensure it cannot reasonably be used to identify you individually. This processed data may be shared with research institutions for academic studies, used for statistical analysis and trend identification, published in articles, research papers, or industry reports, and utilized to improve our Service and develop new features. For example, we may analyze aggregated fitness metrics, demographic patterns, or health trends across our user base to identify common wellness patterns, which helps us enhance our Service offerings and contribute to broader health research initiatives. Such aggregated data no longer constitutes personal information under applicable privacy laws.

2. Purposes and Legal Bases for Processing Your Personal Data

We collect and process your data primarily to: (i) deliver our fitness and wellness services; (ii) enhance service quality through continuous improvement; and (iii) expand our customer base. Below is a comprehensive breakdown of our data processing activities with specific examples.

Important Notice Regarding Sensitive Data: Certain information we collect during onboarding and through product usage may constitute "special category personal data" or "sensitive personal data" under applicable data protection laws. This includes health-related information (e.g., medical conditions like diabetes, cardiovascular metrics, BMI data). For such sensitive data:

We will obtain your consent before processing where required by applicable local laws

In jurisdictions where consent is mandated by law for sensitive data, and where such data is essential for core service functionality (e.g., heart rate monitoring, diabetes-specific meal planning), our ability to provide services may be contingent upon processing this data

Where consent is the legal basis for processing, you maintain the right to withdraw consent at any time, though this may impact service availability

In jurisdictions where alternative legal bases are permitted for processing sensitive data, we may rely on such bases as appropriate.

The App relies on your health-related data to deliver its primary functionality. Should you withdraw your consent to the processing of such data, continued access to the App may not be feasible, and we will assist you in deleting your account accordingly.

Purpose	What This Means For You	Data Categories Used	Lawful basis
Providing Our Service & Managing Your Account	We use your data to create your personalized experience, including: • Creating fitness and nutrition plans tailored to your specific needs (e.g., developing vegetarian meal options if that's your preference) • Addressing technical issues and support requests promptly • Sending essential notifications about account security, payments, and policy updates	•All categories	• Contract Performance • Consent (for sensitive health data, where required by applicable law)
Service-Related Communications	We communicate with you, for example, by push notifications or by emails. These may include reminders or other information about the Service. As a result, you will, for example, receive a push notification that a new feature has been deployed in the Service. To opt out of receiving push notifications, you need to change the settings on your device. To opt-out of receiving emails, you should click unsubscribe link in the footer of each email. The provision of consulting services with our coaches may need communication with you through messengers and other means of online communication	• All categories	• Contract Performance • Legitimate Interest (for non-essential communications that support your goals) The legitimate interest we rely on for this purpose is our interest to encourage you to use our Service consistently and build healthy habits. We also consider the potential benefits to you of following your personalized training and nutrition plan, which supports your progress toward your fitness goals
Processing Your Transactions	We provide paid products and/or services within the Service. For this purpose, we use third-party services for payment processing. As a result of this processing, you will be able to make a payment and we will be notified that the payment has been made. When you make purchases, we process your data to: • Complete your orders securely through trusted payment processors • Provide confirmation receipts and purchase records • Handle any returns or billing questions Note: We never store your complete payment card details on our servers	•Identifiers •Commercial information • Device data • Location Data • Purchase records	• Contract Performance
Service Improvement & Analysis	We analyze usage patterns to: • Identify which features are most valuable to users • Discover opportunities for new workouts or nutrition options • Test and refine our service based on actual usage For example, if we notice high engagement with certain workout types, we may develop more content in those categories	All categories	• Legitimate Interest • Consent (when analysis involves sensitive health data, where required by applicable law ) Our legitimate interest for this purpose is our interest in improving our Service based on how people actually use it. This helps us understand user preferences so we can provide you with a better experience (for example, to make the App more intuitive and enjoyable, or to develop and test new features that meet your needs)
Marketing Communications	With appropriate legal basis, we'll send you: • Information about special offers and new features • Wellness tips and motivational content Note: Each marketing email includes an unsubscribe option	• Identifiers	Depending on the applicable law: • Consent • Legitimate Interest The legitimate interest for this processing is our interest to promote our Service in a measured and appropriate way. We may rely on this when we have an established relationship with you, such as when you've purchased products within our Service or maintained an active subscription
Ad Personalization	To make advertising more relevant, we may: • Show you ads related to fitness goals similar to yours • Present offers at times when they're most relevant to your journey For example, you might see our ads in your social media feed if you've previously used our service	• Onboarding & Personalized Fitness Data • Device and Location Data • Advertising identifiers • Cookies	Depending on the applicable law: • Consent • Legitimate Interest We rely on our interest to promote our Service in a reasonably targeted way, showing you content that's more likely to be relevant to your fitness interests rather than generic advertisements
Ad Performance Measurement	We verify our advertising effectiveness by: • Measuring impression accuracy • Ensuring proper ad placement and quality • Confirming compliance with industry standards	• Identifiers •Device and Location Data • Advertising identifiers • Cookies	Depending on the applicable law: • Consent • Legitimate Interest The legitimate interest for this processing is our interest in ensuring the accuracy and quality of our advertising campaigns and complying with industry standards. This helps us measure effectiveness and maintain transparent business practices
To enforce our Terms and Conditions of Use and to prevent and combat fraud	We protect our service and users by: • Detecting unauthorized access attempts • Identifying potentially fraudulent activities • Preserving information that may be needed in legal proceedings.	All categories	• Legitimate Interest Our legitimate interests here include enforcing our legal rights, preventing and addressing fraud or unauthorized use of the Service, and ensuring compliance with our Terms and Conditions. This helps provide a secure and reliable Service for all users
Compliance with Legal Obligations	We use data as required by law for: • Tax reporting and financial record-keeping • Data protection compliance • Responding to valid legal requests • Maintaining legally required records	All categories	• Complying with legal obligations
Responding to Payment Disputes and Defending Our Legal Rights	We process relevant transactional and service usage data to manage payment disputes, including chargebacks and refund requests. This includes: • Documenting the contractual relationship (subscription details, payment confirmations, purchase dates, and service access records) • Recording your Service interactions and content consumption patterns to verify actual service delivery • Logging feature usage, workout completions, content access timestamps, and session durations • Maintaining comprehensive audit trails of all user-initiated actions within the Service • Collecting device information, IP addresses, and access patterns for fraud prevention • Other consumption information (as this term defined by App Store)	All categories (with particular emphasis on Commercial Information, service usage data, and Device Information)	• Legitimate Interest (protecting our business from fraudulent claims and establishing contractual compliance) • Contractual Necessity (maintaining evidence of service delivery) • Legal Obligation (responding to payment processor requirements)

3. With whom we share your personal data

In some situations, we engage other companies to process your personal data on our behalf. We refer to these companies or service providers as "processors." Processors are companies that help us run the Services, support our communication with you, or perform other App-related activities. They process certain personal data on our behalf to accomplish the goals related to the App functions and deliver the Services. We remain responsible for any acts or omissions of our processors, and we enter into data processing contracts with them to the extent required by applicable law.

This cooperation may involve processing your data through their software development kits (SDKs), application programming interfaces (APIs), cookies, or similar technologies. Your information may be transferred to and processed on their servers as necessary to fulfill their contracted responsibilities.

1. Third-party services providers

We process your personal information through the following categories of service providers (and in some instances, their authorized subprocessors):

a. Cloud storage providers

We utilize Amazon Web Services (AWS) as our primary hosting and cloud infrastructure service. You may read more on Amazon’s security practices on its website.

b. App performance and monitoring service providers

We use Firebase Performance Monitoring and Firebase Crash Reporting, which are monitoring services provided by Google. To learn more, please visit Google’s Privacy policy and Privacy and Security in Firebase.

We use Sentry, a specialized error monitoring platform provided by Functional Software Inc. This service helps us detect, diagnose, and resolve technical issues that may occur within our application. When the app encounters an unexpected error or crash, Sentry collects necessary diagnostic information including device specifications, application version, and technical error details. This automated error reporting system enables our development team to quickly identify and address problems that might affect your experience. Sentry processes this technical data in accordance with our data processing agreement and privacy requirements, allowing us to maintain optimal application performance and stability.

d. Data analytics providers

To evaluate marketing effectiveness and understand user acquisition channels, we utilize AppsFlyer, a mobile attribution and analytics platform. AppsFlyer helps us identify which marketing sources led you to discover our application (such as determining which specific advertisement or promotional channel directed you to our app in the app store). Appsflyer allows you to Opt Out of having data from your device sent to AppsFlyer's servers for apps usage collection. You can read more about Appsflyer’s privacy practices in its Privacy Policy.

We also use Amplitude, an advanced behavioral analytics platform that helps us understand user engagement patterns within our Service. The analytical insights from Amplitude guide our product development decisions, allowing us to identify which aspects of our Service deliver the most value to users. For instance, if analytics reveal high engagement with certain workout types or nutrition tracking methods, we can prioritize enhancing these features. mplitude provides more information on how they process data in its Privacy Policy.

We also use Firebase Analytics which is an analytics service provided by Google. In order to understand Google's use of data, consult Google's partner policy. Firebase Privacy information. Google’s Privacy Policy.

To analyse how visitors use our Service and to measure effectiveness of some ads we use Google Analytics, a web analysis program of Google. In order to provide us with analytics, Google Analytics places cookies on your device. On Google Analytics we get, in particular, aggregated information on the data you enter on our Website and users’ interactions within the Website. Google allows you to influence the collection and processing of information generated by the Google, in particular, by installing a browser plug-in, available here. You can read more about how Google uses information here.

To perform our Service analysis, we also use Tableau, a company providing interactive data visualization products focused on business intelligence. Tableau Software Privacy Policy.

We also use Hotjar, a behavior analytics tool that analyses Service use, providing feedback through tools such as heatmaps, session recordings, and surveys. Hotjar’s Privacy Policy.

Another behavior analytics tool we use is Amplitude Session Replay, which helps us to analyze how you use the Service through heatmaps, session recordings, event statistics funnels, and crash reports. When you use the Service in our app or on our website, some of your activity will be logged. Amplitude captures and analyzes your activity and provides us with data and a video session replay of your activity to help us make your experience better. Amplitude does not record usernames, names, profile images, email addresses, profile locations or bios, or passwords.

To track and analyze behavior of our App’s users (in particular, how they react to changes of the App structure, text or any other component), we use Firebase Remote Config. Firebase Remote Config is an A/B testing and configuration service provided by Google, which also enables us to tailor the content that our App’s users see (for example, it allows us to show different onboarding screens to different users).You can read more about Firebase’s privacy practices in its Privacy Policy and Privacy and Security in Firebase.

Sentry is a code analysis tool, which allows us to log software mistakes, monitor the software performance of a code, and analyse code vulnerabilities. While performing its functions, Sentry may access a limited number of your data, such as IP address, browser information, OS version, and device type.

e. Gateway service providers and payment processing partners

We engage multiple payment processing and gateway service providers to facilitate secure transactions across various banking networks worldwide. These providers enable us to offer diverse payment options while ensuring smooth transactions. Due to our extensive payment network, we cannot list all providers here, but examples include Ebanx, Checkout, Solid. Each processor maintains its own terms and privacy policy that may apply to your transactions. All payment partners are contractually required to implement appropriate security measures and process your payment information solely for authorized transaction purposes.

f. Communication services providers

We use Intercom as our in-app messaging platform to provide real-time support, consultations services, enable you to chat with coaches, and engage with you directly in the Service. When you use our in-app chat feature, Intercom processes necessary identification data to facilitate these conversations. Read more about Intercom’s approach to privacy in its Privacy Policy.

We use Apple Push Notification service, that is a notifications service provided by Apple. APNs allows us to send information to iOS devices. Apple’s privacy policy.

We use SurveyMonkey to deliver different Service-related surveys. ++SurveyMonkey Privacy Notice++++.++

We utilize Amplitude Surveys as part of our user experience optimization toolkit. This feature allows us to collect your feedback and understand your needs directly within the app through non-intrusive survey prompts. When you respond to in-app surveys, Amplitude processes your responses along with basic interaction data to help us improve product features, enhance onboarding experiences, and better understand user preferences.

We use Iterable for the in-app push notifications. Iterable Privacy Policy.&text=We%20may%20receive%20personal%20data%20about%20you%20from%20third%20parties.).

g. Marketing service providers

We utilize Meta Pixel to gather insights about your interactions with our website. This includes tracking the pages you visit, the duration of your visits, and your activities on these pages. The purpose of collecting this data is to evaluate the success of our advertising efforts and to tailor the content and advertisements displayed to you, enhancing your user experience. You acknowledge and agree that the information captured through Meta Pixel is transmitted to Meta and such transmission occurs automatically once you consent to the use of tracking technologies requiring your consent.

The processing of this data by Meta takes place within the framework of Meta’s data policy.

To opt-out from Meta’s interest-based ads follow these instructions from Meta.

We employ Meta Ads Manager in conjunction with Meta Custom Audience tools to optimize our advertising efforts on Meta platforms (including Facebook and Instagram). This integration allows us to target our promotional content more effectively by creating audience segments based on certain data points like device identifiers (IDFA) or app interaction patterns. For example, we may develop custom audience groups of users who have recently installed our app or engaged with specific features. This enables us to request Meta to display our advertisements to users with similar interests or behaviors while they're browsing Meta-owned platforms. As a result, you may notice our ads appearing more frequently during your Facebook or Instagram sessions if you match certain targeting criteria. You may learn how to opt out of advertising provided to you through Facebook Custom Audience here.

To find how to control the ads you see on Facebook, please go here or adjust your ads settings on Facebook.

We use various Google marketing services (provided by Google Ireland Limited) to deliver targeted advertising based on your interests and usage patterns:

Google AdWords/Google Ads: Helps us measure ad effectiveness through conversion tracking.

DoubleClick: Enables placement of relevant third-party ads based on your browsing activity.

Google Audience: Allows us to show targeted messages across Google Network services (Gmail, YouTube, etc.) by matching email addresses or device IDs you've provided to us.

These services use cookies or similar technologies to collect information about your App usage, including which features you interact with and technical information about your device.

To opt out of interest-based advertising by Google, you can adjust your settings through Google's Ad Settings: https://adssettings.google.com/.

For more information about how Google uses your data for marketing purposes, please review Google's Privacy Policy: https://policies.google.com/privacy.

We use Snapchat Custom Audiences on the website so that user behavior can be tracked after users have been redirected to our website by clicking on a Snap ad. This enables us to measure the effectiveness of Snap ads for statistical and market research purposes. Snapchat allows you to Opt Out of their audience based ads. Privacy Policy.

2. Law enforcement agencies and other public authorities

We may use and disclose personal data to enforce our Terms and Conditions of Use, to protect our rights, privacy, safety, or property, and/or that of our affiliates, you or others, and to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, or in other cases provided for by law.

3. Third parties as part of a merger or acquisition

As we develop our business, we may buy or sell assets or business offerings. Customers’ information is generally one of the transferred business assets in these types of transactions. We may also share such information with any affiliated entity (e.g. parent company or subsidiary) and may transfer such information in the course of a corporate transaction, such as the sale of our business, a divestiture, merger, consolidation, or asset sale, or in the unlikely event of bankruptcy.

4. Affiliates

We may share your personal information with our partner organizations that are part of our corporate group – these are companies that are owned by, own, or are jointly-owned with us. These partner organizations will use the information in ways that align with this Privacy Policy, ensuring that your privacy is respected and protected across all our affiliated services within our fitness and wellness group.

4. How you can exercise your privacy rights

To be in control of your personal data, you have the following rights:

Accessing / reviewing / updating / correcting your personal data. You have the right to review, edit, or change the personal data that you had previously provided to us. If you would like to receive a copy of data we process, please send us a data access request or depending on the product you use, look for a data access privacy feature that is usually available in the profile section.

Deleting your personal data. You have the right to request erasure of your personal data as permitted by applicable privacy laws. Upon receiving your deletion request, we will make reasonable efforts to comply within the timeframes required by law. Please note that in certain cases, legal requirements may obligate us to retain specific information for set periods (for example, transaction records and support interactions). In such instances, we will immediately delete all data not subject to retention requirements, and will complete deletion of the remaining data once our legal obligations have been fulfilled.

Objecting to or restricting the use of your personal data. You can ask us to stop using your personal data or limit our use. For example: Email marketing: we provide you with the ability to unsubscribe from email marketing communication by following the unsubscribe link in every email or by contacting our support team. E-privacy settings: we also bring EU privacy features to customers worldwide and allow you to influence the tracking decision on a granular per purpose level (this is available by interacting with the e-Privacy settings section that is usually located in the footer, menu, or profile sections of our products). Additional means to influence personalized advertising iOS: On your iPhone or iPad, go to “Settings,” then “Privacy” and tap “Advertising” to select “Limit Ad Track ? In addition, you can reset your advertising identifier (this also may help you to see less of personalized ads) in the same section. Android: To opt-out of ads on an Android device, simply open the Google Settings app on your mobile phone, tap “Ads” and enable “Opt out of interest-based ads ? In addition, you can reset your advertising identifier in the same section (this also may help you to see less personalized ads). To learn even more about how to affect advertising choices on various devices, please look at the information available here. In addition, you may get useful information and opt out of some interest-based advertising, by visiting the following links: Network Advertising Initiative – http://optout.networkadvertising.org/Digital Advertising Alliance – http://optout.aboutads.info/Digital Advertising Alliance (Canada) – http://youradchoices.ca/choicesDigital Advertising Alliance (EU) – http://www.youronlinechoices.com/DAA AppChoices page – http://www.aboutads.info/appchoicesWe value your right to influence the ads that you see, thus we are letting you know what service providers we use for this purpose and how some of them allow you to control your ad preferences.

The right to lodge a complaint with supervisory authority. While we encourage you to contact us first with any privacy concerns so we can address them promptly and directly, you always maintain the right to file a complaint with the appropriate data protection supervisory authority in your jurisdiction. Our commitment to resolving your concerns doesn't affect your right to seek regulatory assistance if you believe your data protection rights have been violated.

The right to data portability. You can request a copy of your personal data in a structured, commonly used, machine-readable format that allows you to transfer this information to another service provider. Upon receiving your portability request, we will provide your data in a .json format or another compatible format. This enables you to maintain control of your information across different services.

Exercising Your Rights

To exercise any of your privacy rights described above, please submit a request to musclemaxme@gmail.com or use the dedicated privacy controls available directly within our application. We are committed to responding to all legitimate requests in accordance with applicable privacy laws and will process your request as promptly as possible.

Identity Verification

To protect your information and ensure we respond to legitimate requests, we must verify your identity when you exercise your privacy rights. Depending on your request type, we may ask for basic account information such as your email address, subscription date, or recent activity details. We strive to minimize the information requested during verification to the data that will reasonably identify you as an owner of the account.

An authorized agent

You may designate, in writing or through a power of attorney, an authorized agent to exercise these rights on your behalf. Before accepting such a request from an agent, we will require the agent to provide proof you have authorized them to act on your behalf, and we may need you to verify your identity directly with us.

5. U.S. States Privacy Notice

Applicability

If you reside in a state that has enacted consumer privacy laws, this section applies to you. This U.S. States Privacy Notice (“Notice ? supplements our Privacy Policy and provides disclosures required by laws in states such as California, Colorado, Connecticut, Delaware, Iowa, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Texas, Utah, and Virginia.

This Notice is designed to supplement our Privacy Policy to ensure compliance with state-specific laws and applies to the collection, use, and sharing of your Personal Information through our websites, mobile applications, and other online or offline services (collectively, the ?Services* ?.

For California residents, this also serves as our California Notice at Collection.

The definition of “Personal Information” may vary by state law. Generally, it refers to information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.

5.1. Categories of Personal Information We Collect

Section 2. Purposes and Legal Bases for Processing Your Personal Data outlines the categories of Personal Information we collect, along with purposes of such collection.

We may also process de-identified data, ensuring it cannot reasonably be linked back to you. We commit to maintaining and using de-identified data responsibly and will not attempt to re-identify such data unless required to validate our de-identification measures.

5.2. What Personal Information We Share

Certain state privacy laws, such as those in California require us to disclose the categories of Personal Information that we have shared with third parties for business purposes over the past 12 months. During this period, we have disclosed all categories of Personal Information outlined in the Section 2. Purposes and Legal Bases for Processing Your Personal Data section for business purposes. For example, we may share IP addresses and device identifiers with service providers that assist us with crash monitoring and reporting.

Some U.S. states grant residents the right to opt out of sharing their Personal Information with third parties in exchange for valuable consideration (which may be classified as a "sale" or "share" under state privacy laws, even if no monetary transaction occurs). If you reside in one of these states and would like to limit the disclosure of your Personal Information to third parties for advertising or marketing purposes, please refer to the “Your Rights” section below.

Privacy laws in some U.S. states broadly define the term "sale" and “share” to include sharing of information via cookies, pixels, and similar tracking technologies for certain targeted advertising activities. We do not sell Personal Information for monetary compensation. However, when you visit our websites, we and our advertising partners may collect device data and behavioral insights through tracking technologies, which could be interpreted as a “sale” or “sharing” under state laws, even if no money is exchanged.

We do not knowingly engage in sales, sharing, or targeted advertising using the personal information of individuals under 18.

5.3. Your Rights

Certain U.S. state privacy laws grant residents specific rights regarding their personal information. If you reside in a state with such laws, you may have the following rights:

Right to Data Portability/Access. You may have the right to request access to the specific pieces of personal information we have collected about you in the 12 months preceding your request. Where applicable, we may provide this data in an electronic, portable, and readily usable format.

Right to Know. You may be entitled to receive information regarding the categories of Personal Information we collected, the sources from which we collected Personal Information, the purposes for which we collected and shared Personal Information, the categories of Personal Information that we sold and the categories of third parties to whom the Personal Information was sold, and the categories of Personal Information that we disclosed for a business purpose in the 12 months preceding your request.

Right to Deletion. You may have the right to request that we delete the personal information we have collected from you. We will use commercially reasonable efforts to fulfill your request, subject to applicable laws. However, we may be required to retain certain information for legitimate business purposes or as required by law.

Right to Opt-Out of Sales, Sharing, and Targeted Advertising. You may have the right to opt out of certain uses of your personal information, including:

The “sale” or “sharing” of your personal information as defined under state privacy laws.

The use of your personal information for targeted advertising.

Depending on the product you use, we will strive to provide a prominently link named “Your Privacy Choices” that would allow you to exercise this right. Most of the time it will be available to you in the footer, menu, profile, or similar place (depending on the product and device you use).

We will also strive to recognize and process your opt-out preference signal as soon as possible after receiving it.

Right to Limit the Use of Sensitive Personal Information. Certain states provide the right to restrict how businesses use sensitive personal information. If applicable, you can submit a request through our “Your Privacy Choices” form.

Right to Withdraw Consent. Where applicable, you have the right to withdraw your consent for data collection and sharing.

Right to Correct (Rectification). You may have the right to request that we correct inaccurate personal information we maintain about you.

Right to Appeal. If we deny your request, you may have the right to appeal our decision. To do so, please contact us and explain your concerns. If you are dissatisfied with the result of the appeal, you may escalate the matter by contacting the Attorney General’s office in your state of residence.

How to Exercise Your Rights

To exercise any of the available privacy rights, please send a request to musclemaxme@gmail.com or use the privacy features available in our products.

Verification. To ensure that we properly process your requests regarding your rights, we are required to verify your identity. The verification process may vary depending on the type of request and the Service you use. It may include confirming details such as your name, age, email address, date of subscription purchase, date of last activity, date of account creation, or other relevant Service usage data that reasonably identify you as the account owner. We may also request additional proof of identity if necessary, but we strive to minimize the information required. For certain requests, we may send a verification code or link to authenticate your identity.

Authorized Agent. You may designate an authorized agent to exercise your rights on your behalf. If you have provided the authorized agent with a valid power of attorney, we will work directly with them to process your request. If a power of attorney or similar authorization has not been provided, we will contact you directly to confirm the agent’s authority and collect the necessary verification information. The authorized agent must verify both their own identity and that of the consumer they are representing.

Non-Discrimination. You have the right to exercise your privacy rights without fear of discrimination or retaliation. However, we may provide different levels of service or pricing based on the value of your personal information, as permitted by applicable law.

California “Shine the Light” Law

California residents have the right to request, once per year, a list of third parties to whom we have disclosed their personal information for direct marketing purposes in the prior calendar year. To obtain this information from us, please send an email message to musclemaxme@gmail.com, which includes “Request for California Shine the Light Privacy Information” on the subject line and your state of residence and email address in the body of your message.

5.4. Data Retention

We retain the categories of personal information listed above as reasonably necessary to fulfill the purposes outlined in this notice, unless a longer retention period is required or permitted by law. In many situations, we must retain all, or a portion, of your personal information to comply with legal obligations, resolve disputes, enforce our agreements, protect against fraudulent, deceptive, or illegal activity, or for another one of our business purposes.

6. Age Limitations

We do not knowingly process personal data from persons under 18 years of age. If you learn that anyone younger than 18 has provided us with personal data, please contact us at musclemaxme@gmail.com.

7. International Data Transfers

We may transfer personal data to countries other than the country in which the data was originally collected in order to provide the Service set forth in the Terms and Conditions of Use and for purposes indicated in this Privacy Policy. If these countries do not have the same data protection laws as the country in which you initially provided the information, we deploy appropriate safeguards, such as standard data protection clauses adopted by the EDPB.

8. Changes to this Privacy Policy

We may modify this Privacy Policy from time to time. If we decide to make material changes to this Privacy Policy, you will be notified through our Service or by other available means and will have an opportunity to review the revised Privacy Policy. By continuing to access or use the Service after those changes become effective, your acknowledgement of the revised Privacy Policy.

9. Data retention

We will store your personal data for as long as it is reasonably necessary for achieving the purposes set forth in this Privacy Policy and our the. Terms and Conditions of Use (including providing the Service to you), which includes (but is not limited to) the period during which you have an account with the Service.

We will also retain and use your personal data as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. For example, under certain accounting and tax laws we are required to store Commercial Information for long periods of time to comply with laws we are subject to. Therefore, even if you submit a data deletion request, a small portion of the data that relates to our compliance obligations will be stored even after the request is satisfied.

10. Personal data controller

HONG KONG VITALITY TECHNOLOGY AND CULTURE CO LIMITED

11. Contact us

You may contact us at any time for details regarding this Privacy Policy, its previous versions, or our information practices. For any questions concerning your account or your personal data please contact us at musclemaxme@gmail.com.