Privacy Policy

“Amirani” (“we”, “us”, “our”) refers to the entity operating the Amirani mobile app and the Amirani trainer / gym-owner dashboard. We are the data controller for personal data collected through our products. Contact details are at the bottom of this page.

2.1 Account & identity

• Email address, hashed password, and full name (always).
• Phone number, address, profile photo (optional, on registration or in profile settings).
• OAuth provider identifiers from Google Sign-In or Sign in with Apple if you choose those instead of email/password. We store the provider’s stable user ID so we know the same Google/Apple account on next sign-in. We donot receive your provider password.
• An internal Stripe customer ID once you set up a subscription. Card details themselves are stored by Stripe, never by us.

2.2 Health & fitness profile

To personalise workout and meal plans, you can provide: height, weight, target weight, date of birth, gender, fitness level, dietary style, allergies, medical conditions or notes, and goal text. You decide what to share — most fields are optional. Sensitive health fields are only ever used to compute your plans or to surface them back to you in the app.

2.3 Activity & plan data

• Workout plans, meal plans, and per-day adherence (whether you completed scheduled sessions / meals).
• Logged food entries, including items you scan via barcode.
• Logged workout sets, reps, weights, and progress photos you choose to upload.
• Hydration tracking, recovery state, and challenge-room participation.

2.4 Gym membership & access

• The gym(s) you belong to, your membership plan, start / end dates, and current status (active, in grace period, expired).
• Door access events: timestamp, door system used, method (QR, NFC, biometric step-up), and whether access was granted. These records support occupancy analytics and anomaly detection at your gym.
• Assigned trainer relationship and trainer-sent messages or feedback.

2.5 Device & technical data

• Push notification tokens (Firebase Cloud Messaging on Android, APNs on iOS) so we can deliver plan-assignment and gym-update notifications.
• Device platform (iOS / Android), app version, and language preference for delivering the correct features and translations.
• IP address, request path, and timestamps in server logs for security, fraud prevention, and debugging.
• When crash reporting is enabled by you or by us in a specific release, anonymised stack traces and the version of the app that crashed. We do not attach your name, email, or IP to these reports.

• Run the service: authenticate you, render your plans, show your gym’s status, accept payments, fire push notifications.
• Personalise plans: compute calorie targets, exercise progressions, and meal suggestions based on your profile and history. AI-driven plan generation may also use your profile when you explicitly request a plan.
• Open doors: validate that you have an active membership and grant physical entry at the gym(s) that opted into our hardware integration.
• Surface progress to your trainer / gym: if you are assigned to a trainer, they see your plan adherence, attendance, and any messages you send them. Gym staff see attendance and door events for their location.
• Detect abuse and protect accounts: throttling, lockouts, and audit logs of authentication and privilege-changing events.
• Comply with law: respond to lawful requests, enforce our Terms of Service, and exercise our rights in disputes.

Where the GDPR or an equivalent regime applies, we rely on the following bases:

• Contract performance: processing required to deliver the service you signed up for (your account, your plans, your gym access).
• Legitimate interests: keeping the service secure, preventing fraud, and measuring product performance in aggregate.
• Consent: optional features such as marketing notifications, photo uploads, and health data fields you provide voluntarily. You can withdraw consent at any time.
• Legal obligation: tax records, retention of payment evidence, lawful government requests.

We do not sell personal data. We share it only with the specific processors and parties needed to operate Amirani:

• Your gym: if you are a member of a gym on the Amirani platform, that gym’s staff sees the data they need to run your membership and your gym attendance.
• Your trainer: if you are assigned to a trainer, that trainer sees the parts of your profile and progress relevant to coaching.
• Stripe handles card processing and subscription billing. They are the data controller for your payment instrument.
• Google & Apple receive the OAuth handshake when you sign in with their accounts.
• Firebase Cloud Messaging (Google) delivers push notifications to your device.
• Our AI provider receives a minimised version of your profile (goals, metrics, dietary preferences) at the moment you ask the app to generate a workout or meal plan. It is not used for ongoing analytics.
• Crash reporting provider receives anonymised crash data if enabled. No PII is attached and sensitive headers are stripped.
• Hosting: servers and managed Postgres are operated by reputable EU-region cloud providers.
• Law enforcement only on receipt of a binding legal request that we have reviewed.

Our primary database and application servers operate in the European Union. AI plan generation, push notification, and payment providers may process data in their own regions under their published data-protection terms. We use HTTPS-only transport and encryption at rest for our production database.

• While your account is active: we keep your profile, plans, and history so the app works.
• After you delete your account: personal data is permanently removed within 30 days, except for records we are legally required to retain (e.g. payment evidence for accounting / tax) which are kept for the legally-required minimum period and then deleted.
• Security logs (failed logins, audit events) are retained for up to 12 months for fraud prevention.
• Backups roll over within a short window; deleted data ages out of backups automatically.

Depending on where you live, you may have some or all of these rights over your personal data:

• Access — request a copy of the data we hold about you.
• Rectification — correct anything that is wrong.
• Deletion (“right to be forgotten”) — ask us to erase your account. The mobile app exposes this directly under Profile → Settings → Delete account.
• Restriction — ask us to stop processing for a period.
• Portability — export your data in a machine-readable format. The mobile app exposes this under Profile → Settings → Export data.
• Objection — opt out of processing based on legitimate interests.
• Withdraw consent — whenever processing relied on your consent.
• Complaint — file a complaint with your local data protection authority.

To exercise any of these, contact us using the details in section 12.

Our trainer / gym-owner dashboard uses a single authentication cookie (amirani-auth-token) to keep you signed in. The mobile app uses the platform’s secure keychain / keystore for the same purpose — no cookies, no third-party tracking pixels. We do not run advertising trackers anywhere.

Amirani is not directed at children under 16. If you become aware that a child under 16 has provided personal data to us, please contact us and we will delete it promptly. Gyms that onboard younger members under parental supervision should consult their local regulations and use Amirani only under appropriate consent.

We may update this policy as the service evolves. Material changes will be announced in the app and, where possible, by email or push notification. The “Effective date” at the top of this page reflects the most recent revision.

Questions, requests, or data-protection complaints:

• Email: privacy@amirani.online
• Mailing address: provided on request.