24/7 Fit

Privacy Policy

Last updated: March 2026

24/7 Fit (“we”, “our”, “us”) is committed to protecting your personal data. This Privacy Policy explains what information we collect, how we use it, and your rights as a user of our AI-powered fitness coaching service available at app.the247fit.app.

1. Data We Collect

When you create an account and use 24/7 Fit, we collect the following categories of personal data:

  • Account information: Your name and email address, collected at sign-up.
  • Fitness profile: Your fitness goals, experience level, available equipment, physical stats (e.g. height, weight), and any injuries or limitations you disclose during onboarding.
  • Workout history: Records of completed workouts, exercise logs, and progress data generated through your use of the app.
  • Chat messages: Messages you send to the AI coaching assistant, including any fitness queries, feedback, or personal information you voluntarily share.
  • Payment information: Billing details are handled directly by Stripe. We do not store card numbers or payment credentials.
  • Technical data: Device type, browser type, IP address, and usage data necessary to operate and improve the service.

2. How We Use Your Data

We use your personal data to:

  • Personalise AI coaching: Your fitness profile, goals, and chat history are used to generate personalised training plans and coaching responses via the AI model.
  • Deliver the service: To authenticate your account, manage your subscription, and provide access to workouts and coaching features.
  • Improve 24/7 Fit: Aggregated, anonymised usage data may be used to improve our service, identify bugs, and develop new features.
  • Communicate with you: To send service-related notifications such as trial expiry reminders, billing updates, and important policy changes.

3. Third-Party Data Processors

We share your data with the following third-party processors who act under our instruction and are bound by appropriate data processing agreements:

Firebase / Google

Authentication (sign-in) and Firestore database storage. Your account data, fitness profile, workout history, and chat messages are stored in Firestore. Google's infrastructure is used under a Data Processing Agreement compliant with UK GDPR.

OpenAI

AI coaching responses. Your fitness profile data, workout context, and chat messages are sent to the OpenAI API to generate personalised coaching responses. OpenAI processes this data under our API agreement. We do not send payment or sensitive medical data to OpenAI.

Stripe

Payment processing. When you subscribe, your billing details are submitted directly to Stripe. 24/7 Fit does not store, log, or have access to your full card number or CVV. Stripe is a PCI DSS Level 1 certified payment processor.

4. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the service. If you request account deletion, we will delete or anonymise your personal data within 30 days of receiving the request, except where we are required by law to retain certain records (e.g. billing records for tax purposes, which may be retained for up to 7 years).

5. Your Rights Under UK GDPR

As a data subject under UK GDPR, you have the following rights:

  • Right of access (Article 15): You can request a copy of the personal data we hold about you.
  • Right to rectification (Article 16): You can request correction of inaccurate or incomplete data.
  • Right to erasure (Article 17): You can request deletion of your personal data. You may do this via the account deletion option in the app's Settings, or by emailing us.
  • Right to restrict processing (Article 18): You can request that we limit how we process your data in certain circumstances.
  • Right to data portability (Article 20): You can request your data in a structured, machine-readable format.
  • Right to object (Article 21): You can object to processing based on legitimate interests.

To exercise any of these rights, please email liam@the247fit.app. We will respond within 30 days.

6. Cookies

We use only the following cookies, all of which are strictly necessary for the service to function:

  • Firebase Auth session cookie: A secure, HTTP-only cookie used to maintain your authenticated session. This is essential for you to remain logged in.
  • Stripe cookie: Set by Stripe during payment flows for fraud prevention and session continuity. This is necessary to process payments securely.

We do not use any tracking, advertising, analytics, or third-party marketing cookies. You will not be tracked across other websites.

7. No Advertising or Data Selling

We do not sell, rent, or trade your personal data to any third parties for commercial purposes. We do not display advertising within 24/7 Fit. Your data is used solely to provide and improve the fitness coaching service you have subscribed to.

8. UK GDPR Compliance

24/7 Fit is operated by a UK-registered entity. We are committed to compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. Our lawful basis for processing your personal data is the performance of a contract (providing you with the coaching service) and, where applicable, your consent. If you believe we have not handled your data correctly, you have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) at ico.org.uk.

9. Contact Us

For any privacy-related queries, data subject requests, or to report a concern, please contact us at: liam@the247fit.app

Terms of ServiceRefund Policy