Privacy Policy

Last updated: March 6, 2026

TempoAI is operated by Bytefern Ltd ("Company", "we", "us", or "our"). This Privacy Policy explains how we collect, use, and protect your information.

1. Information We Collect

TempoAI collects and processes the following information:

• Apple Sign-In Data: Your Apple ID information including email address (if provided) and unique user identifier. Authentication is handled through Google Firebase, which receives your Apple credentials to generate secure authentication tokens.
• Personal Profile Data: Height, weight, and date of birth, if provided, to personalize workout analysis and insights.
• Apple Health Workout Data: When you grant permission, we access your workout data from Apple Health including runs, cycles, and other activities. This includes detailed metrics such as per-split GPS coordinates (latitude and longitude), heart rate samples, cadence, stride length, vertical oscillation, ground contact time, elevation data, and full route coordinates. This data is transmitted to our secure servers and may be processed by third-party AI services to provide personalized insights.
• Weather Data: When workout GPS coordinates are available, we fetch weather conditions (temperature, humidity, wind speed) from an external weather service to provide context for your workouts.
• Chat Data: Messages and conversations you have with our AI assistant
• Usage Data: Technical information about how you use our service, including device information, usage patterns, and token usage for rate limiting

2. How We Use Your Information

We use your information to:

• Provide personalized AI-powered insights about your workouts and fitness activities
• Calculate and analyze your workout splits, pace, heart rate, cadence, biomechanics, and performance metrics
• Maintain and improve our service
• Authenticate your identity and secure your account
• Store and manage your chat history
• Respond to your questions and provide customer support

2a. Health Data Processing

External Processing Notice: Your Apple Health workout data is processed by external third-party services (specifically OpenAI) to provide AI-powered insights. This means your health data leaves your device and our servers.

Data Transmitted: This includes but is not limited to:

• Workout types, dates, and durations
• Distance, pace, and speed metrics
• Heart rate data and zones
• Split times and performance analysis
• Calories burned and energy expenditure
• Cadence, stride length, vertical oscillation, and ground contact time
• GPS coordinates for each split point and full route coordinates
• Elevation and altitude data

Purpose: This data is sent to AI services to generate personalized coaching insights, performance analysis, run type classification (e.g. easy, threshold, interval), and training recommendations tailored to your fitness activities.

3. Information Sharing and Data Processing

We share your information with third-party services to provide our AI-powered features:

• Google Firebase: Your Apple Sign-In credentials are processed through Google Firebase for authentication. Firebase generates and verifies authentication tokens for all API requests. See Google's privacy policy at https://firebase.google.com/support/privacy
• OpenAI: Your workout data and chat messages are transmitted to OpenAI for AI analysis and response generation
• Weather Service: Your workout GPS coordinates and dates are sent to an external weather service to retrieve weather conditions for your workouts
• Service Providers: We work with hosting and infrastructure providers who may have access to your data

We may also share your information in the following circumstances:

• With your explicit consent
• To comply with legal obligations
• To protect our rights and prevent fraud

No Training Use: While your data is processed by OpenAI, they have confirmed it is not used to train their AI models.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. This includes:

• Encryption of data in transit and at rest
• Secure authentication protocols
• Regular security assessments
• Limited access to personal data on a need-to-know basis

5. Third-Party Services and External Processing

Important: Your health and workout data is processed by external third-party services to provide AI insights. This data is sent outside your device and our servers for analysis.

Our app integrates with the following third-party services:

• Apple Sign-In: For secure authentication, processed through Google Firebase
• Google Firebase: For authentication token generation, verification, and user identity management. Firebase is operated by Google and subject to Google's privacy policies.
• Apple HealthKit: To access your workout and fitness data with your explicit permission
• OpenAI: Your workout data (including distance, pace, heart rate, GPS coordinates, biomechanics, splits, and other metrics) and chat messages are transmitted to OpenAI's servers for AI analysis and response generation. OpenAI does not use this data for training their models.
• Weather Service: Workout GPS coordinates and dates are used to retrieve weather conditions from an external weather API

Data Transmission: When you use our AI features, your workout data is transmitted over the internet to OpenAI's servers. While we use encryption during transmission, this data leaves your device and our direct control.

Please review OpenAI's privacy policy at https://openai.com/privacy and Google Firebase's privacy information at https://firebase.google.com/support/privacy to understand how they handle your data.

6. Data Retention and Deletion

We retain your personal information for as long as your account is active or as needed to provide our services. You may request deletion of your account and associated data at any time through the app settings.

HealthKit Disconnection: Disconnecting or revoking HealthKit permissions will immediately prevent any further health data from being shared or sent to external AI services. However, previously transmitted data may remain in external systems.

Complete Account Deletion: When you delete your account, we permanently remove all workout data, chat history, and personal information from our servers. This includes all previously sent health data stored in our systems. We also attempt to delete your Firebase authentication record, though this is processed on a best-effort basis.

Abuse Prevention: To prevent abuse of our service, we retain a pseudonymous identifier linked to your account after deletion. This identifier does not contain your name, email, workout data, or any personal health information — it is used solely to enforce usage limits and prevent misuse. This identifier cannot be used to reconstruct your account or identify you personally.

Third-Party Data: Please note that data previously sent to OpenAI and Firebase is subject to their respective retention policies. We cannot control or guarantee deletion of data from their systems, but account deletion removes all personal data from our servers.

7. Your Rights and Health Data Control

You have the right to:

• Access your personal information
• Correct inaccurate data
• Delete your account and data
• Withdraw consent for data processing
• Export your data

Health Data Specific Rights:

• Disconnect HealthKit: You can revoke our access to your Apple Health data at any time through iOS Settings > Privacy & Security > Health > TempoAI. This immediately stops any further health data from being shared or sent to external AI services.
• Delete Account: Deleting your account permanently removes all previously sent health data from our servers, including all workout history, splits, performance metrics, and personal profile data. A pseudonymous abuse-prevention identifier is retained (see Section 6).
• Two-Step Data Control:
  • Disconnecting HealthKit = Prevents future data sharing
  • Deleting account = Removes all previously sent data from our systems
• Informed Consent: By granting HealthKit permissions, you explicitly consent to your health data being processed by external third-party AI services
• Data Portability: You can export your health data from TempoAI before account deletion

8. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

9. Apple HealthKit Compliance

This app complies with Apple's HealthKit data requirements:

• No Health Data Sales: We do not sell health data to any third parties, advertisers, or data brokers
• Medical Disclaimer: This app is not intended for medical diagnosis, treatment, or medical advice. Always consult healthcare professionals for medical decisions
• Fitness Purpose Only: Health data is used solely for fitness insights, workout analysis, and training recommendations
• Transparent Processing: We clearly disclose that health data is processed by external AI services
• User Control: You maintain full control over your health data permissions through iOS settings

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the "Last updated" date.