Your data. Your rules.

DAIONE ("we", "us", "our") is a fitness coaching app that builds personalized workout programs and tracks nutrition and body progress. We are the data controller for the information you provide directly through the app and website.

For privacy questions, requests for data access, or requests for deletion, contact us at privacy@daione.app.

We only collect what's needed to make the coaching work:

• Account info — email and a hashed password (bcrypt, never stored in plaintext).
• Profile — name, age, sex, height, weight, fitness level, training goals, equipment, days/week, daily calorie target, and optional macro split.
• Activity — workouts you generate, sets you log, weight history, body measurements, daily checklist completions, streaks, and personal records.
• Nutrition — food entries including any photos you take to estimate calories.
• Progress photos — body progress images you choose to upload. Private by default and only readable by your authenticated account.
• Technical logs — basic server logs (IP, user-agent, timestamps) kept for security and debugging for up to 30 days.

We do not collect contacts, precise location, device identifiers for advertising, or HealthKit data unless you explicitly enable a future integration that requests it.

On iOS the app may request Camera and Photo Library permissions for two reasons:

• Snap or pick a photo of a meal so our AI can estimate calories and macros (the photo is sent to Anthropic for vision analysis and is not stored permanently after the estimate is returned, unless you save the meal — in which case a thumbnail is kept against your meal log).
• Capture progress photos. These are encrypted in transit (HTTPS) and stored on our servers tied to your account. They are never public and are only retrievable with your valid auth token.

You can revoke camera and photo permissions at any time in iOS Settings → DAIONE.

• Build personalized workout programs and progression schedules.
• Compute TDEE, daily calorie targets, and macro splits from your profile.
• Render progress charts, streak counters, and shareable PR/goal cards.
• Process subscription payments (via Stripe — see Third Parties below).
• Send transactional emails (account recovery, billing receipts). We do not send marketing without your opt-in.
• Diagnose bugs and prevent abuse.

We do not sell your personal data and we do not use your workout, food, or photo data to train third-party models without your explicit opt-in.

We share the minimum data necessary with these vetted processors:

• Anthropic (Claude) — workout and food text/image prompts. Subject to Anthropic's privacy policy. No account identifiers are sent; only the prompt content for the request.
• Stripe — your name, email, and payment method (handled directly by Stripe; we never see your card number). Subject to Stripe's privacy policy.
• Spotify — optional. If you link Spotify we receive a scoped OAuth token to read your playlists / now-playing for in-app music. Subject to Spotify's privacy policy. Disconnect anytime from Profile → Spotify.
• Cloud infrastructure — MongoDB Atlas (database) and a managed Kubernetes provider (compute). Data is processed in regions with GDPR-adequate protections.

You have the right to:

• Access a copy of the personal data we hold about you.
• Rectify inaccurate or incomplete data — most fields are editable directly in the app.
• Erase your account and all associated data. Use the delete-account option in Profile or email us at privacy@daione.app.
• Restrict or object to certain processing.
• Port your data to another service in a machine-readable format (we provide JSON exports on request).
• Withdraw consent for optional integrations (Spotify, photo uploads) at any time.
• Complain to your local data protection authority if you feel we have mishandled your data.

We respond to verified requests within 30 days.

• Account + activity data — kept while your account is active.
• Server logs — up to 30 days.
• Cancelled subscriptions — billing records kept 7 years to satisfy tax law.
• On account deletion all personal profile, workout, food, photo, and progress data is removed within 30 days. Anonymised aggregates may be retained for product analytics.

All traffic is encrypted with TLS. Passwords are hashed with bcrypt. Database access is restricted to the application service account and is logged. Progress photos are served only after JWT validation tied to your user id. We perform security reviews on integration code changes and rotate secrets on a regular cadence.

DAIONE is intended for users aged 16 and older. We do not knowingly collect personal data from anyone under 16. If you believe a child has used the app, contact us and we will delete the account.

We will update the "Last updated" date above whenever this policy changes. Material changes are announced via in-app notice and / or email.