ThresholdThreshold

Privacy Policy

Last updated: April 20, 2026

The Short Version

Your health data never leaves your device. When you use coaching features, your phone sends a temporary snapshot of recent data to our server for processing. The server generates your coaching response and immediately discards the snapshot. We never store your health data in any database.

1. Information We Collect

Account Information

When you sign in with Google or Apple, we receive your name and email address. We do not receive or store your password.

Health & Fitness Data (Device-Only)

With your permission, Threshold reads the following data from Apple Health (HealthKit):

  • Body measurements (weight, body fat percentage)
  • Heart data (heart rate, resting heart rate, heart rate variability, VO2 max)
  • Sleep analysis
  • Blood pressure, respiratory rate, and blood oxygen saturation
  • Workouts and active energy burned

This data is stored only on your device. It is never uploaded to or stored on our servers. Your device uses this data locally for tracking, trends, and readiness calculations. When coaching features need this data, it is sent as a temporary context snapshot (see Section 4).

Threshold may also write weight and workout data back to Apple Health so your records stay in sync.

Connected Services

If you connect Garmin or Strava, we store OAuth tokens (or encrypted Garmin credentials) to enable syncing. Activity and biometric data from these services is relayed to your device and not retained on our servers.

Data You Enter

Workouts, food logs, mood check-ins, body metrics, and goals are stored on your device. Your profile settings (age, gender, height, training preferences) are stored on our server to enable coaching calibration.

Device Information

We collect a device token for push notifications. We do not collect device identifiers for advertising or tracking.

2. What We Store on Our Server

Our server stores only what it creates or what is required for your account to function:

  • Account data — email, authentication tokens, subscription status
  • Profile settings — age, gender, height, pace zones, training preferences
  • Training plans — AI-generated plans and planned workouts
  • Coaching outputs — morning/evening briefings, coach observations, weekly reviews
  • AI usage records — token counts for rate limiting (never prompt content)
  • Integration tokens — Garmin/Strava OAuth credentials for syncing
  • Device tokens — for push notification delivery

We do not store your health data (biometrics, activities, food logs, weight, blood pressure, sleep data, or workout history) on our servers.

3. How We Use Your Data

  • Provide personalized training insights, readiness scores, and nutrition tracking — computed on your device
  • Power AI coaching, workout generation, and food estimation using temporary context snapshots
  • Send push notifications (morning briefings, workout reminders) that you can disable in settings
  • Improve the service and fix bugs

We do not sell, rent, or share your personal data with third parties for advertising or marketing purposes.

4. Coaching Context Snapshots

When you use AI coaching features (chat, briefings, workout generation, food estimation), your device assembles a temporary snapshot of recent health data and sends it to our server for processing. This snapshot typically includes the last 7 days of biometrics, recent activities, nutrition totals, and current goals.

This snapshot is:

  • Assembled on your device from local data
  • Sent over encrypted connections (HTTPS)
  • Forwarded to our AI provider to generate your coaching response
  • Immediately discarded after processing — it is never written to any database
  • Not used to train AI models (per our AI provider's data processing agreements)

For proactive coaching (morning briefings, coach observations), your device automatically sends these snapshots when new health data arrives from Apple Health. The server generates coaching content, sends a push notification, and discards the snapshot.

5. Apple Health (HealthKit) Data

Threshold accesses Apple Health data solely to provide fitness tracking and health insights within the app. In accordance with Apple's guidelines:

  • HealthKit data is stored only on your device — never on our servers
  • HealthKit data is not sold to advertising platforms, data brokers, or any third party
  • HealthKit data is not used for advertising or marketing
  • HealthKit data is not shared with third parties without your explicit consent
  • When HealthKit data is included in coaching context snapshots, it is transmitted over HTTPS and immediately discarded after processing

You can revoke HealthKit access at any time in iOS Settings > Privacy & Security > Health.

6. AI & Third-Party Services

When you use AI-powered features, your device sends a temporary context snapshot to our server, which forwards it to our AI provider (OpenRouter / OpenAI) to generate a response. This data is:

  • Sent over encrypted connections (HTTPS)
  • Used only to generate your response — not used to train AI models
  • Not stored by the AI provider beyond the duration of the request

We also integrate with the following services, each governed by their own privacy policies:

  • Garmin Connect — activity and biometric syncing
  • Strava — activity syncing via OAuth
  • USDA FoodData Central and Open Food Facts — food nutrition lookup
  • OpenWeatherMap — running weather conditions

7. Data Storage & Security

Server-side data (account, profile, coaching outputs) is stored on managed PostgreSQL databases hosted by Prisma. All data is transmitted over HTTPS. Third-party credentials (Garmin) are encrypted using AES-256-GCM at rest. We follow industry-standard security practices to protect your data from unauthorized access.

Health data is stored locally on your device using Apple's SwiftData framework and HealthKit, both of which are protected by your device's passcode and biometric authentication.

8. Data Retention

Server-side data (account, profile, coaching outputs) is retained for as long as your account is active. If you delete your account, all server-side data is permanently removed within 30 days. Backups containing deleted data are purged on a rolling 90-day cycle.

Health data on your device is retained until you delete the app or clear it manually. You can export a backup of your local data at any time from Settings.

9. Account Deletion

You can delete your account and all associated server-side data directly within the app under Profile > Delete Account. Deletion is immediate and irreversible. This removes your account, profile, coaching outputs, and all personal information from our servers. Health data on your device is not affected — you can keep or delete it independently.

10. Children's Privacy

Threshold is not intended for use by anyone under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly.

11. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (see Section 9)
  • Export your data (available in Settings > Data Backup)
  • Withdraw consent for optional data processing

To exercise these rights, contact us at privacy@threshold.fit.

12. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via in-app notification or email. Continued use of the app after changes constitutes acceptance of the updated policy.

13. Contact

For questions or concerns about this privacy policy, contact us at privacy@threshold.fit.

Terms of Service