Privacy Policy

Last updated: December 19, 2025

1. Introduction

WhatFit ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our WhatsApp-based AI fitness tracking service.

2. Information We Collect

2.1 Personal Information

  • WhatsApp phone number
  • Name (as provided by you)
  • Age, gender, height, and weight (for fitness calculations)
  • Fitness goals and preferences

2.2 Health & Fitness Data

  • Food photos and meal descriptions
  • Calorie and macro nutrient logs
  • Workout and exercise data
  • Water intake records
  • Weight tracking history

2.3 Usage Data

  • Message timestamps and interaction patterns
  • Feature usage statistics
  • Device information

3. How We Use Your Information

  • To provide personalized fitness tracking and recommendations
  • To analyze food photos using AI for calorie estimation
  • To send daily summaries and progress reports
  • To enable group features and leaderboards (with your consent)
  • To improve our AI models and service quality
  • To communicate service updates and support

4. Data Storage & Security

Your data is stored securely on encrypted servers. We implement industry-standard security measures including:

  • SSL/TLS encryption for data in transit
  • Encrypted database storage
  • Regular security audits
  • Access controls and authentication

5. Third-Party Services

We use the following third-party services:

  • WhatsApp Business API (via Twilio) - For message delivery
  • OpenAI - For AI-powered food recognition and recommendations
  • MongoDB - For data storage

Each third-party service has its own privacy policy governing their use of your data.

6. Data Sharing

We do not sell your personal data. We may share data only:

  • With your explicit consent (e.g., group leaderboards)
  • With coaches you explicitly connect with
  • To comply with legal obligations
  • To protect our rights and prevent fraud

7. Your Rights

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Opt-out of marketing communications
  • Withdraw consent at any time

To exercise these rights, message "DELETE MY DATA" or "EXPORT MY DATA" to our WhatsApp bot, or email us at privacy@whatfit.in.

8. Data Retention

We retain your data for as long as your account is active. Upon account deletion request, we will delete your personal data within 30 days, except where retention is required by law.

9. Children's Privacy

WhatFit is not intended for users under 16 years of age. We do not knowingly collect data from children under 16.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via WhatsApp message or by posting a notice on our website.

11. Contact Us

For any questions about this Privacy Policy or our data practices, contact us at:

WhatFit Labs

Blackheath, London

Email: privacy@whatfit.in