Trust & Safety

Security Policy

At Fitness Tracker - AI Powered Fitness, we implement rigorous, multi-layered security protocols to protect your health and biometric data.

Data Protection & Privacy

  • 01.

    Supabase Row Level Security (RLS): We utilize granular RLS policies to ensure that your fitness logs and meal data are strictly accessible only by your authenticated UUID.

  • 02.

    End-to-End Encryption: All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption on Google Cloud Platform.

  • 03.

    AI Safety: Visual data processed through the Gemini API is handled via secure, private channels. We do not permit third-party model training on your private meal photos.

Infrastructure Integrity

We leverage Google's world-class infrastructure to provide a secure environment for your health journey.

Internal Access Control We follow the "Principle of Least Privilege" (PoLP) for our development team.
Monitoring Continuous logging and real-time threat detection for our API endpoints.

Report a Vulnerability

Found a potential security issue? We reward researchers who help us keep our community safe.

Email Security Team

GPG Key available upon request • Patna, Bihar