Privacy Policy

Lifedex is built on a local-first architecture. All of your personal records — body weight, nutrition logs, workout sessions, financial transactions, study progress, and fasting data — are stored directly on your device. We do not have access to this data by default, and we do not monetize it in any form.

To ensure a seamless user experience, process secure subscription payments, and enable reliable local-first cloud backup synchronization, creating a Lifedex account is mandatory for using the application.

If you choose to use our Web-to-App onboarding at getlifedex.com/start, the profile metrics, starter weight, and companion preferences you configure are initially saved directly to our secure cloud database (Supabase). Upon your first login inside the mobile app, this data is securely downloaded, stored locally on your device, and the application thereafter operates in local-first mode.

Depending on how you use Lifedex, we may process the following categories of data:

• Health & Fitness: Body weight history, workout logs, sleep records, fasting sessions, step counts, and nutrition entries. Stored locally and securely synced to your private Supabase vault under your authenticated account.
• Financial Information: Transaction records, account balances, investment entries, and budget data you manually log, synced and secured under your authenticated account credentials.
• Account Identifiers: Email address and a unique user ID (UUID) used to authenticate your Supabase sync session, collected when you register your mandatory account.
• Subscription & Billing: Transactions and billing details required for paid features are securely processed by our third-party billing providers (such as Stripe, Apple App Store, or Google Play). We do not store or access your credit card details.
• Crash & Usage Diagnostics: Anonymous stack traces, device OS version, and app version collected via Sentry to diagnose runtime failures. No personal values (weights, amounts, task text) are included in these reports. You may disable this in Settings.
• Push Notification Tokens: If you grant notification permission, a device token is stored locally to schedule reminders. Streak reminders and fasting milestones are scheduled on-device and never routed through external servers.

Lifedex uses Apple's LocalAuthentication framework to offer biometric app lock as an optional security feature. We do not access, store, or transmit your biometric data in any form. Authentication is handled entirely by the iOS Secure Enclave — no biometric information ever leaves your device or reaches our servers.

Your Lifedex account data is automatically and securely synced to a private Supabase (PostgreSQL) database protected by:

• Row-Level Security (RLS): Database-enforced policies ensure that each user can only read and write their own records. No cross-user data access is possible.
• JWT Authentication: All sync requests are authenticated via encrypted JSON Web Tokens verified server-side.
• TLS in transit: All data transmitted between your device and Supabase is encrypted via TLS 1.3.

Lifedex integrates the following third-party services:

• Supabase — cloud database and authentication provider. Data processed under their Privacy Policy.
• Sentry — anonymous crash reporting. Data processed under their Privacy Policy.

We do not use advertising SDKs, tracking pixels, or analytics that profile individual users.

Local data persists on your device until you uninstall the app or use the Hard Reset option in Settings → Security.

You can permanently delete all cloud data and your account at any time by using Settings → Cloud → Delete Account inside the app. This action is irreversible and immediately purges all records and account metadata associated with your user ID from our database.

You may also request deletion by contacting us at privacy@getlifedex.com. We will process all deletion requests within 30 days.

Depending on your jurisdiction, you have the following rights regarding your personal data:

• Access: Request a copy of your data.
• Rectification: Correct inaccurate records.
• Erasure: Delete all personal data (see Section 06).
• Portability: Export your data via Settings → Backup → Export JSON.
• Objection: Opt out of crash diagnostics at any time in Settings.

To exercise any of these rights, contact privacy@getlifedex.com.

Lifedex is not directed at children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us immediately at privacy@getlifedex.com and we will delete it promptly.

We may update this Privacy Policy from time to time. When we do, we will revise the "Last Revised" date at the top of this page. Continued use of the app after changes constitutes acceptance of the updated policy.

For privacy-related inquiries or data requests:

• EMAIL — privacy@getlifedex.com
• SUPPORT — support@getlifedex.com
• WEB — getlifedex.com