Consumer Health Data Privacy Policy

Effective date: April 22, 2026

This policy explains how LiftProof handles consumer health data as defined by the Washington My Health MY Data Act (CHDPA).

What health data we process

LiftProof processes the following health data that you enter directly: workout logs, exercise history, body weight entries, sets and reps, and personal records. LiftProof may also read HealthKit data (step count, active energy, heart rate) only with your explicit permission, and only on-device. We do not sell or share HealthKit data with third parties.

How we use health data

Your health data is used solely to operate the app — to display your workout history, calculate training maximums, and track personal records. We do not use your health data for advertising, profiling, or sale.

Who we share it with

No third parties receive your health data. All data is stored on-device using Apple's Core Data framework. If cloud sync is implemented in a future release, it will use Apple CloudKit — Apple's privacy policy applies to data stored there.

Your rights under CHDPA (Washington residents)

If you are a Washington State resident, you have the following rights:

• Right to know — you have the right to know what consumer health data LiftProof processes.
• Right to access — you have the right to access your health data stored in the app.
• Right to delete — deleting the app removes all on-device data. Because no health data is uploaded to our servers, deletion is complete when the app is removed.
• Right to withdraw consent— you can revoke HealthKit permission at any time in iOS Settings under Privacy & Security → Health → LiftProof.

Contact

For CHDPA-related requests or questions about this policy, email privacy@liftproof.com.