Privacy Policy

Last updated: February 2, 2026

1. Introduction

Ziro sp. z o.o. ("ZIRO.FIT", "we", "us", or "our") operates the ZIRO.FIT platform (the "Service"). We are committed to protecting the privacy of our users ("you"), including both Trainers and Clients.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our mobile application. By creating an account, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Personal Identification Information

We collect information that identifies you personally when you register:

  • Identity Data: Name, email address, phone number, and profile photographs.
  • Account Data: Username, password (encrypted), and User ID.
  • Professional Data (Trainers): Certifications, bio, business location, and service pricing.

2.2 Health and Fitness Data (Sensitive Info)

To provide our core fitness coaching features, we collect sensitive health information:

  • Physical Metrics: Body weight, height, body fat percentage, and body measurements (e.g., waist circumference).
  • Activity Data: Workout logs, exercises performed, reps, sets, weights lifted, and session duration.
  • Progress Photos: Images you voluntarily upload to track physical transformation.
  • Biofeedback: Self-reported energy levels, stress levels, sleep duration, and nutritional compliance.

Note for Apple Users: We do not use HealthKit data for advertising or sell it to data brokers.

2.3 Financial Data

We do not store full credit card numbers. All payment transactions are processed through our third-party provider, Stripe, Inc.We store only references to your payment method (e.g., last 4 digits) and transaction history provided by Stripe.

2.4 Usage and Device Data

We automatically collect data regarding your device (IP address, operating system, device type) and your interaction with the Service (features used, time spent) to improve app performance and stability.

3. How We Use Your Information

We use your data for the following specific purposes:

  • Service Delivery: To create workout programs, track progress, and facilitate Trainer-Client communication.
  • AI Coaching: We process your workout history and goals using Artificial Intelligence to generate personalized workout recommendations.
  • Payments: To process subscription fees and trainer payouts.
  • Communication: To send workout reminders, booking confirmations, and system updates.
  • Safety: To prevent fraud and ensure the security of the platform.

4. Artificial Intelligence (AI) Features

ZIRO.FIT uses third-party Large Language Models (LLMs) to power our "AI Coach" and "Program Generator" features.

  • Data Processed: Your fitness goals, injury history (if provided), and workout logs may be sent to our AI providers (e.g., Google Gemini, Groq, Cerebras) to generate content.
  • Privacy Protection: We do not use your personal contact information (email/phone) for AI training. Data sent to AI providers is minimized to what is necessary for the specific task.

5. Sharing Your Information

We do not sell your personal data. We share data only in the following circumstances:

  • With Your Trainer/Client: If you are a Client linked to a Trainer, your Trainer has access to your workout logs, progress photos, and health metrics to provide coaching.
  • Service Providers: We share data with trusted third parties who assist us in operating the Service (e.g., Stripe for payments, Supabase for database hosting, PostHog for analytics).
  • Legal Compliance: If required by law, court order, or governmental regulation.

6. Data Retention and Deletion

We retain your personal data only as long as your account is active or as needed to provide you services.

Right to Delete (Account Deletion):

You have the right to delete your account and all associated data at any time. You can request deletion directly within the application via Profile → Account Settings → Delete Account. Upon deletion, your data is permanently removed from our active databases.

7. Your Rights (GDPR & CCPA)

Depending on your location, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Request deletion of your data ("Right to be Forgotten").
  • Restrict or object to processing.
  • Export your data (Data Portability).

8. Security

We implement industry-standard security measures, including encryption in transit (SSL/TLS) and at rest, to protect your personal information. However, no method of transmission over the Internet is 100% secure.

9. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact our Data Protection Officer at:

Ziro sp. z o.o.
Email: nikhil@ziro.health
Location: Krakow, Poland