Privacy Policy

Last updated: April 27, 2026

Maxed ("we", "our", "us") operates the Maxed fitness application. This policy describes how we collect, use, and protect your information.

Information We Collect

• Account Information: Name, email address, and profile details you provide during registration.
• Fitness Data: Workout history, exercise preferences, training splits, and performance data you log in the app.
• Wearable Device Data: When you connect third-party services (such as WHOOP, Garmin, or other fitness platforms), we collect health and fitness metrics including recovery scores, heart rate, sleep data, strain, stress levels, and body battery readings.
• Body Scan Photos: If you use the AI Body Scan feature, photos of your physique are temporarily sent for analysis. Photos are never stored on any server or database — they are processed in real time and immediately discarded.
• Camera & Photos: The app uses your device camera for BeReal-style workout photos, body scan photos, and profile pictures. Photos are uploaded to our servers only when you choose to post or scan. Camera access is only used when you actively take a photo.
• Microphone & Speech Recognition: If you use voice logging, the app accesses your microphone and speech recognition to transcribe your spoken workout sets. Audio is processed in real time and is not stored.
• Contacts: With your permission, the app reads your contacts to help you find friends already using Maxed. Contact data is used only for friend discovery and is not stored on our servers.
• Location: The app uses your location to find nearby gyms and for cardio workout tracking (e.g., runs, walks). Location data is only accessed when you actively use these features.
• Push Notifications: We send push notifications for workout reminders, social activity (friend requests, crew updates), and creator updates. You can disable notifications at any time in your device settings.
• Usage Data: Basic app usage patterns to improve the experience.

How We Use Your Information

• To provide personalized workout suggestions and readiness assessments.
• To display your fitness metrics, progress, and training history.
• To generate AI-powered coaching insights based on your workout history and wearable data.
• To improve and maintain the application.

Third-Party Integrations

When you connect wearable devices or fitness platforms (e.g., WHOOP, Garmin Connect), we access data through their official APIs with your explicit authorization. You can disconnect these integrations at any time through the App Integrations page, which will delete the associated tokens and synced data from our systems.

AI-Powered Features & OpenAI

Maxed uses OpenAI's API to power several AI features. When you use these features, certain data is sent to OpenAI for processing. OpenAI processes this data solely to generate responses and does not use API data to train its models, in accordance with its API data usage policy.

What data is sent to OpenAI and when:

• AI Body Scan: Your physique photos (front, left, back, right), along with height, weight, gender, experience level, and fitness goal. Photos are sent for real-time analysis and are never stored by Maxed or OpenAI.
• AI Coaching & Workout Suggestions: Your workout history, exercise names, weights, reps, sets, personal records, bodyweight, experience level, fitness goals, and (if a wearable is connected) recovery data including HRV, sleep scores, and strain scores.
• AI Workout Plan Generation: Your body scan results, muscle scores, experience level, goal, and recent workout history.
• Workout Import (Text/Image): Text or images you provide of a workout plan, sent for parsing into structured exercises.
• Progress Chat: Your questions, workout summary, personal records, and recent chat messages.

Your control: You are asked for explicit consent before any data is sent to OpenAI. You can revoke this consent at any time in the app under Profile > Settings > Privacy & Sharing, which will disable AI-powered features until consent is granted again. No data is sent to OpenAI without your permission.

Data Storage & Security

Your data is stored securely using Supabase (hosted on AWS) with row-level security policies. Authentication tokens for third-party services are encrypted and stored separately from your profile data. We use HTTPS for all data transmission.

Data Sharing

We do not sell, trade, or rent your personal information to third parties. The only third party that receives your personal data is OpenAI, solely for the purpose of powering AI features as described above, and only with your explicit consent. We may share anonymized, aggregated data for analytics purposes. Your workout and health data is never shared with other users unless you explicitly enable sharing through privacy settings.

Data Retention & Deletion

You can delete your account and all associated data at any time. When you disconnect a wearable integration, all tokens and synced data for that service are immediately deleted. Upon account deletion, all personal data is permanently removed from our systems.

Your Rights

• Access, update, or delete your personal data at any time.
• Disconnect third-party integrations and have associated data removed.
• Control what fitness data is shared with friends via privacy settings.
• Request a copy of your data.

Health Information Disclaimer

Maxed provides health-related calculations such as body fat estimates, physique scores, and readiness assessments for educational and informational purposes only. These are not medical diagnoses. Our methodologies are informed by established sports science research including ACSM guidelines, peer-reviewed body composition studies, and training load models. Citations are provided in the app wherever health calculations are displayed. Always consult a qualified healthcare professional before making health decisions based on app-generated information.

Children's Privacy

Maxed is not intended for users under the age of 13. We do not knowingly collect data from children under 13.

Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated date.

Contact Us

If you have questions about this privacy policy, contact us at support@getmaxed.co.