Privacy Policy

Effective date: March 1, 2026

Corda Health ("the App") is developed by Mats Lycken ("we", "us", "our"). This privacy policy explains how we collect, use, store, and protect your information when you use the App.

1. Information We Collect

Account Information

When you sign in with Google or Apple, we receive your name and email address via Firebase Authentication. Google also provides your profile photo. Apple allows you to hide your email address, in which case a private relay address is used instead. This information is used to identify your account and personalize your experience.

Health & Fitness Data (Apple HealthKit)

With your explicit permission, the App reads and writes the following Apple HealthKit data. HealthKit access is requested during onboarding or when you enable health features in Settings. You can grant or deny access to each data type individually.

Data We Read

• Step Count — displayed in your daily health summary
• Active Energy Burned — displayed in your daily health summary
• Body Mass (Weight) — synced to your profile automatically when HealthKit is enabled, used for nutrition target calculations
• Sleep Analysis — used to display sleep duration and inform workout recovery readiness
• Resting Heart Rate — used to inform workout recovery readiness
• Heart Rate Variability (HRV) — used to inform workout recovery readiness
• Workouts — read to display recent workout history from other apps

Data We Write

• Workout Samples — your completed strength training workouts (exercise type, duration, and calories burned) are saved to Apple Health
• Active Energy Burned — calories burned during your workouts
• Dietary Energy Consumed (Calories) — logged when nutrition sync is enabled (opt-in)
• Dietary Protein — logged when nutrition sync is enabled (opt-in)
• Dietary Carbohydrates — logged when nutrition sync is enabled (opt-in)
• Dietary Total Fat — logged when nutrition sync is enabled (opt-in)
• Dietary Fiber — logged when nutrition sync is enabled (opt-in)

Nutrition sync to Apple Health is opt-in — you must explicitly enable it in the App's nutrition settings. Weight sync from Apple Health to your profile happens automatically when HealthKit access is granted.

HealthKit data is used to provide in-app functionality and personalized insights. We adhere to Apple's HealthKit guidelines:

• HealthKit data is used solely to provide in-app functionality and personalized insights. HealthKit data is never sold, used for advertising, or shared with third parties for marketing purposes.
• You can revoke HealthKit access at any time via iOS Settings > Health > Data Access & Devices > Corda Health

Certain health-derived metrics may be securely stored in our backend to provide core app functionality and personalized training insights.

Body Metrics & Weight

If you use the nutrition features, you may provide body metrics (height, weight, age, sex, activity level) and weight goal information. This data is used to calculate your daily calorie and macro targets using standard nutritional formulas (Mifflin-St Jeor BMR, TDEE).

Workout & Exercise Data

The App stores your workout plans, exercise logs, sets, reps, weights, and workout history. This data is used to track your training progress and provide personalized recommendations.

Nutrition Data

Food logs, dietary preferences, allergies, saved recipes, meal plans, and shopping lists are stored in your account. This data is used to provide nutrition tracking and meal planning features.

Camera (Barcode Scanning)

The App uses your device camera solely for scanning food barcodes to look up nutritional information. Camera images are processed on-device and are not stored or transmitted.

2. How We Use Your Information

Your information is used to:

• Provide and maintain the App's features
• Generate personalized workout plans and nutrition recommendations
• Track your training and nutrition progress over time
• Display health metrics (steps, calories, sleep, heart rate) and recovery insights
• Sync workout data between your iPhone and Apple Watch
• Display live workout information via Live Activities and widgets

3. AI Features (Google Gemini)

The App uses Google Gemini AI to power several features, including workout plan generation, exercise recommendations, recipe generation, and the AI coach. When using these features, relevant data (such as your fitness goals, available equipment, dietary preferences, and current workout context) is sent to Google Gemini to generate responses.

Data sent to Google Gemini is processed according to Google's Gemini API Terms of Service. Your data is not used by Google to train their AI models when accessed through the API.

4. Third-Party AI Integrations (MCP Server)

The App offers an optional integration feature based on the Model Context Protocol (MCP) that allows you to connect third-party AI tools — such as AI coding assistants, chatbots, or automation platforms — to your Corda Health data. This feature is designed for advanced users and is entirely opt-in: it requires you to explicitly generate an API token in the App's settings and manually configure the connection in your chosen third-party tool.

What Data Is Accessible via MCP

When you enable the MCP integration, the connected third-party tool may read:

• Your profile information (name, body metrics, dietary preferences, goals)
• Training plans and workout history (exercises, sets, reps, weights)
• Nutrition data (food logs, daily totals, nutrition targets)
• Saved recipes and meal plans
• Weight history (manually entered entries only)
• Water intake logs
• Pre-computed training and nutrition summaries

The connected tool may also write data on your behalf:

• Log food entries and water intake
• Save new recipes
• Add new versions to existing training plans (previous versions are preserved)

Apple HealthKit Data Is Never Shared via MCP

To comply with Apple's HealthKit guidelines, no data originating from Apple HealthKit is exposed through the MCP integration. Specifically:

• Weight history entries synced from Apple Health are excluded from MCP responses
• Health metrics derived from HealthKit (sleep, resting heart rate, heart rate variability) are excluded from MCP responses
• HealthKit data remains accessible only within the App itself and is never transmitted to third-party tools through MCP

Your Responsibility

Once your data is accessed by a third-party tool via MCP, that tool's own privacy policy and terms of service govern how it handles your data. Corda Health does not control and is not responsible for how third-party tools process, store, or share data obtained through MCP. We recommend reviewing the privacy practices of any tool you connect before enabling the integration.

Revoking Access

You can revoke MCP access at any time by deleting your API token in the App's settings. Once revoked, third-party tools will no longer be able to access your data. Note that any data already retrieved by a third-party tool prior to revocation is subject to that tool's data retention policies.

5. Apple Watch

The companion Apple Watch app syncs workout data (current exercise, sets, timers, heart rate) between your iPhone and Apple Watch in real time. This data stays on your devices and in your Firebase account — it is not shared with third parties.

6. Data Storage, Security & International Transfers

Your data is stored in Google Firebase infrastructure located in the United States (us-east1 region). This includes:

• Firestore database (workout plans, exercise logs, food logs, recipes, meal plans, user profiles)
• Cloud Storage (exercise images and thumbnails)
• Cloud Functions (serverless backend processing)
• Firebase Authentication (account credentials)

Firebase provides encryption at rest and in transit. Access to your data requires authentication through your Google account.

For users in the European Economic Area (EEA), UK, and Switzerland

By using the App, your personal data is transferred to and processed in the United States. We rely on the following safeguards for these transfers:

• Standard Contractual Clauses (SCCs) — Google, as our data processor, operates under the Google Cloud Data Processing Addendum, which incorporates EU Standard Contractual Clauses approved by the European Commission for transfers of personal data to countries outside the EEA.
• EU-U.S. Data Privacy Framework — Google LLC is certified under the EU-U.S. Data Privacy Framework, providing an additional legal mechanism for data transfers.

Under GDPR, you have the right to access, correct, delete, or export your personal data, as well as the right to restrict or object to processing. To exercise any of these rights, please contact us at hello@corda-health.com.

7. Third-Party Services

The App uses the following third-party services:

• Firebase (Google) — Authentication, database, cloud storage, and serverless backend. Firebase Privacy Policy.
• Google Gemini API — AI-powered workout and nutrition features. Data is processed per Google's API terms and is not used for model training.
• Open Food Facts — Food barcode lookups for nutrition data. Only the barcode number is sent; no personal data is transmitted. Open Food Facts Privacy Policy.

8. Data Retention & Deletion

Your data is retained as long as your account is active. You may request deletion of your account and all associated data at any time by contacting us at hello@corda-health.com. Upon receiving a deletion request, we will permanently remove all your data from our systems within 30 days.

9. Children's Privacy

The App is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us and we will promptly delete it.

10. Changes to This Policy

We may update this privacy policy from time to time. Any changes will be reflected on this page with an updated effective date. Continued use of the App after changes constitutes acceptance of the updated policy.

11. Contact

If you have questions about this privacy policy or your data, please contact:

Mats Lycken
hello@corda-health.com