PosturePulse Privacy Policy

Effective date: 10 June 2026

PosturePulse (“we”, “us”) takes your privacy seriously — especially when it comes to sensitive data like posture photos. This policy explains what we collect, how we use it, and the choices you have.

1. Information We Collect

Account information: The email address you provide at sign-up (Sign in with Apple users may choose a hidden relay address).

Posture scan data:

• Posture grade (A–F), 3 specific AI-identified observations (e.g. forward-head angle, rounded shoulders), and an encouraging summary
• Exercise prescription records (stretch IDs, completion status, your feedback)
• Scan timestamps

Posture photos (highly sensitive · local by default):

• EXIF metadata (GPS location, device model, timestamps, orientation) is stripped immediately after capture
• Photos are analysed on-device by default and are not uploaded to our servers
• Pro users may optionally enable cloud sync (see Section 3)

Usage data: Anonymous feature-usage counts and error logs to help us improve the service. No photo content or raw text is included.

2. Photo Privacy — Three-Layer Protection

We treat posture photos as highly sensitive personal information (body image data) and apply three layers of protection:

1. Immediate EXIF stripping: As soon as a photo is captured, expo-image-manipulator removes all metadata. The original file with metadata is deleted immediately.
2. Cloud sync off by default: New accounts default to photo_cloud_sync = OFF. Your posture photos stay on your device’s local SQLite database and filesystem only.
3. Pro cloud sync: auto-delete after 30 days: If you are a Pro user and actively enable cloud sync, the original photo is automatically deleted from cloud storage 30 days after upload. The posture grade, observations, and summary are retained to power your trend chart. You can also purge all cloud photos instantly at any time in Settings.

3. Pro Cloud Sync Details (Opt-in)

Only when you, as a Pro user, explicitly enable photo_cloud_sync in Settings:

• Photos are transmitted with TLS/SSL encryption to Supabase Storage
• Stored at posture-photos/{your user ID}/{scan_id}.jpg behind Row-Level Security (RLS) — only requests authenticated as your user ID can read your photos; any other user ID receives a 403
• Each photo is automatically deleted 30 days after upload (via a scheduled pg_cron job)
• You can purge all cloud photos at any time: App → Settings → Privacy → Purge all photos now

4. AI Data Processing

The AI posture scan is powered by our private AI service (newapi gateway, hosted at newapi.zweiteng.tk).

• Posture photos are discarded after the API request is processed and are not used to train AI models
• We do not send your email, name, or any personally identifiable information to the AI processing endpoint
• AI-returned scan results are stored only in your account records

5. PostureLoop AI Memory

The PostureLoop feature injects 5 context dimensions into each AI scan prompt: today’s photo + baseline grade + last 5 scan trends + previous exercise feedback + UI language.

• This memory data is scoped to your account and is never used to process other users’ requests
• You can inspect your current AI memory at any time: App → Settings → AI Memory Transparency
• Tapping “Reset baseline” clears your baseline scan and zeroes the corresponding AI memory

6. Data Storage & Security

• Server-side data is stored on Supabase (US region), protected by Row-Level Security (RLS) policies
• All data in transit uses TLS/SSL encryption
• Account passwords are managed by Supabase Auth; we never store plaintext passwords

7. Data Retention & Deletion

You can delete your account at any time: App → Profile → Account → Delete account. This triggers a cascade deletion of:

• All scan records, posture photos (local + cloud), prescription history
• User settings and account information

A 7-day soft-delete window allows recovery by contacting us. After 7 days, all data is permanently and irreversibly purged from all systems.

8. Third-Party Services

We do not use Facebook, Google Analytics, or any third-party advertising or tracking SDKs.

9. Children’s Privacy

PosturePulse is not directed to children under 13. We do not knowingly collect personal information from children under 13.

10. Medical Disclaimer

PosturePulse is an ergonomics awareness tool — not a medical device or diagnostic service. All AI posture grades, observations, and exercise suggestions are for ergonomics awareness only and do not constitute medical advice. If you have a spinal condition or any other health concern that may be affected by exercise, please consult a licensed healthcare professional before use.

11. Changes to This Policy

When this policy changes, we will send an in-app notification and update the effective date at the top of this page. Your continued use of the app after the effective date constitutes acceptance of the updated policy.

12. Contact Us

For privacy-related questions or data deletion requests, please contact: privacy@sanva.tk